Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
File: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft (raw, json)
Hash identifier: 5S+nR4d/h/uQQiRqzQ/rWvnlVRDdaN2fxGzpmVgyPqw=
Subject key identifier: 96:EF:D0:B5:E1:69:32:52:8C:06:0B:8A:FF:3D:AC:EE:DB:55:34:A6
Authority key identifier: A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
Certificate issuer: /CN=a4068c6655c333fc712832c113f67f1fd688aec4
Certificate serial: 019896A4C5CD0B6FBB9CF134EBC88C21F6BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
Manifest number: 1326
Signing time: Mon 11 Aug 2025 01:00:37 +0000
Manifest this update: Mon 11 Aug 2025 01:00:37 +0000
Manifest next update: Tue 12 Aug 2025 01:00:37 +0000
Files and hashes: 1: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl (hash: c+d303YMY+f4WiXF2T7knu6Fncu/v5j7RamvvTImlx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a4:c5:cd:0b:6f:bb:9c:f1:34:eb:c8:8c:21:f6:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4068c6655c333fc712832c113f67f1fd688aec4
Validity
Not Before: Aug 11 01:00:37 2025 GMT
Not After : Aug 12 01:00:37 2025 GMT
Subject: CN=96efd0b5e16932528c060b8aff3daceedb5534a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3d:9c:eb:dd:d2:d9:6a:1c:f7:21:7c:18:67:
51:05:2f:e8:7f:d9:a9:8a:73:62:f4:ac:53:77:b0:
b1:30:b4:82:10:f9:32:a3:f1:4f:1f:2e:e8:7d:91:
08:e4:74:ec:e7:4c:21:d6:37:86:87:c8:32:b8:2c:
02:58:f3:d4:1e:58:fd:67:9d:84:1f:9c:31:ae:22:
26:34:d7:c3:75:0f:dc:d2:de:eb:7b:9d:b3:19:ab:
1f:40:88:54:a7:cb:72:2f:44:eb:81:a2:5c:94:8f:
70:e3:d3:fa:59:64:64:4a:09:23:f4:78:ce:ac:b2:
9b:d3:b9:4b:d6:2c:35:30:9a:f0:03:5b:75:d6:57:
16:4c:f9:ab:2e:0d:1f:cb:f2:c5:0c:25:1b:28:84:
89:ee:0b:53:ac:fb:45:c5:74:93:05:2f:40:36:8d:
11:58:0f:18:fe:8e:6f:8b:02:9b:29:ee:36:ea:af:
e4:60:69:d4:79:5c:df:d0:e1:35:3f:a4:04:1e:5e:
ff:bf:83:f2:22:27:0e:26:77:d5:fa:07:0f:d7:92:
12:00:e0:be:cf:9a:7e:0e:d8:99:2a:34:b5:a0:78:
df:20:53:d7:ff:61:cb:90:05:92:7d:50:77:34:4d:
6f:2c:d7:e0:4e:91:c6:81:c9:9a:66:f4:9d:50:5e:
4e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:EF:D0:B5:E1:69:32:52:8C:06:0B:8A:FF:3D:AC:EE:DB:55:34:A6
X509v3 Authority Key Identifier:
keyid:A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:e8:3a:0b:00:8f:30:c3:bc:2c:f4:8b:c2:46:cb:0b:f8:fd:
9b:29:7f:27:04:1f:20:13:60:12:77:4d:a5:78:7f:0d:2d:37:
47:09:b2:00:c1:61:d3:b3:04:84:f2:a4:7c:d2:7d:2a:13:32:
b9:c3:d3:da:f7:81:4c:78:31:2a:c7:89:da:2c:92:bd:0a:f6:
2d:1e:33:90:72:de:a4:da:47:f4:8a:78:ba:4f:53:03:64:6b:
5f:f8:9f:c6:9b:c2:93:11:7e:b6:71:b0:a6:9f:fe:43:e4:88:
ba:0f:e5:9a:2d:e4:87:7b:94:b7:e1:af:52:b5:c0:e4:6c:ed:
99:49:8e:0b:60:cb:0f:18:19:2d:45:a4:fa:26:88:77:5f:70:
fc:9f:5e:0e:e4:dd:95:45:f6:30:74:6c:49:d4:bf:80:29:ac:
56:51:b0:b7:a0:e3:f2:10:52:6e:16:d3:e1:be:ea:7b:ab:d1:
41:bb:a6:ab:32:6d:06:8f:a0:eb:00:a8:57:f5:de:79:cf:8c:
e8:f2:9a:a1:aa:21:90:15:9d:6a:8a:84:b6:9f:07:be:cd:dc:
64:5d:a8:bf:af:37:38:f3:e6:f4:43:0f:14:fd:f3:3f:1b:fc:
11:41:35:d1:67:7e:23:e4:35:4a:fa:c5:c5:c8:29:4b:54:b7:
4a:ad:19:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 06:04:24 2025 by rpki-client