Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
File: aajmjRKuKTryNpBDzVmgINrCQGI.mft (raw, json)
Hash identifier: K0r94x4jsT7KGRr5pMY1L5bOvfVnNBPssvfO/Nx8eDs=
Subject key identifier: 87:C5:9A:71:92:85:7E:D9:DE:AC:FC:13:57:7C:7A:CC:98:6A:18:EE
Authority key identifier: 69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
Certificate issuer: /CN=69a8e68d12ae293af2369043cd59a020dac24062
Certificate serial: 01976DABEBD95076439AFC2C115B42310331
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
Manifest number: 0A81
Signing time: Sat 14 Jun 2025 09:01:12 +0000
Manifest this update: Sat 14 Jun 2025 09:01:12 +0000
Manifest next update: Sun 15 Jun 2025 09:01:12 +0000
Files and hashes: 1: aajmjRKuKTryNpBDzVmgINrCQGI.crl (hash: HDMSDHIHTlZBuTEbRwQE1N/PJPm4YGDyb1MVfk7R/dQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:eb:d9:50:76:43:9a:fc:2c:11:5b:42:31:03:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a8e68d12ae293af2369043cd59a020dac24062
Validity
Not Before: Jun 14 09:01:12 2025 GMT
Not After : Jun 15 09:01:12 2025 GMT
Subject: CN=87c59a7192857ed9deacfc13577c7acc986a18ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d7:80:b4:09:71:93:a9:a3:d2:a2:d2:91:c7:
ec:49:77:b0:67:66:7e:8f:13:73:21:02:02:16:33:
09:b1:e6:34:11:64:e3:cc:aa:b1:25:2e:c4:b8:ab:
1d:36:08:79:ba:e4:94:49:70:ea:c9:de:c5:55:8c:
47:24:d1:98:7e:4e:03:df:e8:87:bd:e7:5d:b8:d6:
73:7e:41:98:e7:e6:90:88:b8:65:ec:a1:7d:56:fb:
8d:3b:9c:88:ab:65:cd:89:24:2b:c7:a0:1a:78:bd:
cd:0d:9b:d5:40:5b:fc:0c:d7:56:e9:ee:51:80:09:
d1:92:dc:e9:ee:9a:86:db:46:75:a9:38:f2:ab:5c:
1e:5d:2d:b8:3d:ed:09:49:4d:2b:81:c4:02:d3:4f:
1f:ce:6c:30:8a:d8:a5:ec:bb:f1:47:60:2e:00:36:
a2:82:00:29:48:bd:98:f3:05:35:64:90:fd:4e:c1:
f2:03:8c:89:04:3e:a1:81:19:ed:bf:db:25:17:6e:
74:22:43:e5:2d:79:6d:0f:3b:84:c7:d9:a9:26:0f:
7b:5f:11:52:98:a9:e8:fa:f4:0a:6c:31:ff:a4:b4:
d5:2f:41:f0:55:b4:85:9f:fc:fd:bc:3b:07:16:e7:
a2:f5:f8:1b:fa:fe:8d:16:75:70:00:fa:0f:4d:47:
29:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C5:9A:71:92:85:7E:D9:DE:AC:FC:13:57:7C:7A:CC:98:6A:18:EE
X509v3 Authority Key Identifier:
keyid:69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:2f:20:6a:e7:9d:7c:fa:1a:ab:e0:da:1f:ed:76:03:1d:dd:
64:b6:99:8f:3b:6a:b7:3a:7d:13:d5:3a:16:32:f3:7a:09:06:
eb:06:4f:91:14:90:28:fc:4b:41:91:04:29:c4:07:c6:79:95:
62:ac:26:67:ec:ae:06:54:bf:00:23:a8:49:3c:d8:4a:06:a6:
e8:22:fe:fe:28:ed:e9:7d:98:8d:27:f2:48:38:40:d4:1b:d4:
21:d4:6a:8b:d2:98:2a:2b:0b:d5:9c:55:83:c8:0b:22:ca:e3:
ca:44:4b:4f:e6:ae:95:7f:e3:44:ea:ce:d2:3a:be:17:f3:13:
03:e0:fc:6d:ec:93:c2:4d:9a:b5:19:36:d1:9a:59:3b:50:6f:
ef:e7:62:41:8b:5a:cc:b5:0a:88:4e:3f:ce:b7:16:48:c1:eb:
bf:ae:3b:d1:40:88:08:e5:f9:37:36:dd:15:ea:83:31:aa:84:
58:bb:a3:7a:86:24:d9:8f:d2:19:c4:cf:33:57:34:49:10:f8:
65:36:fe:24:5b:91:9c:ab:c5:9e:02:78:05:fa:d6:65:d4:c6:
6c:b6:e4:a2:69:15:aa:81:fb:80:5a:44:cb:d8:fb:75:40:88:
d5:a6:6f:75:1a:f6:43:d9:0a:ef:a3:e4:3f:cd:5f:55:58:78:
93:b6:5e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:59:07 2025 by rpki-client