Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
File: aKUCPY4CESaZfXkmpHcBYIqs48c.mft (raw, json)
Hash identifier: 9oRgxuyDnrroDnQjb3T88GiA0nauLau6r9YtJO9Lh78=
Subject key identifier: 01:58:DC:3C:10:33:62:03:52:5F:A9:C6:CC:A7:A1:D4:1D:A4:44:34
Authority key identifier: 68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
Certificate issuer: /CN=68a5023d8e021126997d7926a47701608aace3c7
Certificate serial: 019769CECB70E3A5D079D610CC9C15C2877B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
Manifest number: 06FE
Signing time: Fri 13 Jun 2025 15:00:49 +0000
Manifest this update: Fri 13 Jun 2025 15:00:49 +0000
Manifest next update: Sat 14 Jun 2025 15:00:49 +0000
Files and hashes: 1: aKUCPY4CESaZfXkmpHcBYIqs48c.crl (hash: xFYPB8M9IKh5St0MT/3OjlKgm5WUUqkiPtFd72NzEF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:cb:70:e3:a5:d0:79:d6:10:cc:9c:15:c2:87:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a5023d8e021126997d7926a47701608aace3c7
Validity
Not Before: Jun 13 15:00:49 2025 GMT
Not After : Jun 14 15:00:49 2025 GMT
Subject: CN=0158dc3c10336203525fa9c6cca7a1d41da44434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c2:62:c4:d3:36:c2:74:52:a5:b6:bf:4e:f5:
a4:e2:26:0e:5f:22:0d:5b:5b:c9:cf:51:3e:e8:73:
5c:b2:a9:f5:e9:fd:b7:a2:76:b5:10:2e:ad:f7:c4:
d7:db:9c:4d:5e:92:96:4f:a4:bb:5c:13:47:c0:97:
fc:8a:9c:64:4f:1a:0f:a0:2a:5e:5d:9e:5e:ba:36:
f9:d3:29:f8:52:a0:f3:71:47:8f:cf:d8:29:24:0c:
3e:0c:a0:a9:79:81:8a:06:18:40:88:d3:da:bc:89:
e6:41:f1:96:28:5d:b6:de:49:09:8c:98:ec:a5:f9:
57:02:62:8f:d5:5b:49:2c:75:dd:b0:22:b4:7e:fb:
ac:df:08:95:e0:25:68:16:5b:69:0d:af:07:85:ee:
e0:7f:63:bc:90:37:e6:54:d1:ba:91:9e:c9:7a:03:
f1:f9:b3:6c:96:c3:94:fb:a4:f3:6f:ad:6e:5f:b1:
40:2c:16:35:0d:a9:ec:47:1e:5c:7a:aa:4f:f3:02:
e6:c8:4e:d7:d3:f8:42:ac:96:6a:6d:d4:c7:3c:cb:
04:42:be:90:d8:2e:8d:63:85:ef:b1:6d:b9:b5:22:
c5:4a:76:db:f9:ff:56:5d:28:76:4f:15:9b:d0:ea:
5b:52:61:96:56:46:a2:83:6c:0a:84:d8:e0:f2:a8:
d2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:58:DC:3C:10:33:62:03:52:5F:A9:C6:CC:A7:A1:D4:1D:A4:44:34
X509v3 Authority Key Identifier:
keyid:68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:d0:6c:c8:a8:f3:fb:a3:e5:aa:ed:50:6a:37:80:a8:57:5a:
79:52:ea:d4:51:a5:3a:23:2a:e2:a6:f8:95:46:8f:1e:52:15:
ed:03:bd:15:81:ac:4f:a5:0c:9d:bf:14:e0:f0:b2:df:73:1a:
44:00:90:09:7f:b7:0c:42:54:07:db:08:c5:f3:0a:ce:81:06:
4f:04:c2:df:1e:9c:cb:a4:e4:c4:63:84:cc:42:11:33:26:89:
03:f1:ac:52:a2:d8:77:bf:0e:e2:11:d5:3a:e5:b1:95:e6:19:
83:75:23:ed:cf:25:31:36:20:be:8e:b7:80:ec:2f:30:dc:c7:
38:22:bd:09:c6:4a:51:d3:91:bf:b0:00:6c:ee:dd:82:ab:04:
eb:44:c5:f0:eb:50:83:37:07:1c:04:04:cb:e6:37:39:6f:c3:
92:ea:55:43:d9:27:e4:cd:e1:7e:9f:a8:cb:8a:59:ac:3d:a1:
87:97:ba:d0:e9:96:57:35:e5:c1:2f:0f:ad:c9:05:29:93:47:
68:a9:69:65:81:e7:7a:fe:df:d4:97:0d:75:aa:58:2e:b4:db:
e3:53:5f:02:92:5b:b9:26:d2:fd:e0:50:95:4a:a4:54:2e:2c:
ce:29:f0:28:11:d9:e9:d5:ba:9e:87:88:97:c2:80:aa:b6:55:
ac:16:5a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:07:56 2025 by rpki-client