Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.mft
File: aA4gzPstWJjCFikA0UaAcKcCSVY.mft (raw, json)
Hash identifier: Wr5VKExjdYl7SU+9vDTHwdjUknm9eC+5CUTPDuMRbok=
Subject key identifier: 13:88:66:E6:D3:E8:75:5E:D2:CA:DD:DE:E7:4E:54:53:DF:15:15:5B
Authority key identifier: 68:0E:20:CC:FB:2D:58:98:C2:16:29:00:D1:46:80:70:A7:02:49:56
Certificate issuer: /CN=680e20ccfb2d5898c2162900d1468070a7024956
Certificate serial: 01976960B23600AE9891E83ED4C966B84741
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aA4gzPstWJjCFikA0UaAcKcCSVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.mft
Manifest number: 0985
Signing time: Fri 13 Jun 2025 13:00:34 +0000
Manifest this update: Fri 13 Jun 2025 13:00:34 +0000
Manifest next update: Sat 14 Jun 2025 13:00:34 +0000
Files and hashes: 1: aA4gzPstWJjCFikA0UaAcKcCSVY.crl (hash: pWbBIOt/swnfKkMSu2iYbmOzr3YjEn4BGcvTMb/WpFo=)
2: eBTbPsjV8Iac9Fj-9vOQH-ERQ2w.roa (hash: iez1H7XNs3tkU5sUoydCWQiAyCLsYR+kgbtLIrffu48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aA4gzPstWJjCFikA0UaAcKcCSVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:60:b2:36:00:ae:98:91:e8:3e:d4:c9:66:b8:47:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=680e20ccfb2d5898c2162900d1468070a7024956
Validity
Not Before: Jun 13 13:00:34 2025 GMT
Not After : Jun 14 13:00:34 2025 GMT
Subject: CN=138866e6d3e8755ed2cadddee74e5453df15155b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0e:41:ea:33:96:29:95:55:bf:58:3f:6e:49:
78:4a:3a:85:fd:0d:0c:60:3b:da:2c:dd:5c:fd:69:
48:80:fa:e5:e6:73:3d:04:1c:67:55:71:c9:20:1a:
30:88:27:66:09:15:27:79:15:30:81:ce:fd:84:f5:
52:68:32:b6:36:cd:7e:73:fd:fa:d9:73:0e:66:f2:
65:02:33:30:06:4b:9d:45:db:d3:17:de:38:a6:98:
ca:a8:a4:c5:f3:38:81:9f:1f:42:21:5f:ef:c4:d1:
c0:cf:30:bf:d0:0f:46:e7:2a:d6:8b:e2:f4:96:43:
27:9c:58:2c:97:23:97:a8:ec:1e:57:8b:48:0f:c9:
2d:e6:b7:07:e6:81:a3:83:bf:80:6f:64:41:da:93:
dd:ff:62:b4:6b:2e:7f:5c:04:63:e5:66:c2:ac:50:
54:fd:da:3d:b9:5d:a7:e5:a5:f3:12:6c:fb:81:b4:
52:fc:9d:d3:67:cf:2b:76:5a:14:de:f3:71:d7:c1:
7f:08:bb:2c:e8:3d:fa:c8:8c:c5:9d:9e:03:39:fa:
c6:e7:f1:49:70:1c:c1:ab:d6:f2:53:3e:c0:b3:90:
60:2d:ca:12:9e:84:8f:e7:95:c5:d6:ba:75:d7:cc:
02:6f:aa:f3:0f:48:28:f7:e2:22:8d:7c:1c:bf:b9:
3c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:88:66:E6:D3:E8:75:5E:D2:CA:DD:DE:E7:4E:54:53:DF:15:15:5B
X509v3 Authority Key Identifier:
keyid:68:0E:20:CC:FB:2D:58:98:C2:16:29:00:D1:46:80:70:A7:02:49:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aA4gzPstWJjCFikA0UaAcKcCSVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:66:19:9c:75:a0:4d:ab:14:de:fd:06:ab:f2:fb:4b:a5:0b:
3e:0d:fb:ff:2f:7a:44:c7:b8:1b:09:63:5f:25:e5:03:18:7c:
f2:1d:db:da:68:db:c7:60:ed:61:dc:7d:11:3b:1d:0a:4c:e5:
38:1f:75:d6:a6:0f:b0:7b:d2:a6:5f:9a:ca:d0:d6:d6:2a:de:
5b:0d:98:7c:89:37:43:59:f2:77:fe:35:e7:16:47:52:b5:cd:
7a:02:81:6f:df:51:6c:73:1a:22:90:f2:71:e9:4b:20:1b:c1:
d9:bb:d1:72:35:72:72:62:a9:5e:44:c9:2e:d2:0e:b2:07:f1:
05:a8:3b:d0:a1:4d:77:18:c5:5c:3b:d9:18:48:f2:a5:af:78:
80:ca:6f:3b:42:26:8e:8c:9a:11:af:44:77:ff:65:a3:19:57:
fc:ea:7c:fb:14:cf:cd:0a:7e:2c:d0:1b:14:d9:ec:0d:48:91:
5b:f9:be:7a:96:18:38:b8:6d:a4:77:55:e7:b1:78:be:49:52:
33:aa:0a:f0:a6:92:39:9a:16:22:65:96:3c:01:f6:65:24:c5:
55:d4:43:58:fa:76:cc:04:97:d5:cf:6a:6c:c3:7f:13:41:f4:
22:fa:22:f4:97:e9:2a:a7:8a:78:ac:24:12:10:f7:c0:c9:22:
bb:90:8b:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:24:40 2025 by rpki-client