Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: /AmEW5v/Q+vZmNWooSfzf7NIDH9MtFkiedPT0SSmjYw=
Subject key identifier: 5C:D3:C5:6A:C7:37:15:3C:71:CC:A4:89:34:9A:89:F1:24:65:13:BF
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 01976EBDD8944237D9A1FD14316431F8D66B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 14:00:24 +0000
Manifest this update: Sat 14 Jun 2025 14:00:24 +0000
Manifest next update: Sun 15 Jun 2025 14:00:24 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: rYsrHj+cntY+uPlSLmXF++CS3hd9tS9IRCNiMOZierI=)
2: nJZ2h-CE2RpObbNuUbuQAsAe9wo.roa (hash: XjXLrJ8ZAfMXOtdh84OSK02UeKqf16aa2sgmGiELBao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:bd:d8:94:42:37:d9:a1:fd:14:31:64:31:f8:d6:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: Jun 14 14:00:24 2025 GMT
Not After : Jun 15 14:00:24 2025 GMT
Subject: CN=5cd3c56ac737153c71cca489349a89f1246513bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ba:c1:dc:79:91:02:ac:b2:3a:d8:88:bb:c1:
ca:92:cf:7c:d1:6a:af:55:59:6c:59:58:05:34:ef:
3b:9f:60:0f:81:b5:ff:37:9f:b8:2f:33:06:de:43:
ea:e8:30:7c:28:b7:4a:fe:a4:cd:3f:86:72:a9:c1:
62:ce:9e:33:d0:dd:ed:a7:57:e1:8f:93:fd:21:f0:
6e:a0:66:8e:98:07:ad:db:56:78:2b:08:86:75:98:
0d:81:28:4a:e7:66:31:7e:58:63:8b:7c:cd:bc:4b:
41:cc:3b:e6:d3:e7:4f:2a:a3:cf:f8:62:05:fc:50:
85:f9:9c:47:48:02:88:85:54:51:0e:05:4f:cc:12:
c6:a0:00:fe:76:87:81:08:e5:b1:5c:6c:0e:ca:52:
c5:02:0a:d1:89:78:2c:fb:aa:e0:20:88:8d:e6:1f:
ca:2f:11:24:6e:13:3a:3c:f5:54:b9:b8:ec:b6:4b:
e0:40:be:b3:c3:ba:19:7b:e2:ef:f5:ba:02:ce:5a:
87:3c:f4:bb:2b:7d:75:47:cf:82:ef:84:e0:d8:97:
14:3a:00:7a:01:a8:c8:70:d3:b6:c8:6f:f1:f5:28:
d8:67:7d:31:d1:93:b0:86:5d:51:a3:98:8b:7e:cd:
98:bf:e7:cc:37:e4:7d:1a:91:93:aa:17:4f:3e:20:
0e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D3:C5:6A:C7:37:15:3C:71:CC:A4:89:34:9A:89:F1:24:65:13:BF
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:b5:a8:6a:56:2d:93:c5:7b:ac:38:83:44:f2:40:8f:ab:df:
e9:6b:d7:e6:ef:f2:14:63:2e:50:8c:1c:c7:d1:e4:da:b0:e4:
ef:76:a8:68:6c:85:d4:73:be:6d:48:87:3b:82:e1:a9:5e:a8:
2d:b8:d4:5e:48:c8:02:84:78:e5:4a:1f:61:51:11:53:61:35:
36:86:42:ce:bb:c2:f1:8b:d7:6e:b9:b5:a6:3b:91:4d:b6:2b:
cb:9b:0d:2d:d8:71:78:7e:e8:6c:5c:18:9c:9f:65:25:ee:31:
1d:fb:fb:49:a3:2d:2d:ae:04:4c:94:4a:b4:a6:0d:ef:b1:20:
e4:d2:e6:68:61:7b:65:a1:d7:57:b8:d8:54:75:93:36:fe:8c:
37:de:bc:9e:92:da:e5:d8:ba:55:68:9d:2a:f6:94:a9:73:83:
a3:b9:32:40:2f:ee:cb:9d:8e:52:52:31:8a:24:03:60:54:7f:
39:69:0f:54:55:9e:7e:5b:77:63:27:d9:1d:94:6d:99:bd:dd:
b9:af:de:aa:2d:f9:0d:1b:26:d3:f1:85:29:57:d5:c9:8f:c3:
f3:59:04:dd:24:e1:0e:5b:c6:d1:ce:1b:c9:c0:fa:33:94:78:
a7:17:eb:63:ec:b6:63:42:85:2c:f6:0a:46:e6:bf:86:c0:e0:
e8:5e:cc:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:33:45 2025 by rpki-client