Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
File: aIt13GcpXVhht31RoCEYtg3FWGg.mft (raw, json)
Hash identifier: CcWkGGqQgQHp8gxWkYxITHx0/0xswPqOhenxOtyZw90=
Subject key identifier: 0D:68:8C:20:15:FA:CB:3B:61:A6:61:F5:5C:AD:44:2A:37:5B:36:AE
Authority key identifier: 68:8B:75:DC:67:29:5D:58:61:B7:7D:51:A0:21:18:B6:0D:C5:58:68
Certificate issuer: /CN=688b75dc67295d5861b77d51a02118b60dc55868
Certificate serial: 01976BF475CE675F4594FD73FA773B55BC4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
Manifest number: 0C98
Signing time: Sat 14 Jun 2025 01:01:12 +0000
Manifest this update: Sat 14 Jun 2025 01:01:12 +0000
Manifest next update: Sun 15 Jun 2025 01:01:12 +0000
Files and hashes: 1: ArfVzV_ad27WSg6MSNAJVOVO4Jk.roa (hash: 7YOwLzYn+04mEiM6zjtu45GNMFpON/tmtRVeglwvQWQ=)
2: aIt13GcpXVhht31RoCEYtg3FWGg.crl (hash: uzvNDxitvBCDPs3qLP6BjpEtMcg92VaTRHpCZ+4M7u8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:75:ce:67:5f:45:94:fd:73:fa:77:3b:55:bc:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=688b75dc67295d5861b77d51a02118b60dc55868
Validity
Not Before: Jun 14 01:01:12 2025 GMT
Not After : Jun 15 01:01:12 2025 GMT
Subject: CN=0d688c2015facb3b61a661f55cad442a375b36ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6e:1e:02:db:9b:1f:81:ff:66:a0:42:f3:95:
0d:8d:3a:60:bb:9d:5d:e0:02:d9:e5:1d:e5:09:e7:
36:94:3e:58:66:91:c4:04:bf:fb:87:75:b8:94:44:
36:82:b1:58:bd:78:d7:ea:2b:1e:22:d4:76:0e:71:
aa:d9:19:5c:a2:98:60:19:79:1f:1b:56:e1:25:f2:
ae:d3:aa:6f:b9:f4:e4:5e:e8:f9:8e:a4:bb:35:6d:
83:38:cf:06:d6:c1:1e:eb:ab:d8:95:34:06:43:b5:
46:bf:53:c4:ae:fe:8f:dd:fb:ca:93:1e:b1:6e:65:
5a:08:c9:da:89:19:ad:1f:65:35:08:6c:7e:a0:a4:
81:8c:85:4e:1e:d1:c2:82:f4:2f:e4:6a:90:db:aa:
9c:da:b6:1f:37:fb:c2:dc:45:8f:20:d8:f2:94:72:
92:13:2b:cd:01:40:85:81:7e:b1:20:d8:9f:62:fa:
99:9e:ec:54:ec:f5:35:6e:99:67:7f:b8:84:32:ab:
f7:be:5b:ab:5e:05:bd:3f:89:21:76:c1:f1:99:0d:
32:ab:1f:5a:94:d6:66:e7:5c:a3:08:43:cd:45:1f:
16:bd:61:4d:06:36:16:09:73:37:b4:1c:70:38:ed:
6d:87:6a:bb:ae:89:83:4a:ef:60:d2:99:50:06:5f:
e0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:68:8C:20:15:FA:CB:3B:61:A6:61:F5:5C:AD:44:2A:37:5B:36:AE
X509v3 Authority Key Identifier:
keyid:68:8B:75:DC:67:29:5D:58:61:B7:7D:51:A0:21:18:B6:0D:C5:58:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:9a:19:b0:fa:fc:60:dc:54:c0:7c:f5:89:1f:10:ef:09:83:
03:c2:81:f7:59:48:c1:5b:9f:43:cf:ef:9e:72:db:9c:4e:b9:
8b:bf:ac:ef:df:0d:83:0b:d3:b2:c0:3b:e8:8c:dd:f3:42:31:
2d:41:e4:11:2f:14:96:2b:82:fa:9d:f8:f0:8b:c4:b0:a4:03:
d7:56:71:48:05:3f:61:0d:dc:38:b1:21:fe:41:c0:b9:5b:bb:
48:34:3d:af:34:c1:f5:62:ea:57:04:53:2d:ae:b8:ea:46:74:
c8:6e:cd:13:ff:b8:29:4f:a9:ea:33:ce:1f:1f:26:bf:e8:01:
83:ca:26:80:f3:f7:85:4f:3d:f2:ac:0f:b2:5e:70:0e:30:b9:
e8:7f:ec:5e:1e:6d:9c:1f:d7:7a:e4:97:3e:ca:da:39:38:9d:
79:de:28:b4:b4:c9:9a:f7:6b:e8:c7:ad:23:30:e3:2b:fc:2a:
6a:51:29:68:cd:ca:6a:f8:58:90:e1:4a:aa:4c:2e:73:92:e6:
32:8d:e6:44:e3:4a:38:56:11:f8:50:85:01:c6:37:94:dc:43:
0f:91:8b:c9:7a:81:3b:1b:25:5b:d6:95:43:6d:17:6e:30:0e:
96:d4:f9:97:18:1e:9a:2e:0e:6c:82:ee:b9:a8:56:e4:fc:62:
ed:f7:6c:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:00:42 2025 by rpki-client