Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
File: 1AYg6l2vilSq6hfyy57N8114UwY.mft (raw, json)
Hash identifier: giRs5Po8DjWHs4whoKpFX783kejMlF0sj1K6aqlsoGw=
Subject key identifier: 48:E1:ED:D9:08:F0:13:8C:0D:FA:F6:FD:A7:C7:D2:72:0A:75:52:FF
Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Certificate serial: 01974C325805D72EE269690A0761C750ECC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
Manifest number: 1056
Signing time: Sat 07 Jun 2025 21:00:56 +0000
Manifest this update: Sat 07 Jun 2025 21:00:56 +0000
Manifest next update: Sun 08 Jun 2025 21:00:56 +0000
Files and hashes: 1: 1AYg6l2vilSq6hfyy57N8114UwY.crl (hash: fX/7BX9zawqoa6M7q/LthQN84F/uXubKNt3L3vqxs5Q=)
2: gGx-x2iRamyRfnlhx5me1YxCw6s.roa (hash: JLnMtxeLdoGYGRa/pvkNkIdX/aY0zlXxd7zsjwME0tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:58:05:d7:2e:e2:69:69:0a:07:61:c7:50:ec:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Validity
Not Before: Jun 7 21:00:56 2025 GMT
Not After : Jun 8 21:00:56 2025 GMT
Subject: CN=48e1edd908f0138c0dfaf6fda7c7d2720a7552ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e6:79:cc:36:06:c4:32:57:aa:35:1a:fb:07:
d3:d3:5d:0b:ef:a4:b9:a7:ef:40:0f:0d:29:52:0d:
56:09:d7:ef:d0:7c:1c:06:60:92:33:af:88:02:11:
bf:fe:e8:d6:81:42:87:7e:b7:71:c5:59:75:e7:6f:
f8:85:b6:74:41:e0:df:c5:a0:65:da:f5:ce:cd:7d:
60:f5:c1:ac:e9:b7:40:6e:b8:07:ed:2f:06:5c:c4:
02:14:14:fe:a8:e2:6f:ae:77:81:99:e4:46:f9:ee:
11:2b:8b:e5:58:6a:31:bf:28:b8:a5:3c:d5:96:32:
f6:bb:47:3f:87:90:1d:57:ec:dd:63:21:74:7e:9d:
22:89:49:8d:b2:b0:44:c2:70:19:08:53:97:13:e2:
34:1c:fb:6a:25:80:f0:35:00:72:72:6a:5a:2e:ac:
06:97:3c:52:ef:2b:18:50:fd:44:8a:c7:cb:bc:24:
57:d5:b8:07:bb:ea:18:d6:b9:2b:e6:78:80:03:57:
df:2f:b3:64:38:02:45:18:64:49:a0:e2:95:f0:8f:
ad:1a:d4:94:7f:eb:e0:49:a0:83:ff:92:9d:d2:dc:
73:ef:8d:f4:56:02:65:d4:e6:9f:f5:01:c5:09:9c:
4e:9e:a5:8f:df:3b:9b:b0:9c:25:b5:cb:7c:22:69:
2e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E1:ED:D9:08:F0:13:8C:0D:FA:F6:FD:A7:C7:D2:72:0A:75:52:FF
X509v3 Authority Key Identifier:
keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:a0:24:47:ec:32:a9:5a:2a:68:74:48:c2:04:1b:8e:54:e5:
26:30:29:a1:48:47:a4:78:f1:02:02:27:36:fe:b7:eb:f9:57:
f5:59:01:4c:e5:53:33:56:bc:b8:b7:dd:2c:75:b6:9f:5f:7d:
d0:c0:8a:e6:d1:01:25:df:39:1a:a2:7b:4e:e1:8e:59:e8:28:
d6:22:b6:83:25:54:b2:cd:8e:f4:19:75:a6:c8:26:ce:24:15:
16:1c:50:46:2c:f7:bf:78:97:f9:69:fe:5f:99:f2:c0:f2:ec:
1c:e6:2f:dd:dc:d8:93:58:9d:f2:26:90:92:cf:6a:8a:07:c4:
f9:7e:f6:5f:7a:a4:73:d6:bf:07:29:b2:4b:60:d2:9e:31:04:
6c:95:34:ce:98:97:40:8d:87:f0:58:bc:5e:bc:3b:c7:60:90:
fc:9b:f2:f6:e6:c9:63:9f:3c:97:19:38:8c:94:cc:9f:af:ab:
ca:fc:50:75:e3:25:1b:8e:81:8f:74:25:8a:9a:da:23:6a:2c:
eb:fc:ea:03:82:62:2f:58:3e:71:dd:dd:e3:bc:15:64:35:76:
4e:e6:c8:cc:b6:d0:ae:8c:2f:d5:09:09:ed:55:7d:81:8d:48:
d8:84:a9:82:b7:88:00:59:c0:64:0d:86:c0:8c:ea:4b:f2:50:
9c:fd:1d:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:17:15 2025 by rpki-client