Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
File: 1KA5ru5iEDsojGyLlpLPWAh0PiE.mft (raw, json)
Hash identifier: bNtQ4JrdCF+LOvKquiy8wTbu0tJjtOmNm92LOWVQ2Q8=
Subject key identifier: C4:99:D6:AC:E2:8E:E8:96:02:78:88:03:AA:C8:11:2A:02:A8:5F:40
Authority key identifier: D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
Certificate issuer: /CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Certificate serial: 019873E1EFDA8830E4BF9CF02E4C19C1AEDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
Manifest number: 15AA
Signing time: Mon 04 Aug 2025 07:00:43 +0000
Manifest this update: Mon 04 Aug 2025 07:00:43 +0000
Manifest next update: Tue 05 Aug 2025 07:00:43 +0000
Files and hashes: 1: 1KA5ru5iEDsojGyLlpLPWAh0PiE.crl (hash: WJQDlU1+Qww/SJ63vRskjfmsjen2b14LqQnThWzv++Y=)
2: s1SLHtKOtkgq5r5rHF__j6OHoGY.roa (hash: KY4xp5ySp/G6GnIfRT4waP6fnoRJIDEZEgF7zNS/QEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e1:ef:da:88:30:e4:bf:9c:f0:2e:4c:19:c1:ae:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Validity
Not Before: Aug 4 07:00:43 2025 GMT
Not After : Aug 5 07:00:43 2025 GMT
Subject: CN=c499d6ace28ee89602788803aac8112a02a85f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bb:5f:92:c9:46:8e:31:39:be:4b:e3:33:7c:
a9:4d:d4:a7:c3:79:4f:74:91:78:2a:c1:63:99:d4:
07:ef:72:e4:3d:ee:74:20:67:44:ba:9b:14:5b:3f:
2b:a6:ff:58:b1:4a:6d:75:44:a4:3e:ed:9d:f5:e7:
08:22:81:24:53:8e:60:10:6b:37:37:ea:69:af:ea:
0e:b1:41:60:d6:bb:a7:79:80:8c:20:c9:97:44:e0:
28:7f:94:80:13:5b:dd:5c:f8:5b:95:da:08:eb:5f:
64:78:05:de:ca:bc:2b:a6:34:8e:b3:48:0b:4a:59:
89:ad:0c:b6:d3:ff:db:fe:6c:88:1f:65:09:93:4b:
54:13:ee:6c:9e:e2:6d:84:df:ce:be:a5:12:9c:74:
49:7c:50:11:c7:f7:2c:6a:8a:a6:97:e2:ff:35:1b:
fe:9f:84:07:8e:38:3b:ec:52:58:da:74:af:d6:0a:
e8:0f:31:cc:d7:cd:32:57:2f:59:f0:40:e5:af:91:
3b:a3:dc:f6:a1:af:6b:c6:31:3c:39:d2:cb:fb:28:
e4:7a:5e:19:d9:29:69:cf:44:7c:77:8d:ee:a1:0e:
e6:86:98:26:b9:97:a9:08:59:07:3a:db:24:dc:5d:
3e:d5:0c:26:d8:d4:0f:a4:62:ad:66:d6:e9:a8:39:
96:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:99:D6:AC:E2:8E:E8:96:02:78:88:03:AA:C8:11:2A:02:A8:5F:40
X509v3 Authority Key Identifier:
keyid:D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:c9:6a:1f:52:aa:76:58:91:f3:d2:a7:83:88:6c:40:d5:99:
3c:f9:84:87:d8:2d:c2:8a:ff:c1:68:a6:40:8e:1b:1e:2c:c9:
e6:6e:18:c7:f9:07:bf:ec:5e:e2:1f:a2:87:a1:47:09:d5:82:
be:6f:05:39:44:e7:1a:c0:22:f7:43:42:1d:44:22:f9:94:43:
63:3d:34:82:7a:06:1e:dc:44:4f:87:7f:5d:fe:ed:17:fb:91:
a9:74:f2:69:7f:22:e1:78:07:f0:52:02:77:68:55:63:c1:c4:
50:5f:75:a8:0c:3e:2e:1d:2b:d7:3a:38:43:92:8b:37:68:75:
35:cf:da:cd:06:37:52:40:45:41:f0:c2:7a:11:3c:1d:dd:2a:
c3:65:56:b8:2d:ef:3d:c5:d3:c6:68:aa:00:11:10:b8:3b:a4:
94:b0:0f:f3:bf:02:9e:12:32:60:46:82:42:06:00:9e:b0:d4:
93:48:b3:58:90:91:b9:96:cd:dc:1d:8b:cd:8f:27:ab:bd:28:
a8:e9:66:c4:7e:b8:cf:c3:3a:dd:b8:fc:29:45:d6:d8:e4:84:
43:1a:33:e1:2e:17:f2:f2:43:e1:fa:4f:fb:62:a0:70:20:ab:
b0:e5:03:01:d5:72:a4:13:58:55:fd:92:13:59:32:df:55:26:
83:70:43:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:09:01 2025 by rpki-client