Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
File: rARWSrE5dm8d7mSLNaChi702IQk.mft (raw, json)
Hash identifier: /A6nzavMwZFH+AxmnHmfqqrJ/GcMrUPK+iRIInZrdx8=
Subject key identifier: 8F:D5:4D:B0:B4:B9:87:23:B9:DC:66:9B:22:7B:E2:12:85:22:AD:F8
Authority key identifier: AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
Certificate issuer: /CN=ac04564ab139766f1dee648b35a0a18bbd362109
Certificate serial: 019881D4CC8B18C5E06C24255F455D380595
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
Manifest number: 161B
Signing time: Thu 07 Aug 2025 00:01:03 +0000
Manifest this update: Thu 07 Aug 2025 00:01:03 +0000
Manifest next update: Fri 08 Aug 2025 00:01:03 +0000
Files and hashes: 1: rARWSrE5dm8d7mSLNaChi702IQk.crl (hash: GMhqSvWbITwrscbeCSJfEFwa8/ew5kwRXN/AH+6dQOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:d4:cc:8b:18:c5:e0:6c:24:25:5f:45:5d:38:05:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac04564ab139766f1dee648b35a0a18bbd362109
Validity
Not Before: Aug 7 00:01:03 2025 GMT
Not After : Aug 8 00:01:03 2025 GMT
Subject: CN=8fd54db0b4b98723b9dc669b227be2128522adf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1e:d7:7f:2b:94:60:82:7e:6b:ff:a8:2b:44:
95:1c:f4:6d:26:73:1d:df:a9:ab:84:a1:f5:1a:c9:
f5:61:28:80:10:dc:8a:ad:ab:68:8b:9a:a1:98:41:
bb:49:34:9b:54:e9:42:9b:6c:90:5b:a3:e8:cf:97:
90:53:87:ff:25:4c:9c:46:30:70:0a:8d:bb:bc:3b:
a5:40:88:4b:12:85:17:c1:ab:9d:57:ce:41:85:46:
47:2a:7b:83:4a:63:40:ce:c5:1d:34:1e:1b:02:6d:
a8:bb:7f:80:89:b8:a1:32:60:53:c0:aa:da:ed:52:
75:81:d8:41:2b:26:41:79:b9:e5:ee:88:5c:e5:7e:
1c:9a:e0:df:48:ea:4f:83:f9:cc:1d:c9:5c:d8:08:
b6:20:ab:95:11:a4:91:4e:ab:3c:ae:86:a0:de:f9:
7f:cb:b5:2d:7a:7e:74:08:79:5d:99:87:6a:45:4d:
b5:54:8b:9f:7b:85:ee:55:56:bf:02:e8:1f:bd:6f:
be:32:90:ef:2b:46:d8:d4:e5:13:bf:75:64:74:74:
57:9c:70:8a:26:81:43:d8:0d:9c:01:01:0b:e3:d2:
a5:bd:6f:6b:76:84:ce:4d:9f:e6:51:6e:25:ac:68:
b0:7b:5d:64:37:86:70:20:09:12:00:04:17:dd:4c:
78:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:D5:4D:B0:B4:B9:87:23:B9:DC:66:9B:22:7B:E2:12:85:22:AD:F8
X509v3 Authority Key Identifier:
keyid:AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:5e:3e:1a:06:d2:0c:fa:da:4a:d6:e4:09:cb:58:81:9c:b2:
8c:79:12:ec:28:0c:42:5d:31:8b:49:4b:f6:68:64:cf:57:34:
c7:f8:04:86:dd:94:b6:6f:c8:5e:21:35:b6:98:e8:2d:4e:e3:
32:d0:7a:dc:4d:88:79:c0:ac:e8:be:1f:36:9c:58:66:4d:a3:
35:9e:bb:77:28:56:29:a6:9a:21:a9:96:77:33:f7:20:74:51:
25:6d:05:29:1f:34:e7:a9:48:9d:94:e5:5f:57:5a:84:a2:ee:
cd:f8:1b:d9:36:65:38:af:b3:4d:4f:8e:21:4f:89:f2:d9:9f:
36:4c:b1:28:7f:be:1b:a5:a7:d5:8c:b1:de:1d:09:28:c2:a2:
82:80:08:1c:44:b0:50:d4:ac:af:1d:3b:87:14:c1:62:36:4a:
f8:a0:fb:e0:6f:d2:a7:f9:8c:56:c7:ed:a0:4a:1e:fe:77:d3:
a5:65:ca:e4:34:55:93:82:0e:7e:20:f7:dd:0b:42:93:6a:6c:
14:82:fa:5c:14:5c:03:b7:a0:58:54:a2:f4:1f:d4:fa:46:9d:
7b:21:06:70:90:4a:9a:78:b2:01:07:c6:ca:29:15:e4:1f:02:
bf:e8:57:a2:5b:dc:67:b6:ef:e1:d0:16:f1:35:07:9c:a9:bf:
0d:0b:80:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:03:00 2025 by rpki-client