Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft
File: dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft (raw, json)
Hash identifier: 1ZRvgIZbmenSLJGu5qi5TtxHFW3AloieeTIhoZRx/GI=
Subject key identifier: 30:87:62:E9:8F:0A:A5:31:F9:D3:4D:BC:AA:DD:3F:D6:D3:09:15:E6
Authority key identifier: 76:57:21:1F:8A:66:56:1B:57:70:FF:19:B4:71:AE:F5:11:E8:37:78
Certificate issuer: /CN=7657211f8a66561b5770ff19b471aef511e83778
Certificate serial: 01983803CE381548488811B8A34F34C512A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dlchH4pmVhtXcP8ZtHGu9RHoN3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft
Manifest number: 04B3
Signing time: Wed 23 Jul 2025 16:00:30 +0000
Manifest this update: Wed 23 Jul 2025 16:00:30 +0000
Manifest next update: Thu 24 Jul 2025 16:00:30 +0000
Files and hashes: 1: dlchH4pmVhtXcP8ZtHGu9RHoN3g.crl (hash: +w42BmdxxeuJPbKAJ3IpqPoU4BoojPGoVjXd+93A/jo=)
2: yLtjzto1Tw0b7DlDBQrKX87uiq0.roa (hash: qEZ4slqleS/pMqHZqm26TIAeJ329Oueymvehs7DZe3Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/dlchH4pmVhtXcP8ZtHGu9RHoN3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 14:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:38:03:ce:38:15:48:48:88:11:b8:a3:4f:34:c5:12:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7657211f8a66561b5770ff19b471aef511e83778
Validity
Not Before: Jul 23 16:00:30 2025 GMT
Not After : Jul 24 16:00:30 2025 GMT
Subject: CN=308762e98f0aa531f9d34dbcaadd3fd6d30915e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c5:ba:44:43:4a:02:48:ad:cb:7f:68:35:90:
d4:d3:7f:3a:91:9b:ef:82:00:12:48:27:3f:ed:d2:
57:c5:80:8c:76:8b:ee:c7:c5:b3:fd:eb:66:57:61:
62:3c:24:d2:24:30:4e:bb:19:c4:ac:4a:7e:57:00:
5c:bd:c0:9c:f0:dc:e7:37:ed:37:1f:13:a4:c9:d3:
16:d8:45:31:85:b6:47:28:91:c5:6d:9c:74:0a:34:
c1:18:53:cf:a3:41:69:ad:86:c5:bd:ff:e0:ab:df:
3e:d4:5a:03:f2:e7:a8:c3:59:b1:5a:fe:da:f3:64:
19:1b:27:96:50:60:35:a4:cb:45:56:83:ca:a9:2e:
62:af:83:c8:df:85:b2:87:94:0f:47:23:eb:a3:1f:
77:9f:17:db:71:d0:f4:a6:69:5c:6a:af:95:e4:c1:
70:cc:af:d2:65:4e:0c:a0:aa:d0:c1:7e:fa:b5:ec:
6c:39:eb:85:1f:b5:9d:70:98:ed:b5:19:db:43:09:
ed:4c:01:43:c7:b1:7a:1b:4e:01:9d:eb:bb:a5:a3:
18:14:f6:a6:de:bc:6c:8d:ce:86:33:e4:77:09:17:
01:cf:f8:95:24:7a:04:5d:b8:d8:60:ae:e0:ca:7d:
0c:f1:dc:22:27:3d:a7:e2:d3:92:db:bc:7b:84:17:
a2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:87:62:E9:8F:0A:A5:31:F9:D3:4D:BC:AA:DD:3F:D6:D3:09:15:E6
X509v3 Authority Key Identifier:
keyid:76:57:21:1F:8A:66:56:1B:57:70:FF:19:B4:71:AE:F5:11:E8:37:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dlchH4pmVhtXcP8ZtHGu9RHoN3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:29:92:c1:2e:24:92:14:12:8e:ea:6c:ac:7a:79:e0:c4:50:
cf:e4:ad:fe:c9:cb:67:b4:6a:fd:dc:87:53:c3:58:78:8d:ba:
de:e6:27:63:87:e4:bb:a2:ed:99:b0:c2:82:99:14:88:02:23:
5e:8c:1b:55:b8:1f:ba:d3:d8:e0:e3:95:cb:e5:8e:8d:08:76:
25:a2:5a:0c:be:af:7a:84:c3:0f:e4:43:40:93:bf:94:41:8d:
be:f2:5c:85:b9:f2:d3:eb:18:17:3a:84:29:9d:03:d6:4c:08:
65:ac:d6:3a:07:11:cb:37:1c:d2:fb:4c:84:80:9d:e9:20:00:
4f:7f:8e:fb:63:4b:8c:64:c2:e9:0e:81:b0:de:ac:0d:3c:8b:
aa:c7:13:2e:6a:1c:ef:72:c8:13:45:91:f2:e5:09:64:74:34:
28:35:d5:aa:b5:78:4c:5a:49:f0:71:a1:f5:3f:8b:fa:d6:3d:
03:5d:85:b5:dd:08:82:b9:d1:a8:4a:01:ae:6a:53:a7:a1:ea:
15:d2:20:5f:ca:51:ba:8b:bb:bc:fa:73:19:d8:9f:ea:4d:2c:
a5:78:c3:17:0d:d9:c7:e4:85:f4:a3:fa:7e:74:df:11:1f:b3:
c6:4d:ac:2b:77:b7:41:97:f5:ae:5a:73:b2:34:70:69:63:74:
9e:ce:e1:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 23:53:37 2025 by rpki-client