Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/dcc22e-aab3-4e17-a4a0-d87017d7a6ac/1/aWZRzL2U9r6et0MyEiM1yrvvw5o.mft
File: aWZRzL2U9r6et0MyEiM1yrvvw5o.mft (raw, json)
Hash identifier: 7X5uM0lv5Dy0cI1Xr8ZOD9LnTRVrTnL4M9O31qP3Jds=
Subject key identifier: 7C:9A:45:66:21:EF:04:B6:FB:6E:CA:6E:A9:0E:13:F9:B0:77:5F:CA
Authority key identifier: 69:66:51:CC:BD:94:F6:BE:9E:B7:43:32:12:23:35:CA:BB:EF:C3:9A
Certificate issuer: /CN=696651ccbd94f6be9eb74332122335cabbefc39a
Certificate serial: 019872618C5480B436842CA7AE0303756E86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aWZRzL2U9r6et0MyEiM1yrvvw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/dcc22e-aab3-4e17-a4a0-d87017d7a6ac/1/aWZRzL2U9r6et0MyEiM1yrvvw5o.mft
Manifest number: 0543
Signing time: Mon 04 Aug 2025 00:00:52 +0000
Manifest this update: Mon 04 Aug 2025 00:00:52 +0000
Manifest next update: Tue 05 Aug 2025 00:00:52 +0000
Files and hashes: 1: aWZRzL2U9r6et0MyEiM1yrvvw5o.crl (hash: rNmKpHcysk8Teoy+1DT3JmsDgWqVnWYO/tJd1mr9utA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/dcc22e-aab3-4e17-a4a0-d87017d7a6ac/1/aWZRzL2U9r6et0MyEiM1yrvvw5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/dcc22e-aab3-4e17-a4a0-d87017d7a6ac/1/aWZRzL2U9r6et0MyEiM1yrvvw5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/aWZRzL2U9r6et0MyEiM1yrvvw5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 00:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:61:8c:54:80:b4:36:84:2c:a7:ae:03:03:75:6e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=696651ccbd94f6be9eb74332122335cabbefc39a
Validity
Not Before: Aug 4 00:00:52 2025 GMT
Not After : Aug 5 00:00:52 2025 GMT
Subject: CN=7c9a456621ef04b6fb6eca6ea90e13f9b0775fca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:51:bb:3b:55:ce:3e:f6:2b:23:be:82:7e:66:
1e:6e:0d:d9:30:ce:d7:3a:f0:53:18:ef:d4:db:53:
6c:0e:33:5a:44:a2:a6:89:30:32:01:c3:26:88:54:
d6:ca:a8:d9:ca:86:4b:e6:77:2e:02:80:de:b5:7e:
25:47:25:c7:1b:23:f8:f1:99:d7:fb:57:87:0d:ff:
19:9b:75:cd:a8:3a:49:9b:2e:11:14:45:90:3e:b0:
d0:84:5c:be:7a:03:35:ad:f6:86:1f:6d:79:5b:38:
f2:1e:95:cc:84:b4:15:8a:dc:e1:69:9a:12:48:57:
d7:a7:da:cb:26:61:5b:7e:ff:03:3e:81:bf:f9:df:
0b:49:48:cd:98:86:f5:c2:35:48:f1:1e:f7:2f:3e:
da:25:d7:11:90:ec:6a:8e:76:89:fc:05:53:c2:ae:
b0:3d:7a:a5:8d:b5:4b:b7:6a:dd:38:fd:5a:b1:8b:
2f:03:b5:ba:73:8e:f4:b1:47:1c:93:c3:68:75:5e:
1a:d1:ff:63:8a:3b:ba:7b:a4:37:03:97:61:02:b2:
67:00:f6:7d:32:26:d8:8e:86:07:ed:f0:25:ee:6a:
d6:8a:b4:5c:d1:bf:94:9d:62:38:75:78:f7:ed:4b:
a5:a5:26:64:44:b4:90:23:ab:f8:26:43:88:e4:50:
b2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:9A:45:66:21:EF:04:B6:FB:6E:CA:6E:A9:0E:13:F9:B0:77:5F:CA
X509v3 Authority Key Identifier:
keyid:69:66:51:CC:BD:94:F6:BE:9E:B7:43:32:12:23:35:CA:BB:EF:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aWZRzL2U9r6et0MyEiM1yrvvw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/dcc22e-aab3-4e17-a4a0-d87017d7a6ac/1/aWZRzL2U9r6et0MyEiM1yrvvw5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/dcc22e-aab3-4e17-a4a0-d87017d7a6ac/1/aWZRzL2U9r6et0MyEiM1yrvvw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:e0:3e:e8:42:ee:f2:34:24:fc:9e:f7:5a:cc:a1:12:3e:1a:
61:95:0a:75:c9:9d:f0:7d:44:70:d1:48:71:73:9c:b5:01:35:
f4:6e:7f:f7:86:8e:77:6f:fd:50:24:24:fd:df:ac:3c:20:b9:
76:09:84:54:c0:22:52:9c:5a:07:cf:b2:38:a5:43:ab:8f:a0:
08:1a:87:66:28:22:3a:a5:33:d6:52:92:75:03:67:86:a7:1e:
7d:36:34:9b:ca:ff:1d:ca:1a:f9:d7:72:b4:1b:b7:aa:aa:d7:
91:d1:35:00:f3:33:50:c9:e7:c0:c3:35:c3:56:9c:5d:cc:f9:
b4:e3:ab:c9:59:e9:6e:78:05:58:e1:7b:17:e9:74:7a:f0:b3:
bc:19:27:4e:a1:2a:3f:6b:8c:c1:e3:7d:b8:70:14:a9:2b:b2:
ed:50:7c:83:1d:4c:d5:9b:14:f4:46:90:75:6c:c5:78:06:df:
96:b3:42:67:74:95:d0:86:b9:0d:71:16:0f:52:93:de:2c:18:
83:76:8d:5b:7a:b4:08:96:ee:f6:f9:cd:30:22:05:8b:91:a4:
25:6d:d2:f4:28:24:e5:b7:31:20:a7:d4:f0:c1:28:5f:e3:28:
a5:28:93:ac:fb:ae:37:31:79:8a:c6:b8:24:33:80:20:7f:2b:
e1:b3:c3:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 10:59:46 2025 by rpki-client