Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File: 4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier: 7XRRx7WMgzFBA0jFV+77LgNnhG1eHNw1DpQZWtB6nTQ=
Subject key identifier: 9E:3E:7A:2E:E0:50:00:3B:B1:20:6F:14:FA:59:26:52:19:23:21:3A
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer: /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial: 019922FAAEAF9A6321A0022A940A6E0D45C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number: 063B
Signing time: Sun 07 Sep 2025 07:01:17 +0000
Manifest this update: Sun 07 Sep 2025 07:01:17 +0000
Manifest next update: Mon 08 Sep 2025 07:01:17 +0000
Files and hashes: 1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: lgjKdnZsMVMRE2yQwI1AgnIZTiDJHVG7RJvc+FV8I/I=)
2: IrEzCg-L6ChV6NO0z_pSKTvObkE.roa (hash: BAxTmTfKNgnausi613sLgqp7n2C4MuqhHvDS7/1g8aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:ae:af:9a:63:21:a0:02:2a:94:0a:6e:0d:45:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Validity
Not Before: Sep 7 07:01:17 2025 GMT
Not After : Sep 8 07:01:17 2025 GMT
Subject: CN=9e3e7a2ee050003bb1206f14fa5926521923213a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b5:47:09:af:c4:6e:ad:fb:87:16:62:eb:8e:
af:4b:97:3d:6f:c7:b1:28:83:d5:91:d4:dc:a3:7f:
f3:3a:3d:f2:bc:99:e2:17:ec:0b:70:b2:9d:22:5b:
39:69:e5:bd:16:7f:6b:0f:4d:82:98:8f:c5:97:82:
01:62:4c:8a:74:c1:4f:a8:e3:26:28:2c:5b:db:60:
7e:ea:b6:b9:e0:e2:80:d2:ad:89:95:4c:e7:db:36:
d6:29:75:69:17:68:8c:e3:b9:85:89:fa:b9:4c:98:
cf:50:af:87:86:75:68:4a:77:3b:4f:33:54:20:fb:
06:90:1d:67:3a:52:6a:d8:5e:c0:f7:44:17:5b:14:
39:ef:bb:b2:85:22:19:a5:96:ca:60:53:3e:fd:39:
fb:84:df:15:4e:b7:8f:01:16:c0:68:21:c2:60:72:
43:e0:a0:9a:64:84:86:58:f7:24:3c:80:dc:25:7f:
22:6d:d7:40:01:a0:9c:34:ac:f2:83:52:03:c0:a8:
9c:40:de:50:3d:6f:1f:81:51:59:b6:b3:32:ad:43:
a4:e0:23:6b:98:de:f0:71:14:25:f7:48:4a:5d:3d:
57:28:5e:54:3f:34:a7:90:22:fe:98:ca:e2:9b:96:
8e:86:7e:e0:a3:f9:9f:fa:d5:e0:5c:a1:99:fd:9e:
58:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:3E:7A:2E:E0:50:00:3B:B1:20:6F:14:FA:59:26:52:19:23:21:3A
X509v3 Authority Key Identifier:
keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:fb:1c:36:53:81:9a:8f:0c:b6:e8:a1:f6:f0:da:0e:00:bd:
e2:50:4d:00:75:01:f7:6c:4a:38:f7:42:3b:b1:80:c8:df:89:
5d:bc:d5:84:ee:49:32:32:e7:03:99:b5:f8:bf:8f:38:40:9f:
29:ec:9f:c7:12:94:d3:b1:42:da:57:5b:17:01:22:f4:79:2f:
66:b3:b3:be:75:4f:96:94:20:89:6c:b8:81:c9:34:52:4b:9c:
21:2a:dc:af:36:36:1b:70:6a:f4:80:39:ed:fc:3b:e4:95:9e:
8c:54:17:df:47:ba:af:f6:4b:f3:ed:a0:ef:27:4a:57:fb:d6:
4d:84:cd:e0:8f:35:fc:45:ea:25:b5:35:a5:47:83:0e:a7:bb:
d0:76:0c:b9:b9:8d:55:9d:3a:20:8d:6f:51:c1:71:51:92:79:
00:7c:ed:6a:2d:3e:a0:13:19:fc:e3:8a:0b:6b:76:28:1e:9d:
12:de:1f:36:4c:37:60:ea:93:1d:b3:4d:a8:18:d5:08:1a:c3:
3a:1c:3e:2f:83:67:8d:67:43:e5:6b:89:f0:7e:d7:74:8a:b1:
be:aa:7f:97:8c:d2:fd:31:24:15:80:0f:4c:a1:20:86:e2:7e:
9a:92:77:b6:77:94:6f:ce:97:de:3a:62:cb:47:27:fb:17:04:
b3:e9:64:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:32 2025 by rpki-client