Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: EN//mhiR3HD5iq6qAFBgrp7pyWH1r3shzv31NZBIvko=
Subject key identifier: 9F:14:56:30:10:50:8C:62:FD:6C:D5:F6:6C:48:EB:83:F1:2A:A5:F5
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 019770E33FCF2E2709251B52D99DCD247F84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 1592
Signing time: Sun 15 Jun 2025 00:00:30 +0000
Manifest this update: Sun 15 Jun 2025 00:00:30 +0000
Manifest next update: Mon 16 Jun 2025 00:00:30 +0000
Files and hashes: 1: K-gQWrDorOWk95T1Ck9YnvOvyOw.roa (hash: M7ISU7dx2mACRrVyXnpQ2vx1ALS4joyLkkEwNFtNto0=)
2: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: hVdgI7sYPEkhRe6KZS7li9yG0I4uI6rmOYearKrJVs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:e3:3f:cf:2e:27:09:25:1b:52:d9:9d:cd:24:7f:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Jun 15 00:00:30 2025 GMT
Not After : Jun 16 00:00:30 2025 GMT
Subject: CN=9f14563010508c62fd6cd5f66c48eb83f12aa5f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a9:5c:fe:55:1f:3a:6d:53:c3:09:12:78:0c:
ee:19:7f:12:11:3a:ad:89:0c:96:a8:e4:24:a2:6c:
26:a2:99:d8:3c:51:c6:75:a3:49:e1:43:1f:52:ec:
22:1d:a9:32:74:4c:c3:d1:16:3e:89:5d:0a:d5:f3:
42:31:28:b5:98:e3:e6:4c:3b:3b:a3:f4:50:c5:a6:
5e:82:2a:0e:91:26:41:99:b6:c7:09:dd:e5:fe:db:
38:c8:51:82:cb:cb:bc:73:07:74:48:29:93:eb:f6:
46:04:74:cb:8a:6e:10:ac:82:7e:23:a4:94:df:20:
0f:3b:d6:ea:36:7a:7f:2f:2c:1a:a8:9b:2e:a1:08:
4b:04:9d:87:e2:d0:ec:d1:0a:4d:ac:cd:c2:08:49:
b9:3d:cb:ee:a6:72:b7:59:f7:ed:b1:4c:e6:f5:1b:
6b:32:6d:d9:1a:75:6a:48:83:7b:52:19:d2:95:56:
04:d9:73:6b:d4:2a:06:a1:2d:ec:fd:2d:62:60:0f:
ac:f4:a2:1e:ae:36:0f:69:f7:fd:f0:fd:47:0f:8d:
da:8f:fd:d2:95:96:7f:3c:3a:21:d2:d7:8b:91:c7:
7b:00:6c:bb:dd:e6:72:13:ac:67:3a:ee:d3:e7:b3:
f9:6f:f7:56:1b:26:57:52:8c:ad:2c:8d:be:0b:c2:
ff:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:14:56:30:10:50:8C:62:FD:6C:D5:F6:6C:48:EB:83:F1:2A:A5:F5
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:05:d8:ad:71:ef:1e:fe:aa:8e:bf:18:10:fd:87:9b:04:cb:
33:52:4a:28:c3:66:f5:fd:eb:01:cb:07:19:7a:b5:cf:54:c5:
8b:6b:8c:f9:23:d7:1d:63:52:03:90:1c:29:97:67:21:28:70:
15:b9:74:c0:9d:d6:d4:4f:ea:a8:14:77:34:9f:d3:5a:b6:58:
46:f3:3c:da:f2:d0:28:4e:19:67:92:ea:46:5a:57:de:5e:24:
49:c3:5c:53:92:06:04:b3:52:60:37:59:5d:dd:c8:ae:41:ce:
db:31:27:d5:c9:98:4c:30:ea:ea:73:19:24:09:9b:20:87:65:
03:07:ef:b1:b3:46:87:6e:4e:a0:77:a4:1a:45:ea:a2:b8:b2:
57:b7:5c:05:6c:45:1d:4e:4c:1c:42:7a:8c:92:dc:cf:01:2e:
a9:5a:84:2c:a1:89:6f:70:ee:8d:fc:ae:99:8a:2d:24:68:d3:
13:cd:ba:72:64:54:9f:92:3f:61:9c:ef:6e:11:1f:74:3b:70:
02:5d:9e:02:9a:c0:42:b3:ae:eb:7d:56:0a:9c:fe:a6:05:00:
da:4e:97:76:99:8d:48:42:9c:35:71:94:33:53:15:b0:1d:f8:
33:55:54:7d:2a:bb:8d:af:83:11:2d:31:4b:c9:bd:69:61:53:
b0:4a:61:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:35:39 2025 by rpki-client