Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
File: aBHhJcs1cHby-jE4yT6aJoGxeJM.mft (raw, json)
Hash identifier: 3ili5w/zZbGEVefYny8q/AcvQS2IHbd/C0WI0GrKWIk=
Subject key identifier: 66:2B:86:2D:A2:52:8F:62:AA:9E:A5:CB:72:43:11:A9:7F:3F:03:F7
Authority key identifier: 68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93
Certificate issuer: /CN=6811e125cb357076f2fa3138c93e9a2681b17893
Certificate serial: 01987F799FA9BCDFE7654EA2A55330060540
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
Manifest number: 161D
Signing time: Wed 06 Aug 2025 13:02:13 +0000
Manifest this update: Wed 06 Aug 2025 13:02:13 +0000
Manifest next update: Thu 07 Aug 2025 13:02:13 +0000
Files and hashes: 1: aBHhJcs1cHby-jE4yT6aJoGxeJM.crl (hash: nQJbb9/McZliK3iHHqjDgibIvYNB3Z2XOUXBSDftHRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 13:02:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:79:9f:a9:bc:df:e7:65:4e:a2:a5:53:30:06:05:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6811e125cb357076f2fa3138c93e9a2681b17893
Validity
Not Before: Aug 6 13:02:13 2025 GMT
Not After : Aug 7 13:02:13 2025 GMT
Subject: CN=662b862da2528f62aa9ea5cb724311a97f3f03f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:99:f9:04:85:81:78:9c:04:0d:fd:09:94:e3:
18:f9:5c:da:33:83:09:eb:c3:82:43:7e:c7:5a:88:
42:c8:db:b9:94:a5:52:44:f8:be:64:80:a6:ed:52:
95:fc:e9:95:9e:e2:77:4d:74:d8:88:15:a7:62:35:
64:74:a9:bf:08:f4:b7:c1:a9:ee:f6:7f:5c:d5:d9:
52:0a:3a:58:e0:e2:65:40:3c:5d:78:69:ec:e0:bf:
44:7b:1b:57:10:d3:0e:ed:6e:1d:ae:cb:94:ac:12:
8f:91:98:3c:3f:95:f3:3a:29:e4:b6:9e:16:fb:d9:
99:37:26:0d:85:1e:d4:1d:c7:a7:8a:b8:27:e3:6f:
08:9b:e1:c4:4b:09:d7:b9:d8:3d:64:79:ac:ac:d5:
97:14:d6:05:86:e5:54:03:9a:db:20:81:bd:4f:1c:
86:f3:a1:4e:13:62:22:4c:65:26:6b:32:40:70:80:
48:58:f6:e5:39:50:94:96:8d:78:c0:f3:4f:a6:86:
ec:70:22:11:ed:ec:f6:fe:d2:d1:42:8b:1f:1a:d8:
4c:bc:3b:7a:a3:65:7b:c9:1f:63:0d:06:b1:7f:64:
5a:20:ff:e9:14:3c:1a:ca:a8:a3:43:7c:4e:40:9b:
ce:a9:e2:69:3f:54:ec:35:98:2a:50:00:55:ed:f1:
ad:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:2B:86:2D:A2:52:8F:62:AA:9E:A5:CB:72:43:11:A9:7F:3F:03:F7
X509v3 Authority Key Identifier:
keyid:68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:33:6d:07:c8:fc:3b:0c:32:10:87:4c:85:58:c1:a5:03:47:
0e:f6:05:e7:a4:26:43:06:a5:19:5b:78:32:0f:92:c1:24:aa:
40:95:27:b5:5f:1a:01:ac:c0:82:6d:f3:1f:65:af:0e:9d:d8:
23:6e:41:fc:e0:4e:64:6a:56:d5:64:20:9f:b6:83:52:7b:90:
3e:f1:ff:e9:31:a2:66:55:5e:dc:9d:78:08:b1:a7:d6:e3:e2:
d2:12:9f:42:8e:ef:27:d4:38:08:81:4f:43:85:75:f4:26:e9:
04:7b:b7:e4:58:62:24:d1:39:fa:7b:27:1b:a2:8a:bc:bb:ff:
5c:58:b7:3e:2b:b5:3b:2d:ba:7d:40:bf:97:ee:43:8e:4c:1b:
7c:bf:d7:b9:20:5d:3b:54:2a:3d:57:fb:c1:77:a6:ad:07:03:
77:cf:a5:e6:51:e3:99:b4:fc:fd:ca:1a:c4:62:8d:5a:0d:60:
10:78:ab:72:30:a4:3f:41:e0:93:06:46:7b:ed:6f:9c:a4:f8:
0e:fd:e2:f8:cc:24:13:b0:dd:40:e2:d1:d1:77:09:16:e8:e6:
37:db:32:41:39:71:82:53:17:92:40:9b:b3:78:91:b9:12:b7:
18:fe:e3:9a:0a:db:93:51:fe:f5:a2:57:8d:d7:0e:c0:e5:76:
5e:37:2b:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:44:50 2025 by rpki-client