Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File: 4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier: 9f8DUKzN06B913ksF0wFVKzrpabCFUNLqmoWUrZY6g0=
Subject key identifier: 19:1A:C3:D3:28:17:09:EF:E7:67:83:57:D7:78:D3:CC:F5:2E:0E:B7
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer: /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial: 019764DEEA89CE9C08FDC289564A375466DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number: 0554
Signing time: Thu 12 Jun 2025 16:00:19 +0000
Manifest this update: Thu 12 Jun 2025 16:00:19 +0000
Manifest next update: Fri 13 Jun 2025 16:00:19 +0000
Files and hashes: 1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: YSJ6YH9UHh7SBbEd06I5Q+gxd7chHq7H+mq0nYaDF8Q=)
2: IrEzCg-L6ChV6NO0z_pSKTvObkE.roa (hash: BAxTmTfKNgnausi613sLgqp7n2C4MuqhHvDS7/1g8aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 16:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:de:ea:89:ce:9c:08:fd:c2:89:56:4a:37:54:66:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Validity
Not Before: Jun 12 16:00:19 2025 GMT
Not After : Jun 13 16:00:19 2025 GMT
Subject: CN=191ac3d3281709efe7678357d778d3ccf52e0eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6c:3a:74:d3:b8:a4:4b:01:cf:1e:bf:c0:8c:
1f:60:2e:07:de:a8:ad:2b:7c:e5:5d:29:c8:1f:f7:
1d:23:67:ba:1d:11:96:d3:b7:da:62:19:db:2f:cc:
1a:56:a4:73:e5:2c:2f:81:6c:86:b1:e6:27:c7:70:
58:b4:91:95:4b:3c:07:5e:a6:66:53:63:a6:8a:bd:
6b:16:0b:54:b9:b9:b0:49:89:bf:08:79:31:9e:78:
86:50:1f:92:af:28:53:c0:f1:fd:ba:48:55:02:69:
8b:6e:a6:73:18:d4:33:41:be:68:7f:37:de:af:a6:
93:0b:b1:4e:26:df:43:9b:42:7e:97:6f:c7:4e:3a:
11:d2:72:c1:0b:84:7e:bd:ac:06:28:1b:f3:e7:7e:
6c:da:b9:08:c9:75:6e:5c:e2:86:e6:4b:7a:44:45:
52:ee:d7:7b:6b:07:cb:74:20:cd:08:61:cf:ef:41:
27:be:84:17:c7:f0:46:9f:2b:4d:79:96:6d:3a:c9:
29:af:d0:f3:10:8d:c9:80:7f:a8:49:ee:84:ce:18:
5a:9a:bf:01:5b:02:7c:74:2d:17:78:f1:ba:47:a0:
f4:cf:b9:bd:bd:4a:69:b5:d1:68:f3:e8:d5:68:1f:
10:80:90:95:ed:8d:4d:26:9b:60:dd:5f:4e:09:f5:
a4:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:1A:C3:D3:28:17:09:EF:E7:67:83:57:D7:78:D3:CC:F5:2E:0E:B7
X509v3 Authority Key Identifier:
keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:ea:67:54:60:85:8d:46:a6:f4:5e:e5:ae:30:71:74:96:b8:
7a:72:5a:fe:63:dc:82:b6:3d:ba:bb:2b:df:ff:aa:b8:3d:37:
29:0b:de:ef:9e:45:2b:f7:33:5f:0c:77:03:e9:8d:7e:9b:3c:
8d:f2:70:ea:49:a5:ba:d6:a5:de:0c:a2:1f:24:72:78:49:45:
b4:f7:85:79:7b:bc:bc:cf:59:89:63:84:01:3f:59:31:0d:6c:
ac:ab:86:dc:8d:da:e3:bc:b2:f8:29:de:a7:40:29:02:ed:fc:
1d:dc:13:a3:83:a8:b1:51:c4:2c:5f:06:bc:96:68:d6:3f:fb:
e9:e1:db:aa:b6:9f:74:52:5e:61:17:b5:b4:15:aa:95:dd:b6:
1d:f0:c0:14:51:a0:1e:df:f7:82:84:7a:f1:1f:83:b0:49:81:
34:07:9c:8c:3b:7e:ea:23:ad:29:9b:bf:3d:80:2b:74:38:6d:
e2:9f:8a:09:17:ac:46:86:76:9f:9e:5c:dd:e7:68:d9:31:d1:
88:b6:43:7d:5e:56:04:18:b6:fb:8e:2b:ac:bf:99:d6:06:3d:
da:1b:3d:33:70:76:2d:b8:2d:5e:c7:51:db:64:70:b5:e1:fa:
36:7f:35:9a:bc:ff:0f:f2:21:84:de:12:77:30:a9:d9:ba:8e:
bf:c2:d4:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 01:40:20 2025 by rpki-client