Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
File: raavh7Q2lN05mUwOMhQwaHVRny4.mft (raw, json)
Hash identifier: 0xcfuOn2LAWzKqHeTUdXmLTphVLAXDF08ypTCT5hoQM=
Subject key identifier: 91:34:F7:72:BD:65:16:0A:A3:16:4B:75:D4:74:AB:60:E5:DA:4E:BE
Authority key identifier: AD:A6:AF:87:B4:36:94:DD:39:99:4C:0E:32:14:30:68:75:51:9F:2E
Certificate issuer: /CN=ada6af87b43694dd39994c0e3214306875519f2e
Certificate serial: 0198D84FC6DECFAAD7E409FDD95CE4EEF824
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raavh7Q2lN05mUwOMhQwaHVRny4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
Manifest number: 0BA7
Signing time: Sat 23 Aug 2025 19:02:43 +0000
Manifest this update: Sat 23 Aug 2025 19:02:43 +0000
Manifest next update: Sun 24 Aug 2025 19:02:43 +0000
Files and hashes: 1: raavh7Q2lN05mUwOMhQwaHVRny4.crl (hash: 19tHu0GSgbOxKMS6urHKYSMvFQ6Y/hG05cnuuKDzENs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
rsync://rpki.ripe.net/repository/DEFAULT/raavh7Q2lN05mUwOMhQwaHVRny4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:c6:de:cf:aa:d7:e4:09:fd:d9:5c:e4:ee:f8:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada6af87b43694dd39994c0e3214306875519f2e
Validity
Not Before: Aug 23 19:02:43 2025 GMT
Not After : Aug 24 19:02:43 2025 GMT
Subject: CN=9134f772bd65160aa3164b75d474ab60e5da4ebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a6:62:79:66:d2:dc:51:3e:64:5a:10:c0:e3:
5d:9a:b8:7b:f3:5e:c5:c2:f3:b5:63:c9:be:02:c6:
ec:18:00:8c:69:49:28:97:66:ca:46:08:87:9f:bb:
ee:19:aa:d0:a7:b0:9d:9e:0c:64:da:97:74:6f:df:
07:b6:24:75:74:26:90:de:71:c6:16:07:66:94:a4:
d7:13:c0:2d:5d:be:9c:91:cc:68:50:91:c0:86:a8:
fb:17:6d:c7:0f:58:a0:cd:f9:cc:93:b5:2e:ba:f3:
9f:97:32:80:48:59:b4:d2:bd:84:6f:c1:78:3f:89:
8c:49:7b:84:03:85:c8:ef:32:5b:a7:66:57:46:23:
bc:95:eb:04:72:79:66:a1:36:78:48:42:eb:b2:6f:
cd:33:8a:8e:09:c0:68:66:ab:ec:0d:10:db:fd:76:
5f:4d:5f:79:c1:a3:28:c1:ee:8a:ad:0c:05:c1:3a:
00:6a:26:7e:74:0f:1a:3c:7b:29:f5:0b:d7:56:ce:
96:83:ed:7b:29:82:97:5b:ff:9b:99:6f:4c:41:bf:
10:ef:26:7c:f7:4a:13:0e:f6:69:27:77:5d:01:1e:
2c:a5:a1:c9:0f:16:87:e4:5c:00:76:0b:d8:e0:be:
aa:e1:ae:32:72:97:6f:3e:f3:7a:0e:20:90:cf:5e:
14:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:34:F7:72:BD:65:16:0A:A3:16:4B:75:D4:74:AB:60:E5:DA:4E:BE
X509v3 Authority Key Identifier:
keyid:AD:A6:AF:87:B4:36:94:DD:39:99:4C:0E:32:14:30:68:75:51:9F:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raavh7Q2lN05mUwOMhQwaHVRny4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:b7:a6:91:fe:f9:ea:f5:96:24:9a:ae:42:27:a8:43:70:c8:
d6:9f:84:45:da:eb:a0:0a:84:c0:d2:3d:a0:f3:88:e5:17:2e:
10:8f:40:b7:0e:42:a6:c5:11:c6:6e:b0:f2:c6:cc:66:4f:9b:
a1:a9:17:72:90:73:c8:e1:dd:94:02:b1:b8:1e:8e:c9:12:6c:
05:c9:9f:c2:52:30:4d:1d:0b:81:ae:57:ec:64:c2:d9:45:97:
76:13:f6:d1:ab:05:a9:bd:0f:0c:fb:d1:e5:82:cd:16:36:2f:
63:67:2b:79:29:ae:df:a4:2f:39:fe:0c:eb:51:5f:3e:8a:99:
49:fa:17:59:6e:30:ce:40:ce:fd:99:b5:20:75:35:f3:de:5e:
83:0d:20:7e:bd:a6:1f:55:1b:ad:67:2e:34:1c:8a:1c:f9:dd:
06:f4:3d:f8:6d:3a:bf:bd:20:3a:9b:9c:30:5f:4a:8e:8d:71:
21:0a:bd:28:a3:e0:c1:46:a9:56:27:99:63:5c:d9:a8:fd:99:
b9:24:1c:81:2a:61:e2:90:fc:0e:86:69:c6:6c:0f:6f:37:2e:
58:ab:87:e2:5a:61:d8:ae:f1:5d:31:ee:8a:b2:31:cc:03:25:
81:d2:e3:e0:0f:0b:5e:90:85:5a:2c:8f:67:fc:e9:94:79:5b:
fc:a1:9f:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:10:34 2025 by rpki-client