Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
File: 43ipS5lk6l6fiwWThwK6WDFrUA8.mft (raw, json)
Hash identifier: vvRIsixWo1CBmtyeMcFxZHRZVD8tFdsWK0DRuNpOOj8=
Subject key identifier: B6:EE:6D:AF:99:DC:39:DA:31:CE:81:9F:64:FE:98:24:43:12:67:B8
Authority key identifier: E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
Certificate issuer: /CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Certificate serial: 01987E9C90CFBA81AC7BF2F95FFF05AC2DC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
Manifest number: 15AC
Signing time: Wed 06 Aug 2025 09:00:46 +0000
Manifest this update: Wed 06 Aug 2025 09:00:46 +0000
Manifest next update: Thu 07 Aug 2025 09:00:46 +0000
Files and hashes: 1: 43ipS5lk6l6fiwWThwK6WDFrUA8.crl (hash: ynCMab8lzm51EsseyBt760PrtPtxziC/seAN8Jk6bNc=)
2: vvNRTPRqU8Pnch_p0B0gqgkil_Q.roa (hash: nLSnGecWyvHzo3G0jRopUHVVK/4X1Sw9XUMyVphgWSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:9c:90:cf:ba:81:ac:7b:f2:f9:5f:ff:05:ac:2d:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Validity
Not Before: Aug 6 09:00:46 2025 GMT
Not After : Aug 7 09:00:46 2025 GMT
Subject: CN=b6ee6daf99dc39da31ce819f64fe9824431267b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a6:12:c3:c0:10:97:c7:52:a0:bc:48:9c:3e:
e4:48:86:d1:4c:ce:83:9a:45:4d:df:a9:40:1a:d6:
e4:3a:0b:b8:20:0c:5d:c9:98:e8:3d:72:0b:32:3d:
d7:56:8b:ec:42:b8:1e:8c:37:b5:89:a6:f1:f3:a4:
4d:ff:6f:1d:d3:fa:d0:ab:61:42:22:88:26:df:60:
c1:0e:ff:5d:7d:fa:cc:bf:01:88:a4:2c:52:6e:d6:
84:5e:45:68:d7:61:a1:1b:9e:ef:19:48:fb:a9:4a:
80:cc:87:9c:9b:b2:7b:39:b9:bf:76:ce:8f:fc:6e:
76:65:56:94:ff:e5:f8:7d:d8:64:38:e8:30:20:82:
a6:a6:28:11:8d:a7:f5:b6:4e:68:a7:b2:84:2a:06:
de:e5:3d:95:fc:cd:48:f9:42:0d:95:e5:a3:32:e6:
ae:8e:22:9e:86:bd:57:e3:2d:55:bd:36:95:d8:7c:
98:90:ce:bd:a6:14:27:f2:2a:f0:ce:e2:61:f9:6b:
1b:f5:7b:01:cf:4a:ce:5e:45:90:1c:dd:bb:13:7d:
41:f9:17:67:1f:f0:4a:e3:a0:d6:3a:e8:cf:bd:41:
a6:c0:aa:22:4b:fe:a8:5b:d5:18:03:b2:f8:c0:5e:
e7:0e:0f:3d:ea:6a:c2:a0:96:8c:38:ab:7e:b4:d7:
40:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:EE:6D:AF:99:DC:39:DA:31:CE:81:9F:64:FE:98:24:43:12:67:B8
X509v3 Authority Key Identifier:
keyid:E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:27:5c:ea:f8:1c:4d:c6:d7:35:dc:90:bd:50:14:41:e2:72:
e3:1e:b6:65:6b:f3:45:b4:ff:71:5f:61:9d:e1:51:1e:ef:9e:
c0:2a:01:8b:87:fa:b5:9e:34:d9:d9:43:f1:c3:b8:28:35:f2:
2f:2f:d5:63:e1:12:dd:73:24:35:81:a6:ef:5f:a9:4d:44:df:
68:c3:eb:51:db:95:c2:ef:36:9f:d9:33:c6:bf:db:f8:cf:f9:
8e:b9:b0:69:ca:1a:db:6c:ec:ec:62:80:85:48:e2:46:26:63:
33:4b:cf:0b:75:55:4d:fa:0f:40:b4:34:e2:40:6c:01:aa:59:
21:12:75:07:7d:4c:c5:ce:f6:f5:f2:d7:cb:bb:1b:e1:8c:0f:
c1:97:a4:1c:ce:8d:4c:bf:a6:27:52:7d:cd:61:bd:bb:2b:b6:
38:27:23:9b:6b:8e:f2:1a:24:68:75:85:5b:28:3e:04:37:43:
e2:c3:44:ae:56:18:42:67:38:b3:f0:03:ba:d8:fc:d1:0f:a6:
04:da:81:7b:2d:8f:06:ea:61:66:4e:34:eb:4a:c9:17:73:9b:
ec:2b:22:ed:da:b7:c2:de:2d:0d:e3:f0:40:96:e5:56:72:67:
3f:26:31:3b:ac:b8:f3:fb:79:e5:55:20:4f:a2:9a:be:05:6c:
e7:a3:35:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 14:06:34 2025 by rpki-client