Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
File: 7qq8oRa05zqZRKuXAs-YZleANYA.mft (raw, json)
Hash identifier: ZrlsrvYxhgVimwtRXdU4uoJTD1o+PyV+5cbznEiLZA4=
Subject key identifier: 5F:FB:64:6B:A3:84:AC:C8:74:52:87:94:72:8F:6B:14:05:99:9D:8E
Authority key identifier: EE:AA:BC:A1:16:B4:E7:3A:99:44:AB:97:02:CF:98:66:57:80:35:80
Certificate issuer: /CN=eeaabca116b4e73a9944ab9702cf986657803580
Certificate serial: 01976C2B118025186E454D37E26522A97EBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
Manifest number: 01D7
Signing time: Sat 14 Jun 2025 02:00:51 +0000
Manifest this update: Sat 14 Jun 2025 02:00:51 +0000
Manifest next update: Sun 15 Jun 2025 02:00:51 +0000
Files and hashes: 1: 7qq8oRa05zqZRKuXAs-YZleANYA.crl (hash: lJk1V8BX+V2HaYpz1jgJYRto4yzxgSoKgSDjzNDOqd8=)
2: 87MujmzYjqiHmvGtUQfVum9xgYI.roa (hash: wh9UFynd+k4p6PBt8Z51e5f4u9WZiYuFkQCOx8EtepA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:11:80:25:18:6e:45:4d:37:e2:65:22:a9:7e:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eeaabca116b4e73a9944ab9702cf986657803580
Validity
Not Before: Jun 14 02:00:51 2025 GMT
Not After : Jun 15 02:00:51 2025 GMT
Subject: CN=5ffb646ba384acc874528794728f6b1405999d8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a9:a6:d2:e7:aa:83:c1:96:7d:cd:47:af:91:
89:bf:9b:c4:c7:87:58:f6:df:89:98:c0:a8:b1:3f:
5f:69:37:13:a4:01:d7:e0:a6:ec:e9:67:79:29:51:
c0:fa:13:39:57:e5:8c:e2:d2:c7:21:76:68:67:08:
77:e0:38:3b:47:7d:23:5a:c0:d2:54:19:c5:d4:4a:
78:3d:e4:61:08:50:50:0d:32:0b:54:87:91:a0:4a:
3a:69:d4:cf:9d:89:6a:43:13:40:a3:4a:65:4e:c4:
76:d0:03:b2:bd:dd:4a:23:32:4f:c4:93:f5:75:84:
6f:91:33:74:65:06:6a:30:18:0c:67:5b:48:7a:b5:
9a:d6:1d:7b:f1:eb:ef:df:e5:87:fd:76:39:a3:d6:
9d:6d:df:45:e2:27:40:66:4a:48:1f:5d:25:ea:f4:
4c:34:b8:37:4c:72:a1:7b:7f:61:37:e6:68:13:d7:
bd:0e:c4:04:f7:4c:b4:4f:30:cb:32:53:18:4d:a2:
9a:90:25:03:c3:fe:41:bf:7c:35:22:88:6c:06:e9:
92:05:bf:16:94:59:21:c2:76:28:4e:0b:f4:13:f1:
42:25:a2:43:1d:e8:1c:99:13:bb:aa:b0:d3:f9:93:
6d:b5:48:44:43:0d:63:80:24:7f:be:ec:35:f0:e6:
6f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:FB:64:6B:A3:84:AC:C8:74:52:87:94:72:8F:6B:14:05:99:9D:8E
X509v3 Authority Key Identifier:
keyid:EE:AA:BC:A1:16:B4:E7:3A:99:44:AB:97:02:CF:98:66:57:80:35:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:3a:04:f2:94:4a:cc:3e:0b:0b:e2:b8:14:cb:bf:f7:fd:3f:
26:4a:67:48:91:9e:96:d7:fc:4e:d1:64:18:8e:58:f2:4e:01:
02:67:72:da:ad:d1:68:24:d4:f7:19:ff:bb:01:57:8f:25:31:
c2:19:78:66:9f:35:2a:43:e1:6b:fa:09:f0:c1:ee:0f:19:4b:
49:5a:6b:17:df:4d:46:0e:91:fd:40:bb:91:cc:54:83:58:3e:
2c:d3:17:96:fe:c6:0b:02:4f:87:fd:5e:33:82:e6:49:73:d7:
d3:25:10:02:6c:5c:af:51:26:a5:6d:22:55:a5:70:6e:1a:3f:
66:58:ee:4d:83:35:3c:a8:ba:ad:ff:58:08:e0:b2:de:9d:36:
ad:e8:53:55:42:7c:24:e0:09:84:28:31:fc:52:0f:ad:05:b4:
ae:b8:24:f4:66:7e:16:39:bf:8a:07:ea:ff:46:91:74:76:31:
f5:4b:28:ab:75:fb:ac:77:d9:dd:83:fb:8b:43:b8:b9:f2:64:
31:b4:fb:54:20:1a:ed:1d:4e:28:33:69:a1:95:b4:f0:96:9b:
37:b0:be:72:ec:2c:20:d6:21:04:e3:07:de:0e:88:f8:3f:a9:
ec:f8:47:f2:19:d0:b6:76:69:cf:72:4e:6d:96:89:5c:e8:54:
84:86:0f:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:49:23 2025 by rpki-client