Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
File: aO_MqEmPXSbBIK802EbAKB_2Ka8.mft (raw, json)
Hash identifier: ZJCDy6Av2OeQ05MtBIRNTTPMSykghaAKSXWL3QXBrvI=
Subject key identifier: 2E:F6:44:4E:68:40:68:BA:1E:49:E9:59:26:C9:AE:23:91:E0:7C:59
Authority key identifier: 68:EF:CC:A8:49:8F:5D:26:C1:20:AF:34:D8:46:C0:28:1F:F6:29:AF
Certificate issuer: /CN=68efcca8498f5d26c120af34d846c0281ff629af
Certificate serial: 01978320A787C48578976D028B4AC7E86189
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
Manifest number: 1009
Signing time: Wed 18 Jun 2025 13:00:44 +0000
Manifest this update: Wed 18 Jun 2025 13:00:44 +0000
Manifest next update: Thu 19 Jun 2025 13:00:44 +0000
Files and hashes: 1: aO_MqEmPXSbBIK802EbAKB_2Ka8.crl (hash: DhXavQVd8XypR27dl+Yplg9mxFwOXx7W8eMLaNnj4so=)
2: bz3fbBHm2ElR6vxL1-cqQoSLlk8.roa (hash: iWv2k5/cNl7lJrUkdCeVYiFcY+HPf8sJg4JbV1Gwcrc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:83:20:a7:87:c4:85:78:97:6d:02:8b:4a:c7:e8:61:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68efcca8498f5d26c120af34d846c0281ff629af
Validity
Not Before: Jun 18 13:00:44 2025 GMT
Not After : Jun 19 13:00:44 2025 GMT
Subject: CN=2ef6444e684068ba1e49e95926c9ae2391e07c59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4b:9b:d8:0d:63:5c:a0:8e:69:22:b0:98:51:
e4:89:25:1c:17:2e:94:42:99:42:de:55:17:fd:76:
6f:04:61:7b:6a:04:e1:0b:fb:9b:28:2d:82:a8:54:
51:40:aa:ba:89:fd:09:17:63:fb:e7:65:ef:49:fe:
61:51:c1:32:36:88:3c:3a:05:31:c3:b3:26:83:d1:
bd:39:cf:13:fd:8d:ad:b6:af:29:f8:55:91:14:e5:
97:d0:be:eb:25:49:e4:2b:db:da:31:9b:07:52:0e:
71:25:36:36:db:94:cb:82:2d:10:77:ed:90:2c:c9:
d4:5c:5f:08:0c:b9:10:cb:f7:9e:a9:7f:77:96:5b:
5c:1a:a5:a2:d9:80:b3:0f:2e:21:28:e2:17:ff:7c:
8a:e6:6d:76:b3:2d:67:0d:21:ae:01:41:81:ad:7a:
3f:b2:41:ca:3e:28:9e:95:29:dd:bd:8e:8a:9e:ca:
bb:f1:4c:66:84:e9:ac:1a:f0:de:04:bc:df:bf:f6:
a4:4a:62:de:91:e7:78:19:c2:13:00:a1:87:85:2d:
09:06:5e:61:ae:b5:6d:ca:2a:64:25:fa:6b:b3:f0:
1f:70:1b:cb:45:e0:be:21:f5:5a:b8:0e:76:4d:1b:
21:2d:e6:f7:b3:99:a7:28:b3:55:60:55:8f:f5:65:
d6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F6:44:4E:68:40:68:BA:1E:49:E9:59:26:C9:AE:23:91:E0:7C:59
X509v3 Authority Key Identifier:
keyid:68:EF:CC:A8:49:8F:5D:26:C1:20:AF:34:D8:46:C0:28:1F:F6:29:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aO_MqEmPXSbBIK802EbAKB_2Ka8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/397b5c-8fc8-4b56-b603-358145d9a81d/1/aO_MqEmPXSbBIK802EbAKB_2Ka8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:48:0a:fc:7e:28:2f:6e:4e:7b:b7:29:3c:12:c8:60:6f:66:
b5:ca:54:ca:aa:e5:5a:03:8b:89:84:f6:6c:52:d7:2a:3f:f6:
9e:38:54:ab:54:51:44:8c:01:e1:9d:ce:5b:77:6e:4a:58:c4:
f9:0f:89:9d:67:29:40:3e:66:3d:b6:05:b0:f1:d8:c1:b3:4b:
c3:9e:4f:51:bb:31:f1:dc:31:04:2d:5e:64:86:42:09:cb:cc:
4b:93:95:51:b7:44:dd:ab:49:7c:56:44:d1:57:ed:af:5a:bc:
42:7f:d6:29:5b:c6:b8:cf:3d:52:de:5a:af:59:26:94:29:8f:
dc:34:0e:2c:26:c7:e1:6a:ce:62:8c:ec:7a:19:3e:55:7e:0e:
99:f7:48:43:13:61:0c:9b:31:db:f4:f5:64:cf:0f:99:55:67:
c5:72:bc:fe:d9:a5:03:ec:76:50:cb:de:3d:74:b3:20:af:8b:
ef:79:65:5f:06:12:84:79:43:92:c3:ae:29:42:65:09:f6:04:
f9:4c:f6:e8:28:1b:70:c2:1c:ab:3c:fd:11:e3:1c:54:9c:bd:
64:f5:67:85:6d:b7:59:8f:32:e6:ed:cf:cf:50:c6:a2:96:d0:
5f:83:24:6b:e0:d4:0a:b0:f4:36:f2:c1:ee:0d:e1:ce:dd:7c:
7a:16:51:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 19:39:06 2025 by rpki-client