Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File: 4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier: 0Awt/NPzyIgxYCXNtg3PhwrZKrYzZa+tCFye+2m6xQg=
Subject key identifier: 95:88:4E:7A:74:28:99:00:9C:65:C6:1C:48:57:5D:9E:B7:AB:B8:4F
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer: /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial: 01976C98B0BA26127B800E21F9AA1FB23802
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number: 0558
Signing time: Sat 14 Jun 2025 04:00:35 +0000
Manifest this update: Sat 14 Jun 2025 04:00:35 +0000
Manifest next update: Sun 15 Jun 2025 04:00:35 +0000
Files and hashes: 1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: B9VQhvKa0HW+Iot6YinbFBvC0YHMdqYtuC0YPxbZ+2g=)
2: IrEzCg-L6ChV6NO0z_pSKTvObkE.roa (hash: BAxTmTfKNgnausi613sLgqp7n2C4MuqhHvDS7/1g8aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:b0:ba:26:12:7b:80:0e:21:f9:aa:1f:b2:38:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Validity
Not Before: Jun 14 04:00:35 2025 GMT
Not After : Jun 15 04:00:35 2025 GMT
Subject: CN=95884e7a742899009c65c61c48575d9eb7abb84f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a2:29:85:4d:51:d6:23:cd:5f:45:db:66:cc:
c2:20:90:b5:e0:6f:86:be:b4:61:23:a7:49:66:5e:
e8:32:6b:9c:5e:06:1c:15:86:d3:ae:77:5b:91:c5:
6c:56:cd:80:0d:f7:e8:ec:7d:97:3c:14:e5:c2:d0:
df:7b:c5:fa:e9:63:80:f4:d7:e6:8c:41:64:c1:da:
c2:e9:49:68:9a:90:6b:c2:af:da:b2:e7:d1:55:1e:
9a:48:1d:3d:5b:22:75:ad:7a:e2:13:48:18:c7:11:
77:49:61:45:8e:ee:8a:e6:ea:64:87:7d:4f:aa:1f:
bd:f2:cd:fa:6c:55:d9:59:b1:9f:85:01:2d:14:61:
7b:1e:cf:2c:f5:85:1d:1e:81:eb:50:02:7c:cb:cf:
24:8f:d5:f8:f8:60:6e:65:ff:91:3e:82:4d:1f:15:
de:71:4f:10:0e:17:9e:4a:cf:f9:47:75:8f:67:63:
84:89:f7:44:7e:93:ed:b9:66:3f:a0:4c:77:3a:8e:
9d:15:c0:29:0f:92:e9:ed:bc:60:9f:f4:1c:03:fc:
02:2e:f7:7b:2e:50:45:01:f2:a1:88:f1:bb:92:57:
46:6c:56:5e:23:3d:63:b4:3b:ee:ec:f3:e5:8c:b4:
3d:99:4c:fd:7a:23:d5:6d:6b:18:27:e4:7b:11:e9:
23:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:88:4E:7A:74:28:99:00:9C:65:C6:1C:48:57:5D:9E:B7:AB:B8:4F
X509v3 Authority Key Identifier:
keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:c8:14:46:dd:c0:b6:eb:b6:2b:0b:a0:d4:96:e6:22:05:1f:
49:d9:57:a0:c9:67:e4:9b:26:f7:a1:b9:72:9a:c2:fe:f6:4f:
9c:35:75:83:e0:b9:0c:aa:e6:c6:49:ac:f1:46:80:ca:ed:04:
be:69:19:2a:2e:05:6f:b8:31:93:9b:91:1b:07:29:38:e1:04:
a4:a8:91:15:79:ea:63:b2:75:00:c7:2f:b3:a9:0c:a0:07:a0:
3f:bc:33:5a:96:97:58:a6:94:09:04:88:ae:0b:51:b4:08:8f:
db:15:6a:33:dd:f5:37:c6:5f:cb:c8:4b:52:09:43:be:67:d5:
19:ad:37:b5:a1:e5:d7:91:00:9c:94:3e:d5:ad:89:8b:87:9a:
66:56:6a:ea:47:fe:17:71:bc:e7:3d:c9:5d:3e:75:b0:36:8a:
38:b6:2b:88:a0:72:7b:32:89:38:6f:b6:2c:ca:98:d6:9b:6c:
02:17:1a:e9:6e:fe:f6:06:b8:6b:6a:81:8d:67:3b:5c:60:a8:
ef:a4:d9:7d:c3:58:84:5a:fd:19:0e:92:9e:38:d4:51:ea:0d:
22:e4:9d:b4:34:ca:a7:fb:1c:10:45:f9:ee:96:99:f7:82:c4:
15:a5:51:4e:fe:53:ee:be:4a:c2:57:0b:27:0e:0c:7a:e8:88:
05:e9:51:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:05:26 2025 by rpki-client