Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: x3PYoK4ivfHgDiVrVj7c40IHbZU7aCHWxk7exuIniWQ=
Subject key identifier: D3:B5:5F:3A:B0:CF:B2:03:A8:84:0C:E2:D8:3F:4E:4F:B6:89:FB:CC
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 01987418BC50DE5EE6CF2D6C6F02B927C58B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 1618
Signing time: Mon 04 Aug 2025 08:00:34 +0000
Manifest this update: Mon 04 Aug 2025 08:00:34 +0000
Manifest next update: Tue 05 Aug 2025 08:00:34 +0000
Files and hashes: 1: qZsU012FOT7iNKmn0Q6fmLHg-jY.roa (hash: t+/X1ob1d2V1rnzYvMBrQBRc/+JtrsZ+AHNltw325kg=)
2: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: iVWIeQhtUGM2xol22jSyNZOKXTQknfdJMz2yH21mP2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:18:bc:50:de:5e:e6:cf:2d:6c:6f:02:b9:27:c5:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Aug 4 08:00:34 2025 GMT
Not After : Aug 5 08:00:34 2025 GMT
Subject: CN=d3b55f3ab0cfb203a8840ce2d83f4e4fb689fbcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b4:0c:48:94:42:b2:1e:92:52:af:13:cc:a7:
6b:d5:ea:7a:24:97:c5:91:0e:f6:df:24:85:45:a3:
18:d3:20:81:cd:88:74:ee:c3:0b:b2:d0:02:7b:af:
0e:f6:fc:71:b1:0b:34:4d:a5:3b:f9:dc:5b:ac:29:
09:10:c5:c4:77:f3:e4:30:c2:f9:36:07:1c:9a:b6:
7e:b7:56:77:ae:2c:07:c1:5f:8f:6f:50:dc:af:91:
f1:5b:cb:e5:31:b5:41:d9:ac:63:c8:24:db:64:35:
93:63:de:c2:a3:02:5e:e2:a5:24:ed:6f:54:09:a5:
d1:70:d6:e0:8c:9e:86:43:47:20:b5:ed:5f:55:05:
d7:ba:ce:d0:f7:97:a6:ff:5c:0d:5e:dc:a9:29:c3:
c3:9a:ec:ad:59:c8:c6:a6:c3:32:b3:59:51:e7:5f:
9d:93:33:42:d9:f7:fd:50:06:46:e8:3e:b7:4c:90:
ed:aa:b7:d5:12:40:e3:de:d3:7a:d7:e8:c2:18:0a:
71:c7:18:1b:30:a7:b3:58:b3:b9:8e:4d:46:19:65:
5f:db:d4:8c:66:5c:e5:b8:d0:59:c6:2a:46:31:71:
cc:2b:53:0a:ad:02:6c:fa:b8:ba:83:82:80:80:fe:
b1:a1:53:c3:04:f3:c9:05:d7:b0:a8:d2:cc:d4:04:
34:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B5:5F:3A:B0:CF:B2:03:A8:84:0C:E2:D8:3F:4E:4F:B6:89:FB:CC
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:ef:9d:ed:a6:c3:57:ad:9d:18:d6:5a:63:07:4c:d2:4b:15:
95:e9:46:98:c1:a4:de:78:ae:3f:a7:08:7e:0b:fa:80:f7:6e:
bb:ae:a1:5b:4f:dc:80:99:f3:02:28:81:fe:7a:00:b3:d7:73:
49:ce:24:ce:3f:8c:5f:e0:31:5b:04:7a:2e:53:da:f9:5e:64:
e0:1e:f6:6f:d4:b1:97:a2:0a:9f:a9:fc:33:1c:1c:1f:33:8a:
8c:3f:22:f9:6b:93:5b:4d:44:02:27:89:42:aa:08:1b:84:2b:
c6:8b:6e:ce:39:b6:77:3c:a2:27:30:ce:5b:4a:86:14:d2:ec:
78:52:4d:c8:17:a7:4e:2a:9c:3d:fc:b5:22:64:3f:ab:c3:c5:
ed:4f:13:43:dc:09:a8:b9:fb:67:b3:1b:21:85:49:34:2c:1e:
8e:84:97:38:ad:1e:4c:2d:5b:0e:71:a4:c6:2f:d4:db:4a:f6:
f8:a7:61:7f:ec:0d:04:07:b8:b4:79:58:5f:aa:e6:dc:ab:b8:
24:10:55:b6:b4:8d:c0:fb:36:01:a7:5c:be:7f:8d:cd:3e:80:
fd:67:e8:b6:24:7e:97:d1:98:50:ee:4f:75:24:a2:67:6c:d3:
74:5b:63:00:0a:8c:66:2e:39:77:95:ea:a9:b9:9c:5c:8e:6b:
19:eb:6e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:17 2025 by rpki-client