Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
File: rnLkfVZpJJmnJr-ADqg4A2Letr4.mft (raw, json)
Hash identifier: HOAnvGE6V99gryGeTJLJQFAmZm/3G29p8hU6j1nsULo=
Subject key identifier: C8:D0:40:A3:3E:8B:88:CE:48:D9:57:FD:22:BF:B0:55:DB:52:34:AF
Authority key identifier: AE:72:E4:7D:56:69:24:99:A7:26:BF:80:0E:A8:38:03:62:DE:B6:BE
Certificate issuer: /CN=ae72e47d56692499a726bf800ea8380362deb6be
Certificate serial: 0197B6A1B369674D51D116A81EB3C6299C9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
Manifest number: 15BE
Signing time: Sat 28 Jun 2025 13:02:19 +0000
Manifest this update: Sat 28 Jun 2025 13:02:19 +0000
Manifest next update: Sun 29 Jun 2025 13:02:19 +0000
Files and hashes: 1: 8tE73tTyc50FXb5YFWLLM8iDRuI.roa (hash: u90hDSgERXDnRD/Za5EPngqSUsaFRKPCGbCgiZ9sIyo=)
2: jNjUfwqgx7FxjC22ZM2tNJxUovE.roa (hash: CYjABvddLBiX5OMQlguXfrahjaGdNxRrjgGTFThsYz4=)
3: rnLkfVZpJJmnJr-ADqg4A2Letr4.crl (hash: N5eGypuIP3jsizE4n2DqRyHxgLEGVhns5Mv9UZ5mUlY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:b3:69:67:4d:51:d1:16:a8:1e:b3:c6:29:9c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae72e47d56692499a726bf800ea8380362deb6be
Validity
Not Before: Jun 28 13:02:19 2025 GMT
Not After : Jun 29 13:02:19 2025 GMT
Subject: CN=c8d040a33e8b88ce48d957fd22bfb055db5234af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5b:e3:5c:f1:73:a6:5c:9f:bc:aa:1c:94:46:
1f:87:85:31:88:f1:52:56:46:82:7b:7b:75:01:de:
52:d9:76:ca:00:9b:62:fa:4d:43:4a:43:56:fc:1d:
ac:b0:31:5b:cb:f4:8c:b3:34:ec:b4:ad:70:c4:b8:
5e:03:a0:f4:d0:10:1c:ef:e7:69:e2:ed:25:aa:76:
6f:2f:24:79:fb:0c:ae:a3:58:f4:7b:01:a3:62:18:
0e:62:38:28:cd:cf:f6:b6:29:3c:12:b4:bf:75:12:
e1:05:f7:89:f6:55:62:52:55:26:f5:64:70:97:6e:
49:c8:23:8d:b3:f7:a3:2e:d6:ac:d2:34:da:e1:59:
1e:b0:6b:4e:d0:77:88:86:83:a0:26:e4:78:58:b3:
63:c0:c5:40:16:7c:0d:d2:c8:6e:ef:15:0e:fe:89:
01:50:e5:58:cb:96:43:2c:8c:f5:b7:99:df:7d:6c:
79:21:fc:d9:54:73:1c:31:db:ea:a9:c6:9e:7c:d5:
74:2a:e1:2a:07:73:80:aa:b2:de:40:ad:8f:ed:d9:
7b:0c:dd:a0:82:ed:f3:08:1b:e9:a5:b3:f1:44:62:
23:25:ce:9b:27:a7:e1:d5:e1:76:82:3e:73:3b:f8:
74:f8:05:9a:6e:77:16:79:ae:e4:c3:02:48:8b:c3:
bf:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:D0:40:A3:3E:8B:88:CE:48:D9:57:FD:22:BF:B0:55:DB:52:34:AF
X509v3 Authority Key Identifier:
keyid:AE:72:E4:7D:56:69:24:99:A7:26:BF:80:0E:A8:38:03:62:DE:B6:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rnLkfVZpJJmnJr-ADqg4A2Letr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6bb471-4a3e-488d-b88c-fe12c75bf4ab/1/rnLkfVZpJJmnJr-ADqg4A2Letr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:ce:28:38:33:87:d8:89:0a:fb:6e:11:d0:8e:43:9e:a8:de:
74:ce:15:83:81:2c:b6:fc:8b:b6:95:24:b4:ec:97:dd:04:ab:
67:1d:f0:4e:3e:7a:d2:85:41:f4:c0:21:e4:11:57:4d:d4:9f:
fc:da:97:2f:81:a5:9a:92:ef:bd:a6:04:23:0b:f1:1f:1c:4c:
61:40:8b:ef:25:b2:fe:eb:f9:c2:e2:72:d4:b8:5f:eb:b0:dd:
e0:24:25:cd:24:26:3a:de:fc:18:eb:20:cc:ee:19:3b:90:26:
fd:60:5c:cc:07:4b:2f:65:16:36:36:72:32:eb:1a:4f:11:4a:
13:96:e6:d2:8d:30:5b:e9:7a:02:c0:ce:aa:1c:0e:4e:f2:37:
c2:6f:e3:ef:0e:12:d9:ce:b5:55:7e:10:37:56:08:67:26:3b:
75:cb:50:5c:34:34:4c:27:c1:47:f2:6a:73:7e:cd:9d:88:c2:
f1:52:83:5d:2d:e2:fe:be:a4:52:94:53:59:09:bd:6c:3f:68:
c1:55:70:f7:71:46:95:e1:95:dd:17:fc:2d:34:30:53:e7:f3:
83:32:a1:ff:d8:ed:1f:0e:d9:99:60:71:32:a3:20:8b:4b:31:
56:a9:ea:79:ff:dc:e7:60:ab:db:2c:d0:f2:28:26:cc:89:f5:
d1:cd:a8:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:47:33 2025 by rpki-client