Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
File: 1AYg6l2vilSq6hfyy57N8114UwY.mft (raw, json)
Hash identifier: KkbDznS5CuBwqrNmWa2QfshBljwc9jIXiY4fwSyK9Nc=
Subject key identifier: 4C:C4:7F:9B:92:4A:20:5E:75:43:DF:93:07:2C:DF:ED:F8:15:C9:5D
Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Certificate serial: 0198A04D6F898EB7DBBF31FCE08E4D604135
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
Manifest number: 1106
Signing time: Tue 12 Aug 2025 22:01:25 +0000
Manifest this update: Tue 12 Aug 2025 22:01:25 +0000
Manifest next update: Wed 13 Aug 2025 22:01:25 +0000
Files and hashes: 1: 1AYg6l2vilSq6hfyy57N8114UwY.crl (hash: +y9ZkZy8xH96nS1xFyGYNn/rESHA77zZAc+n5nAZBEM=)
2: gGx-x2iRamyRfnlhx5me1YxCw6s.roa (hash: JLnMtxeLdoGYGRa/pvkNkIdX/aY0zlXxd7zsjwME0tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:6f:89:8e:b7:db:bf:31:fc:e0:8e:4d:60:41:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Validity
Not Before: Aug 12 22:01:25 2025 GMT
Not After : Aug 13 22:01:25 2025 GMT
Subject: CN=4cc47f9b924a205e7543df93072cdfedf815c95d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:13:11:d2:a6:db:3b:a1:32:17:3b:33:9b:a8:
e0:40:26:64:f5:54:63:0e:2f:d7:21:44:ec:a0:c1:
ef:a8:fa:28:e9:73:f5:d3:a6:5a:5e:2d:0c:6e:20:
57:a1:56:7c:d1:21:86:f7:30:de:a4:68:3d:2b:52:
a3:15:2f:09:59:97:e7:a5:32:f7:df:a3:c5:16:0b:
a5:ef:5c:0f:36:53:34:a3:d5:4e:42:4f:9f:1b:52:
3a:dd:cb:32:2f:d1:97:13:dc:07:16:3a:3e:2f:df:
a8:14:55:db:35:b0:85:e5:6d:bd:16:65:f6:18:c4:
d6:6e:96:e4:d7:15:eb:e9:a6:cd:6d:a7:c9:86:36:
38:17:4f:f0:c8:b5:4a:dd:40:1e:74:18:cc:34:a2:
32:b0:e9:5e:27:df:9e:6b:d1:98:ac:3a:d7:8f:a4:
1d:d9:cf:7b:96:82:e1:f1:be:30:0c:fe:3f:34:f1:
e5:a6:de:a9:b4:2f:9a:3c:e3:3e:4a:45:92:46:1a:
3d:d9:f4:e6:eb:72:92:4b:0b:c5:d9:76:08:71:8a:
20:fc:4e:91:ca:46:eb:95:c8:a4:fa:30:f7:31:43:
33:5e:dc:61:0b:36:19:53:27:d6:22:d3:a2:95:a9:
e9:fb:f5:b7:9a:ab:11:7d:37:c3:f3:07:14:0d:66:
8e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C4:7F:9B:92:4A:20:5E:75:43:DF:93:07:2C:DF:ED:F8:15:C9:5D
X509v3 Authority Key Identifier:
keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:41:e4:f7:71:29:33:88:1f:4c:a7:53:c6:bc:6b:cc:13:3f:
e4:00:dc:19:08:60:44:84:9e:49:0d:0e:30:97:19:bd:09:1f:
df:c3:d7:40:ff:e2:1a:5c:51:fa:a4:fb:cc:f5:ce:73:46:38:
de:37:43:e1:29:d2:7e:b3:ea:93:7a:b8:17:5e:2a:78:f3:d0:
c8:38:85:f1:bf:40:8b:16:9f:32:87:44:a5:c7:d9:45:7d:c5:
01:63:ae:1f:3c:04:72:95:33:2b:a6:61:f5:e1:fa:70:c0:0d:
10:a2:be:1c:53:a8:b7:ba:bf:0f:3c:39:da:2e:af:90:e6:11:
98:c7:00:75:bc:fd:5f:3a:02:48:92:d7:dd:49:70:1d:8c:76:
fb:42:9c:7b:50:e7:56:4f:2d:8c:7b:ef:96:88:9a:ac:48:75:
aa:fb:3f:09:b6:37:54:46:2c:78:9f:fe:11:32:be:ca:c7:58:
c9:b5:de:16:bc:8c:08:16:a4:ee:6c:41:f6:c7:9a:2f:43:0a:
25:d6:8b:4e:c3:3f:5a:0a:63:34:36:e7:8b:bb:bc:3a:a4:99:
8d:4b:8f:1f:97:9c:cb:20:ff:e4:20:6c:1f:ef:83:9e:9a:cc:
1f:ea:26:47:2b:a5:a7:50:90:25:67:dd:fe:f1:0c:e0:d8:74:
8a:b3:7f:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 04:24:02 2025 by rpki-client