Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
File: rARWSrE5dm8d7mSLNaChi702IQk.mft (raw, json)
Hash identifier: 77OCssxZH5IiV+cE5OkVi0HRi/+LpqGe7A1zPGCuZ5w=
Subject key identifier: A5:B2:01:64:22:2E:7C:01:47:00:95:70:2D:B4:41:37:35:F4:A2:26
Authority key identifier: AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
Certificate issuer: /CN=ac04564ab139766f1dee648b35a0a18bbd362109
Certificate serial: 019769CE8AC18895B62E8A344F2D16CB7646
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
Manifest number: 158A
Signing time: Fri 13 Jun 2025 15:00:33 +0000
Manifest this update: Fri 13 Jun 2025 15:00:33 +0000
Manifest next update: Sat 14 Jun 2025 15:00:33 +0000
Files and hashes: 1: rARWSrE5dm8d7mSLNaChi702IQk.crl (hash: TCSCLmPRdZqqqG9vhUQPO5zJbzpYHCJ2G0H/ED0HQP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:8a:c1:88:95:b6:2e:8a:34:4f:2d:16:cb:76:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac04564ab139766f1dee648b35a0a18bbd362109
Validity
Not Before: Jun 13 15:00:33 2025 GMT
Not After : Jun 14 15:00:33 2025 GMT
Subject: CN=a5b20164222e7c01470095702db4413735f4a226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b0:c2:cb:6e:ee:50:1f:ea:87:d1:e7:44:ca:
17:62:55:7f:a0:a6:3d:a0:0a:fc:ea:c2:55:67:61:
ac:ec:13:17:cb:43:81:c5:60:41:a1:47:e1:f2:8e:
61:d9:9b:ad:00:be:8b:7d:c1:d2:47:fd:79:4d:18:
3c:c0:79:64:ef:6e:de:b2:6d:d2:9a:ec:41:ef:76:
f6:de:0f:f7:1e:3d:45:ac:da:92:f1:13:87:eb:40:
63:8e:37:74:f8:be:e5:6c:e1:1e:3f:ca:87:06:6d:
3b:00:32:a7:9f:44:27:ba:46:05:80:b2:ef:ce:86:
f1:30:83:df:1f:7f:85:00:b3:d8:69:c3:a6:92:08:
22:83:3a:7a:82:5d:fd:53:3b:e2:f3:37:47:97:4b:
09:ce:c5:ae:d4:76:8e:d9:58:0a:7d:ed:f3:98:b8:
ae:98:5b:91:05:61:dc:a5:2c:7f:97:f1:00:d6:37:
74:08:c7:ca:c8:68:a3:15:8a:e1:6a:57:52:6f:0c:
53:5c:e8:60:c3:c8:31:ea:88:a2:fd:c6:60:2f:b2:
6a:eb:30:41:8c:b1:1a:cf:13:23:7e:03:a6:09:fd:
a7:bf:ff:2f:15:6e:16:eb:94:76:07:ea:2b:8f:d9:
1b:a8:d1:7d:4b:50:d6:cb:d7:6a:b6:be:a3:3d:6e:
08:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B2:01:64:22:2E:7C:01:47:00:95:70:2D:B4:41:37:35:F4:A2:26
X509v3 Authority Key Identifier:
keyid:AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:52:ac:7b:41:8e:6a:f3:ad:7b:80:94:48:f1:a0:d1:38:c1:
8f:a8:59:0d:5b:2a:27:66:fe:44:71:a6:36:be:de:1e:2c:a0:
59:cf:a4:26:c5:f0:0a:c1:bb:9d:25:eb:85:5f:b9:82:01:7b:
74:7a:67:22:6d:ad:d3:ab:47:e0:d7:13:3f:ec:75:ec:62:a8:
23:5e:3c:0b:55:91:9a:a6:1c:e1:83:c4:10:e7:b1:b1:5e:92:
1f:2d:6a:51:6d:80:a0:dc:a6:a0:d8:29:4c:3f:05:06:f7:4b:
1c:35:66:4b:bb:c8:a9:4c:9f:41:5d:86:16:bb:8b:e4:86:9e:
51:ed:1a:4b:e3:8a:2c:e8:15:35:20:f7:ef:80:e9:d7:0b:0e:
7e:b6:6a:32:a9:a6:e6:f7:77:4c:4a:23:61:29:8c:d4:df:a8:
6f:f9:23:ff:c3:f6:dd:10:63:b8:7a:cd:d9:49:64:aa:74:6b:
9a:0d:75:7c:43:a0:51:64:89:17:c6:d5:db:52:b1:c6:9e:9d:
82:82:2c:eb:5f:fd:9b:e9:cb:f0:5c:b9:36:0f:aa:02:4d:9e:
3e:5b:e1:88:8a:62:9d:04:3f:bd:0d:be:d3:cc:7d:d9:be:7c:
ca:22:08:09:a6:ec:c3:f1:67:ef:c9:47:49:ce:ae:f7:9b:cc:
79:04:cc:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:21:45 2025 by rpki-client