Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
File: RdGncWAlFxEzoyAslGKg6r1mBoI.mft (raw, json)
Hash identifier: QkGNlgB3Crw148MfYkSyHhGk6oYUgriRm9sh08qMl0g=
Subject key identifier: 25:F2:0A:AB:79:A1:CA:41:0A:07:6E:CE:07:3F:D6:3F:AC:9B:4E:67
Authority key identifier: 45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
Certificate issuer: /CN=45d1a7716025171133a3202c9462a0eabd660682
Certificate serial: 01977007DCC810A8C771B1A2CF5E3A6F3393
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
Manifest number: 0525
Signing time: Sat 14 Jun 2025 20:00:52 +0000
Manifest this update: Sat 14 Jun 2025 20:00:52 +0000
Manifest next update: Sun 15 Jun 2025 20:00:52 +0000
Files and hashes: 1: RdGncWAlFxEzoyAslGKg6r1mBoI.crl (hash: 8z7fiFXGOhSADFkuieip7Lh0xf533GweDBaJtdPxqOY=)
2: p6pII2yeX9CFzHUBZ-7ECA5XoLc.roa (hash: a0i/QIPJclzVoZAHggGCZw2DH9on4V8xPPUo2d8z17I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:07:dc:c8:10:a8:c7:71:b1:a2:cf:5e:3a:6f:33:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45d1a7716025171133a3202c9462a0eabd660682
Validity
Not Before: Jun 14 20:00:52 2025 GMT
Not After : Jun 15 20:00:52 2025 GMT
Subject: CN=25f20aab79a1ca410a076ece073fd63fac9b4e67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a6:60:08:26:97:a7:cf:90:59:09:50:43:b8:
a2:31:df:97:ad:61:ac:36:3a:ce:18:95:5b:7c:5f:
bc:9f:a3:b5:40:28:b4:6a:ae:c5:60:10:1b:5d:44:
c9:b6:73:61:af:1a:d1:84:3e:d7:dd:b9:70:75:ea:
17:fe:37:26:cf:ff:f7:9f:92:d8:de:d0:0c:30:63:
3c:8e:d7:73:a7:74:15:68:fd:18:30:8d:92:8b:67:
dc:dd:49:6a:90:4f:39:d5:37:91:4b:f7:7f:b7:4f:
88:c1:42:09:f6:38:62:71:80:9e:db:3e:e5:d5:0a:
2f:0c:43:41:3f:9b:c0:22:ae:b2:5c:77:18:42:83:
f3:ac:df:41:9e:c3:79:3a:3d:7a:1f:23:e4:1b:a5:
01:ac:dc:e1:0d:3a:f8:66:75:fa:e5:f3:f1:67:72:
91:7e:97:2d:79:c9:66:ee:4a:d8:f5:0b:96:e3:57:
bc:9e:e4:93:4f:00:67:71:97:c3:cd:e0:60:46:a3:
74:83:f6:7c:04:79:39:7a:36:80:d5:1b:7a:70:bc:
6a:7d:d0:2f:24:39:60:73:b0:12:6e:e5:97:c1:e3:
11:9c:06:8b:b4:49:da:b8:ef:ba:c5:ba:d2:61:4c:
3c:04:0a:63:56:ba:01:87:19:f9:a2:f1:36:06:39:
99:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F2:0A:AB:79:A1:CA:41:0A:07:6E:CE:07:3F:D6:3F:AC:9B:4E:67
X509v3 Authority Key Identifier:
keyid:45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:4f:23:f8:1c:44:62:7c:13:9e:e0:09:50:1e:99:95:d4:39:
39:d6:83:c8:5b:9e:13:ff:8b:43:ee:f6:0c:14:fa:90:12:88:
17:8b:e8:37:b9:2d:7f:5a:db:32:24:e4:76:14:37:d2:4d:2a:
99:bb:18:9d:8c:84:1b:5b:e8:d4:ed:ff:38:3a:f4:8f:ee:b9:
c3:9d:75:de:ff:95:fa:36:7e:a1:f6:24:48:00:ca:51:fe:0c:
25:85:41:19:f9:f3:22:21:19:a2:29:97:bc:27:13:c5:e3:ee:
3d:9d:de:e6:51:b1:3e:be:64:04:32:6b:91:1c:aa:54:39:7e:
2d:5d:49:3e:b6:0c:a4:1a:80:99:14:64:79:b0:5d:eb:da:17:
dd:6a:25:df:28:b4:cd:25:1d:9c:e4:02:72:07:c4:5a:54:b6:
85:99:1a:e1:88:fc:ac:5d:98:72:f7:fe:36:e3:1c:3f:4f:13:
7e:01:fa:2d:b6:aa:8c:0f:72:bc:d3:6b:7a:39:b4:53:63:22:
66:72:77:af:c0:f7:17:e7:de:fc:f9:1f:2d:39:0e:79:54:e4:
82:7d:bf:65:08:3d:cc:df:b6:8b:de:8f:4c:62:fd:6f:39:bc:
83:eb:ff:87:71:b8:ea:b1:54:29:fc:29:e8:b8:a9:e1:5a:d3:
00:08:79:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:52:40 2025 by rpki-client