Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: /df7PJoNXk4tPp20E2NjtUMi16HzxypJeHQR+Ca8Zn4=
Subject key identifier: CC:05:C2:78:4A:B4:C5:B7:6E:AE:A7:FC:5F:92:31:B1:12:0E:82:2C
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 0198499C2A25B555CB1BD867CF6B791C171B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 1602
Signing time: Sun 27 Jul 2025 02:00:27 +0000
Manifest this update: Sun 27 Jul 2025 02:00:27 +0000
Manifest next update: Mon 28 Jul 2025 02:00:27 +0000
Files and hashes: 1: qZsU012FOT7iNKmn0Q6fmLHg-jY.roa (hash: t+/X1ob1d2V1rnzYvMBrQBRc/+JtrsZ+AHNltw325kg=)
2: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: A57HPkGQtakNkzue4hjHuJtgb6c91jXnqVGz+PlbM4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:9c:2a:25:b5:55:cb:1b:d8:67:cf:6b:79:1c:17:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Jul 27 02:00:27 2025 GMT
Not After : Jul 28 02:00:27 2025 GMT
Subject: CN=cc05c2784ab4c5b76eaea7fc5f9231b1120e822c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3e:b5:d3:cb:57:4a:79:6f:6d:be:97:de:3e:
4d:79:01:9b:64:da:ff:91:99:eb:c7:20:8a:23:0b:
14:61:18:26:13:61:b0:30:c7:30:30:a7:03:1f:a8:
d6:60:9a:ec:67:ef:23:b6:5e:ad:9b:0d:d8:28:91:
76:b7:55:20:01:2d:30:e5:11:ad:f6:8c:80:a9:95:
52:4f:a6:04:3b:57:6d:bd:a7:48:ce:88:c9:88:7e:
a3:a8:48:32:73:aa:dd:f9:8a:d1:1c:33:6e:df:8c:
f7:3c:64:7f:53:3a:b9:1d:32:7c:db:70:5d:31:d0:
86:5d:e0:c1:6f:e6:20:08:9a:08:be:7f:f3:9b:a9:
bc:87:4a:24:8e:f3:63:a2:8d:ab:bc:e8:aa:06:ae:
5a:1f:d2:fc:61:73:1e:5a:0e:a7:b8:f2:8f:53:0a:
b7:a7:a7:8a:78:b6:bc:32:36:f2:70:46:c7:cf:24:
90:62:d9:b0:53:ea:cc:a7:d2:00:9f:9e:ab:f1:d0:
2c:c6:b1:14:46:ed:3f:0d:e5:3f:63:05:b3:04:6e:
ec:8f:c5:7e:d9:84:26:c5:d6:ac:b0:57:d5:52:92:
64:71:da:36:fe:f5:c8:de:c7:c2:60:b0:9f:7e:f1:
3e:16:94:83:9d:5a:af:db:9b:00:9d:cd:ae:59:09:
32:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:05:C2:78:4A:B4:C5:B7:6E:AE:A7:FC:5F:92:31:B1:12:0E:82:2C
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:e8:12:98:bd:d0:47:cd:9a:1b:00:af:9a:99:c0:11:1c:07:
97:3f:a3:d3:4c:4b:68:c1:90:f3:0f:ad:d1:a9:03:57:79:53:
c6:cf:27:f1:d4:4f:ab:d9:10:a5:0a:f8:0b:cd:02:6f:27:b2:
94:b4:75:1c:4d:74:4c:14:83:87:e5:68:a8:3a:dc:09:8e:45:
66:fc:e5:4c:cc:3f:ec:bb:65:2a:ab:fb:4a:02:22:80:8b:65:
b6:a7:3c:0f:33:40:cf:38:11:f0:f1:4e:52:ca:75:e4:b7:82:
f4:ec:3c:2f:6d:a0:89:fc:f3:e0:31:bc:3e:11:5c:b6:14:c8:
b1:16:25:46:52:91:b9:35:f6:94:92:1b:9d:82:ba:0d:d7:28:
d6:62:7d:c0:99:90:b5:b2:43:c0:f7:5e:c8:05:4a:a8:84:d5:
4e:0f:0f:1d:8f:92:dc:29:5c:72:ec:4d:b9:b5:d9:a0:d8:5f:
41:7f:02:da:46:e1:57:43:3e:0e:11:74:d4:b7:e2:d0:df:fb:
a2:8e:1b:4b:4e:5b:b0:b3:f5:66:50:2f:64:f3:57:b2:41:e4:
c3:09:df:09:ef:ff:02:08:2f:84:61:b4:88:a7:92:c4:40:48:
08:f6:3c:e6:5b:c4:4c:63:69:41:3f:38:d5:0b:54:49:23:33:
ce:8d:6c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:10:30 2025 by rpki-client