Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
File: aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft (raw, json)
Hash identifier: PURDrttmKCGfEgzy9l/fA3EnEaKK707iQQViNwr3ui0=
Subject key identifier: 1B:5D:2A:21:13:2C:C7:15:E6:CF:14:2C:85:D9:29:E5:0E:C3:0C:04
Authority key identifier: 68:E0:78:B5:18:1B:E5:FB:E9:14:B4:12:A4:12:09:6B:C8:D7:15:49
Certificate issuer: /CN=68e078b5181be5fbe914b412a412096bc8d71549
Certificate serial: 01978131EA08CB02F93E412E7BE618BBBAA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
Manifest number: 159B
Signing time: Wed 18 Jun 2025 04:00:21 +0000
Manifest this update: Wed 18 Jun 2025 04:00:21 +0000
Manifest next update: Thu 19 Jun 2025 04:00:21 +0000
Files and hashes: 1: IXwdyS86SbDEc5r6DTqF-yyMhKo.roa (hash: MHPw/G9JdYVbN864pG/b/kFkrvcqi5VhnKr+4T0l/48=)
2: aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl (hash: ypMWAWAl6kQY2dgKPOsdErEbr4w9yI6YrvCx1RaxxO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:81:31:ea:08:cb:02:f9:3e:41:2e:7b:e6:18:bb:ba:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e078b5181be5fbe914b412a412096bc8d71549
Validity
Not Before: Jun 18 04:00:21 2025 GMT
Not After : Jun 19 04:00:21 2025 GMT
Subject: CN=1b5d2a21132cc715e6cf142c85d929e50ec30c04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:b6:6a:9d:48:44:fb:2e:34:6d:ff:a4:87:e6:
d6:25:08:0e:f3:ca:80:51:80:da:fe:f9:a0:85:96:
a8:da:d9:a1:a1:89:d8:f6:39:b8:4f:0f:9f:f1:e0:
d7:7e:3f:22:19:b3:7e:c3:1c:65:48:66:85:98:7e:
7b:ec:ae:60:48:f1:bb:a8:fb:4f:56:44:2e:19:06:
bb:86:a1:bc:68:62:5d:f9:1b:14:88:90:61:f2:fd:
88:0d:d2:30:fe:2e:be:cf:78:e3:e0:6c:9f:07:1d:
5a:fb:54:59:3a:7d:82:42:32:87:47:77:42:97:cd:
7d:4e:0e:29:f2:a4:f2:bd:6a:e9:ad:a1:d3:d8:43:
29:61:68:69:96:d9:85:ee:37:97:65:18:52:4d:72:
21:eb:f2:1a:32:bc:f9:0c:bf:08:b2:f5:70:16:5b:
bb:8e:84:e5:85:9d:41:75:32:d9:16:66:23:2b:3b:
0a:9e:a2:a1:7e:93:81:76:08:f8:90:3c:35:57:eb:
b2:97:64:4b:ea:d3:c2:f0:15:f7:63:d4:cf:81:9b:
b2:83:ad:38:a8:b7:ed:01:71:1b:cb:25:a7:49:eb:
e9:d5:48:3b:4e:4e:70:cc:14:01:4b:98:60:59:e2:
40:c0:4b:3e:8a:27:df:0f:12:89:ec:e8:84:d6:22:
b0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:5D:2A:21:13:2C:C7:15:E6:CF:14:2C:85:D9:29:E5:0E:C3:0C:04
X509v3 Authority Key Identifier:
keyid:68:E0:78:B5:18:1B:E5:FB:E9:14:B4:12:A4:12:09:6B:C8:D7:15:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:f2:63:42:df:ff:86:e7:77:6c:82:16:64:dc:50:01:aa:0e:
ef:37:bf:a0:21:4b:8f:0a:64:ee:1b:ad:dd:03:c6:6d:38:66:
c1:11:5c:9b:86:b6:f3:c2:f6:eb:58:28:5b:2d:0f:7e:36:15:
26:c8:35:6b:27:b6:af:2c:42:e3:28:d9:4e:99:76:27:84:a0:
59:b8:e3:a5:0f:b0:ba:ef:2d:f7:90:3e:87:e4:cd:e3:f9:de:
b3:2b:5e:c0:d3:7c:61:35:71:42:33:cd:91:6e:0b:e5:a2:f0:
85:6d:dc:1b:9e:9f:0b:f4:a0:f7:fc:cd:c2:c2:27:d2:19:72:
b9:ab:3b:65:1b:ac:40:71:f9:d0:20:ee:7e:3d:c3:b2:bb:16:
2b:c3:59:73:df:5b:3f:8b:61:32:88:39:28:3e:20:c8:19:d1:
32:da:50:49:67:cd:eb:01:28:a2:13:c1:d3:7e:5f:4e:22:6b:
dc:df:a9:68:9e:21:c8:e9:c3:e6:5a:7c:d3:32:9a:7f:40:3d:
be:4e:9b:34:fa:5b:75:ce:2d:76:a7:54:81:4c:7c:0f:be:73:
c9:15:91:ca:20:07:ce:19:b1:50:41:b8:17:44:6d:25:10:63:
7a:f5:12:d3:5f:f5:de:02:de:80:36:ae:44:ef:3f:13:a9:e0:
7b:4f:ec:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 05:53:40 2025 by rpki-client