
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
File: Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft (raw, json)
Hash identifier: 0PaP+f6wshXcP/mkVx3sq8Io2s6g1kdanrZ31jeKSDs=
Subject key identifier: F4:97:B5:50:C6:94:89:16:81:A0:71:F6:35:F9:56:1D:F0:4B:1D:06
Authority key identifier: 46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75
Certificate issuer: /CN=468ecba10e7599a030aa613088688a6c26d62d75
Certificate serial: 0198733D616038BD64BAA2FF80DE5536A75E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
Manifest number: 12A7
Signing time: Mon 04 Aug 2025 04:00:59 +0000
Manifest this update: Mon 04 Aug 2025 04:00:59 +0000
Manifest next update: Tue 05 Aug 2025 04:00:59 +0000
Files and hashes: 1: Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl (hash: uYHvNAYJGRIT8iGS1gh3I2RzzXX/JOr/WpAdxag1zws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:61:60:38:bd:64:ba:a2:ff:80:de:55:36:a7:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468ecba10e7599a030aa613088688a6c26d62d75
Validity
Not Before: Aug 4 04:00:59 2025 GMT
Not After : Aug 5 04:00:59 2025 GMT
Subject: CN=f497b550c694891681a071f635f9561df04b1d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bc:6d:b8:b6:70:a9:a9:33:e4:7d:e6:48:a1:
a0:77:0b:73:f8:01:c3:4f:b6:62:32:e0:8d:85:bc:
fa:62:9e:f3:b3:29:ab:0e:79:1e:12:54:91:fe:74:
9e:6e:11:cf:85:bb:94:cb:a1:51:68:58:b3:b0:66:
31:9c:f0:f1:60:eb:0a:11:c5:5e:e5:d0:b3:5e:af:
7d:c3:e5:fc:8b:1c:93:af:52:dc:16:19:53:9c:75:
03:98:e6:5e:12:9a:55:40:62:c2:b5:94:c1:0f:a9:
15:ea:26:9e:ef:0b:81:76:6a:b6:af:64:e9:ec:81:
10:a2:77:62:25:e3:cb:51:43:da:d8:e8:52:d8:98:
2b:2a:07:39:3e:c0:0b:4b:f0:ed:2b:e3:d2:fb:ba:
50:a7:97:bd:9c:d0:92:f2:b1:64:d6:94:71:40:b8:
ea:69:0b:53:1b:14:c4:06:de:54:d8:f8:e6:2b:e5:
b7:d3:3a:c9:7a:d0:35:a3:e8:c6:9d:89:0a:0f:b1:
08:d6:cd:63:c9:b1:da:c5:73:79:b2:6b:8e:ad:b4:
4d:b3:31:20:9b:29:5b:57:78:ed:aa:4f:02:f3:75:
74:fb:23:56:c8:96:ae:15:4c:4b:46:7b:5a:d2:e2:
44:f3:ad:41:8a:36:05:8f:67:2e:99:c8:d4:7d:64:
af:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:97:B5:50:C6:94:89:16:81:A0:71:F6:35:F9:56:1D:F0:4B:1D:06
X509v3 Authority Key Identifier:
keyid:46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:4b:8c:e3:df:65:6c:9a:2e:98:28:b3:64:d6:52:7c:e5:69:
0a:ac:fd:fe:a2:e9:41:b4:65:9f:3c:bb:06:c1:96:8f:06:8d:
e9:a6:ec:40:91:ac:19:6d:bc:1b:d7:d9:9b:5b:9a:01:22:b7:
68:3d:fc:25:c7:da:ee:52:28:a8:7f:b8:17:7e:5a:84:ba:8a:
a2:ee:a6:64:1f:19:00:ca:d4:2b:98:2b:c9:09:90:37:0a:63:
01:7f:bc:20:5e:36:dd:90:54:95:e6:00:66:29:87:f8:55:4d:
ce:01:bf:fa:0a:4a:9e:fd:8e:8b:89:c8:12:be:78:4e:ea:a1:
00:39:b2:f3:bf:4b:78:0a:6e:97:e9:fc:62:bd:86:e0:eb:11:
b0:34:67:03:3b:b5:4f:ec:95:cc:e4:94:d4:ca:aa:e8:10:b3:
40:7c:f1:ec:50:0c:0b:43:94:ee:16:60:46:73:b2:e8:67:dc:
9d:c5:93:e6:f7:98:bd:35:bf:eb:d9:56:4a:fd:72:5a:20:3d:
12:9e:d9:25:ca:03:89:7f:92:7a:1d:21:36:ff:96:0f:a4:97:
d0:4b:2b:69:d9:e1:36:7c:0c:32:89:7f:26:f4:9d:d4:43:f8:
48:34:12:be:18:d1:c8:c0:69:ee:39:ea:c5:20:68:e6:2b:25:
7b:7a:85:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:04:14 2025 by rpki-client