Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
File: aCMaUAoKgQjcekNYsQArH9vweZU.mft (raw, json)
Hash identifier: viy5XpCQyVHJ5qvN6hK9+ZUhPVT+KZE7rQQIUPOjzmw=
Subject key identifier: D2:43:51:F9:65:9A:FC:5A:D4:65:AC:CF:B8:B4:54:BC:EE:33:9E:9E
Authority key identifier: 68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
Certificate issuer: /CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Certificate serial: 01977AF94AA2226F6F4C1A046E4C6957B5CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
Manifest number: 1597
Signing time: Mon 16 Jun 2025 23:00:47 +0000
Manifest this update: Mon 16 Jun 2025 23:00:47 +0000
Manifest next update: Tue 17 Jun 2025 23:00:47 +0000
Files and hashes: 1: XSGE2n2dKWY3M_jq3MngIc3i_t8.roa (hash: pwMRSRLzn3jyPbMLShLv8HDNQd5Gm8ws1AjCFBEAHaU=)
2: aCMaUAoKgQjcekNYsQArH9vweZU.crl (hash: yrpMdjV/0IaqXH6NngYuwjsHyi8VY4qRey2EaWEVy7c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 21:51:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:f9:4a:a2:22:6f:6f:4c:1a:04:6e:4c:69:57:b5:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Validity
Not Before: Jun 16 23:00:47 2025 GMT
Not After : Jun 17 23:00:47 2025 GMT
Subject: CN=d24351f9659afc5ad465accfb8b454bcee339e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:71:b9:c8:bb:49:fa:98:69:58:17:3b:94:a9:
2f:5c:50:1b:08:f7:4e:23:7c:89:e9:41:29:f4:b8:
8c:c5:12:ec:e2:60:7b:34:e7:52:2a:fd:24:5b:dc:
60:17:ee:3a:1d:d3:a4:1e:59:63:9a:f7:06:b9:fb:
05:c2:2c:dc:98:d2:4d:e8:ef:1f:a2:54:b3:5a:21:
08:f7:a9:14:01:a8:d7:a3:36:b0:a3:c0:68:74:b9:
45:81:17:89:a9:48:57:de:88:bd:2a:42:75:65:49:
11:78:6a:6e:b9:41:01:14:8c:4c:a0:c5:ba:17:64:
46:c1:7b:97:c6:b6:30:4d:6f:45:a5:27:8c:76:1d:
f5:66:b7:dd:ae:8b:6b:34:7e:30:32:c4:a2:8a:55:
9a:18:01:7d:8c:8f:4a:76:70:b0:a6:14:a1:24:09:
54:6a:ef:b8:eb:1e:ad:9f:1e:e2:75:90:b4:c8:a3:
ad:09:87:0c:90:02:b3:f0:a6:ba:cf:2f:d7:b2:fb:
da:14:a2:ad:d4:a7:b6:87:2e:42:97:6c:93:3d:15:
61:f5:b0:3c:6d:1f:db:25:21:b3:af:22:60:0c:32:
75:55:5c:1e:be:be:3e:f7:1d:42:01:93:bd:d2:66:
a2:0c:41:bc:59:15:7d:71:1e:c8:23:de:6b:7e:f2:
ca:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:43:51:F9:65:9A:FC:5A:D4:65:AC:CF:B8:B4:54:BC:EE:33:9E:9E
X509v3 Authority Key Identifier:
keyid:68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:a0:70:2d:60:f4:52:f3:01:e1:72:76:9a:fc:12:dd:6d:46:
f7:42:84:e0:2a:51:3d:aa:0c:75:36:a6:6d:2c:46:b4:e8:92:
9a:cd:8d:3a:e6:29:2a:ee:75:45:b9:1b:44:e3:f5:7e:67:47:
1a:83:1b:74:29:33:10:94:51:54:16:21:dc:b7:fd:0d:db:b6:
fe:11:3c:a3:4b:b9:ac:9f:e3:08:92:85:30:29:19:1c:18:46:
47:db:04:55:00:d2:97:35:75:a7:00:f3:90:75:13:41:4d:af:
d1:95:ce:a6:ba:22:67:d2:15:71:de:44:c6:bd:87:78:fa:4d:
73:4c:ec:33:d7:8b:92:9a:71:bc:4e:27:19:bb:df:57:b5:72:
e6:b7:a5:87:1c:cb:d6:dc:0e:36:9f:de:34:f2:5b:3f:e0:bb:
a4:e7:77:51:90:01:b2:01:e3:cd:23:d3:f3:6d:45:ca:84:8e:
d9:3e:00:c7:16:f7:e4:51:dc:bd:cf:6e:da:df:1f:ba:df:c6:
77:a5:fc:44:e4:5c:71:8c:71:06:0a:bb:cd:46:2a:25:52:a0:
85:8d:69:7a:d5:75:c0:c7:dc:cf:ab:66:64:77:a3:42:e8:17:
b1:85:7e:23:75:e8:de:7c:ab:ec:fd:1e:18:66:d0:12:3f:19:
cc:48:09:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 02:44:40 2025 by rpki-client