Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File: 4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier: dogjxQcW3sQ8vN5mvI5+U/ooUq/0AOPpHdhDitS5bok=
Subject key identifier: 07:38:1D:59:64:4B:FD:01:16:32:8E:48:49:6A:6D:99:5D:1C:68:4C
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer: /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial: 0197556BE22917A1A0A698A4D9BE1ECA133E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number: 054C
Signing time: Mon 09 Jun 2025 16:00:22 +0000
Manifest this update: Mon 09 Jun 2025 16:00:22 +0000
Manifest next update: Tue 10 Jun 2025 16:00:22 +0000
Files and hashes: 1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: vzAGoouhtVDSZmOlqvOqFRxO6IDbz3wOqP9GOR3pS+Y=)
2: IrEzCg-L6ChV6NO0z_pSKTvObkE.roa (hash: BAxTmTfKNgnausi613sLgqp7n2C4MuqhHvDS7/1g8aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:55:6b:e2:29:17:a1:a0:a6:98:a4:d9:be:1e:ca:13:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Validity
Not Before: Jun 9 16:00:22 2025 GMT
Not After : Jun 10 16:00:22 2025 GMT
Subject: CN=07381d59644bfd0116328e48496a6d995d1c684c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bf:11:1e:fa:5b:9d:9c:2f:84:b8:21:eb:82:
ed:fe:11:94:62:c1:ca:00:67:8e:5e:41:24:5b:9e:
99:2b:4c:35:9b:9b:1a:04:1b:2a:ae:e5:f5:de:b6:
c9:e3:b2:a8:d3:a6:53:66:b0:c9:d3:4a:d4:5d:40:
66:de:37:b6:67:54:a7:3c:47:cc:c7:1e:25:9a:ff:
7a:c7:b4:90:c7:d9:ea:27:1c:a4:91:c6:6a:97:f9:
90:29:5a:d0:96:48:d8:77:9e:26:20:5f:35:cc:f7:
92:f9:20:bc:e7:95:be:04:14:ad:67:0f:2a:fd:53:
d8:86:ab:73:25:70:67:7a:7d:3f:a4:6b:a3:3b:31:
21:07:61:4b:2f:4a:0b:12:0d:cf:d2:d0:f9:db:c7:
40:96:0f:9e:26:0e:f5:8d:54:8f:5f:e8:f0:90:f5:
fd:20:ea:65:fb:a6:b6:58:b7:17:6c:19:3e:0e:0d:
e8:ab:e2:1b:80:8d:86:9a:18:7f:8b:46:c8:e1:24:
02:6d:55:21:2c:ae:83:e3:8f:4e:70:6f:f9:19:7d:
4c:0a:91:8c:3c:46:c2:2c:88:7f:54:7f:bb:15:18:
da:12:b9:97:d5:32:56:6f:47:be:b4:8f:d8:0d:39:
3a:e1:a6:e8:a5:ce:29:e9:b5:5b:1c:87:08:81:38:
c8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:38:1D:59:64:4B:FD:01:16:32:8E:48:49:6A:6D:99:5D:1C:68:4C
X509v3 Authority Key Identifier:
keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:93:58:35:65:9f:e9:b3:3c:38:83:36:7a:e1:fa:6f:76:2f:
39:4f:d3:ff:fa:25:99:9f:6c:64:56:ab:db:4c:31:6c:e3:b8:
f3:d8:2f:c0:0b:30:b1:47:80:b2:d8:c4:6c:63:89:56:38:ae:
e6:07:41:6a:6f:6c:20:3b:f2:c6:00:c7:ba:3f:36:19:ed:55:
e7:d9:35:a1:d5:5f:98:2b:75:75:d6:d6:f0:91:e9:b8:11:e1:
c4:d9:38:e6:2e:9d:db:ca:c4:76:c9:fb:65:4d:13:01:94:7d:
08:8e:c7:af:79:9e:d9:38:28:5b:3a:f9:ce:26:54:d6:5d:9b:
be:68:04:36:de:50:ea:2b:59:4f:c0:24:9a:29:aa:1e:4e:b7:
21:10:5b:ea:56:99:59:0f:c0:f5:d0:3d:da:41:17:57:f1:4c:
3f:22:bb:a0:36:be:b9:ac:73:ea:30:d6:ac:f2:cb:ee:69:45:
95:ef:4a:64:15:e3:99:80:0c:26:60:01:7f:22:66:39:25:89:
90:91:94:eb:f8:4b:4b:68:90:d9:83:1a:85:93:90:e0:fc:7d:
2c:12:15:7a:0d:52:36:d2:b5:85:ea:29:7d:5e:d3:4f:a4:b6:
79:91:c0:0b:8d:9a:2b:52:05:7e:15:e7:af:68:c8:06:76:72:
37:7c:a7:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 23:39:21 2025 by rpki-client