Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
File: r7ALKTlueAM-26yv75hQsbDjUyM.mft (raw, json)
Hash identifier: eX+ShZ9CKMU/UZnR9PV3cxDSgETmXqtLkVvB2h/mRNU=
Subject key identifier: 12:DE:94:A4:64:09:D8:61:34:DA:8A:B8:60:14:E7:FC:6D:43:07:D2
Authority key identifier: AF:B0:0B:29:39:6E:78:03:3E:DB:AC:AF:EF:98:50:B1:B0:E3:53:23
Certificate issuer: /CN=afb00b29396e78033edbacafef9850b1b0e35323
Certificate serial: 019894B828D8C7896C03598FB23B1371A00B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
Manifest number: 0ED5
Signing time: Sun 10 Aug 2025 16:02:33 +0000
Manifest this update: Sun 10 Aug 2025 16:02:33 +0000
Manifest next update: Mon 11 Aug 2025 16:02:33 +0000
Files and hashes: 1: CY3YIBeeXy7d304leRk_84B6aOw.roa (hash: a5cqctkZKmbgtiXrSitwhHqbpFExqVK4hQecaTEUPK8=)
2: r7ALKTlueAM-26yv75hQsbDjUyM.crl (hash: AiYg8WG0Ayq4V+/UCfq+j+QB/TgE77WcGMRvM3GgXLE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 16:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:b8:28:d8:c7:89:6c:03:59:8f:b2:3b:13:71:a0:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afb00b29396e78033edbacafef9850b1b0e35323
Validity
Not Before: Aug 10 16:02:33 2025 GMT
Not After : Aug 11 16:02:33 2025 GMT
Subject: CN=12de94a46409d86134da8ab86014e7fc6d4307d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f1:be:27:29:17:4d:39:57:21:f3:f8:6d:57:
63:48:08:24:c1:69:07:06:b9:44:e9:78:a4:23:d5:
e7:ba:8a:02:9e:21:41:9b:6e:03:ce:be:aa:e5:f0:
5b:2f:8e:ac:d6:ee:8a:7f:c7:bd:54:c3:1d:87:72:
02:50:68:08:e5:fb:dc:25:38:92:71:64:17:39:05:
56:b9:98:55:45:1f:67:03:5f:c6:a1:9b:6e:0f:86:
62:b3:0c:0b:91:6a:d1:f5:94:ce:45:e8:e0:cc:7f:
c8:a8:95:53:ba:a6:50:a7:ae:93:c4:80:c9:d8:ca:
3b:7e:6d:79:6c:f7:8c:99:6d:b8:f6:9e:73:bc:63:
a8:f4:de:7d:f6:0f:50:db:46:c0:db:4c:5c:66:90:
69:c8:7b:1a:68:3a:9a:5d:d2:86:5b:b1:68:0f:1c:
f1:30:b9:71:ba:d3:6e:98:cc:3a:30:70:dc:7b:d5:
51:81:dc:b9:cb:cd:39:6a:8d:d3:dd:86:e5:52:b6:
24:d5:84:00:d6:fa:09:fd:cf:41:e2:72:ee:4f:51:
1f:d4:58:9e:cc:71:ed:70:5e:00:2b:6d:2d:f4:7e:
93:1b:9e:9d:0e:5c:45:c3:8c:9f:28:a0:19:b0:33:
e6:98:aa:0c:67:4e:81:06:25:6c:d2:6b:a6:61:51:
9f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:DE:94:A4:64:09:D8:61:34:DA:8A:B8:60:14:E7:FC:6D:43:07:D2
X509v3 Authority Key Identifier:
keyid:AF:B0:0B:29:39:6E:78:03:3E:DB:AC:AF:EF:98:50:B1:B0:E3:53:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:95:23:11:1d:f8:dd:26:e4:d0:7c:a1:39:5b:0e:92:80:dd:
09:f3:86:ef:60:ea:68:7b:c6:ff:3d:a8:12:7f:9d:52:6f:2b:
dc:2f:ed:97:87:80:77:3e:bf:10:0b:28:68:44:c3:c8:76:a0:
2e:16:95:b1:59:f8:6a:aa:50:44:f1:39:9e:fa:60:81:ec:ab:
c9:df:37:22:1b:45:b9:fa:2e:ed:46:90:ec:7f:15:7c:e8:2e:
79:5b:96:d1:ae:23:c8:9f:68:16:1f:50:16:82:5f:1d:a6:53:
17:b4:ca:f2:c9:85:25:af:9a:25:4f:be:eb:eb:16:ec:ce:e1:
48:d1:d9:83:5f:03:77:38:a1:77:58:c5:e9:f1:1e:89:16:18:
a3:dc:a1:a6:40:c3:26:b6:d8:c9:01:a7:7a:d8:79:62:c9:d9:
d6:eb:e4:e7:10:30:f9:4d:70:c0:30:e5:f8:54:f6:b1:13:dd:
54:ab:4d:c8:84:0e:da:bb:de:68:6a:d5:67:bd:02:78:1a:0a:
32:d6:55:d6:1d:3d:f5:0a:bc:b7:04:aa:58:9e:a6:22:59:3f:
85:c6:7f:12:56:2b:8b:1c:e9:e4:80:45:fc:1d:2c:d9:3d:6b:
bb:df:21:45:1e:aa:35:bd:91:68:4a:b3:7b:39:d2:0e:6e:e1:
55:6b:f9:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 18:12:59 2025 by rpki-client