Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
File: aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft (raw, json)
Hash identifier: rIcQs0A/6eW1s5uGQYF6jDtxONJYzbRoJgdMkujFJig=
Subject key identifier: 56:57:89:36:4A:6F:CC:DA:FE:D9:54:70:3D:DD:94:A5:BC:E5:44:41
Authority key identifier: 69:97:10:A1:69:37:10:AC:83:5F:0B:67:45:F9:0D:2D:68:0A:12:00
Certificate issuer: /CN=699710a1693710ac835f0b6745f90d2d680a1200
Certificate serial: 019896A60B784C4F176E431495B85B6BA32B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZcQoWk3EKyDXwtnRfkNLWgKEgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
Manifest number: 15BB
Signing time: Mon 11 Aug 2025 01:02:00 +0000
Manifest this update: Mon 11 Aug 2025 01:02:00 +0000
Manifest next update: Tue 12 Aug 2025 01:02:00 +0000
Files and hashes: 1: aZcQoWk3EKyDXwtnRfkNLWgKEgA.crl (hash: 0JuoDfV3QFvQo+2ijTT6V7A74HOiO6eeymph/eKoeb0=)
2: koGXGlmTeestynS-D79F1iRgKe8.roa (hash: t/wGg6Ba4t68swMex8wPDhVXcBtDTQUAFrp4xf0H+oE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aZcQoWk3EKyDXwtnRfkNLWgKEgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a6:0b:78:4c:4f:17:6e:43:14:95:b8:5b:6b:a3:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=699710a1693710ac835f0b6745f90d2d680a1200
Validity
Not Before: Aug 11 01:02:00 2025 GMT
Not After : Aug 12 01:02:00 2025 GMT
Subject: CN=565789364a6fccdafed954703ddd94a5bce54441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:82:82:65:51:6d:ec:eb:b2:bd:01:ff:d1:b6:
2e:58:3e:e0:01:bf:e8:e5:c0:77:36:0f:57:0c:45:
c7:97:55:a3:2d:db:8b:eb:8c:1c:bc:0a:95:b4:2e:
6e:a2:68:0f:03:1d:de:98:01:8d:77:80:c3:fb:74:
f8:ae:53:a2:01:ed:9d:2a:e4:23:20:f9:d0:d6:79:
01:25:79:13:da:d0:b7:74:18:ac:a1:e5:84:2b:f5:
51:47:0a:33:e9:69:cb:3c:14:15:32:ba:b9:81:4e:
d5:55:ce:67:12:41:28:04:bb:68:b1:21:05:23:c9:
15:fb:9d:cc:c3:ed:36:e5:48:4c:d8:44:34:cb:5b:
46:58:36:99:da:9b:64:42:31:f8:a3:98:07:37:78:
e6:b3:30:cc:e8:54:90:27:00:c9:5f:91:76:45:31:
f2:80:0b:8c:89:f6:d5:b1:e8:97:c5:59:eb:05:69:
a9:e3:88:6d:ae:7d:37:fb:c6:68:22:d6:ba:33:c2:
72:ee:36:2b:c9:5e:df:9c:53:2b:6c:6d:f8:5c:dd:
2c:41:ba:c7:b9:78:f5:3f:aa:43:c4:56:92:02:86:
87:5c:4d:d4:10:5d:da:bf:e0:0e:1d:40:4f:8c:c3:
72:00:c7:f8:e4:8c:8d:94:de:e7:17:cb:07:fc:da:
db:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:57:89:36:4A:6F:CC:DA:FE:D9:54:70:3D:DD:94:A5:BC:E5:44:41
X509v3 Authority Key Identifier:
keyid:69:97:10:A1:69:37:10:AC:83:5F:0B:67:45:F9:0D:2D:68:0A:12:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZcQoWk3EKyDXwtnRfkNLWgKEgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/07745c-47c1-4002-950f-29b98ecdff12/1/aZcQoWk3EKyDXwtnRfkNLWgKEgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:f2:98:db:25:53:82:2f:a2:4d:5a:6c:b0:f9:98:9e:6b:26:
8b:fc:d1:cb:8e:c8:a5:4d:93:4e:25:e7:72:98:8c:9c:a0:a8:
0f:43:0c:81:fb:96:54:8d:d9:90:40:cb:75:75:07:b4:82:43:
23:57:24:c0:2a:a5:b8:9c:3f:4e:40:f7:98:25:37:91:36:36:
5f:48:73:65:6d:c0:6b:0f:3c:8e:73:95:62:6c:9e:05:da:aa:
f1:72:1b:87:a9:00:20:f6:ba:2c:cc:ef:73:d6:79:b3:2c:fb:
92:29:97:98:27:81:1b:10:d6:fd:6b:40:96:8e:b0:3a:cd:0f:
8f:20:17:36:d4:0f:5c:18:a9:14:8c:7e:3b:42:8d:16:60:3c:
7d:12:ba:86:d2:c7:f5:24:0a:9c:1d:94:e1:1e:52:0a:62:a1:
5d:18:cb:a3:75:0f:1b:bb:6e:23:59:d4:47:dc:d1:e5:56:4a:
be:60:8b:c1:cb:e2:95:1d:e3:f0:22:1b:8b:3c:7a:84:63:ab:
0a:fe:e6:3c:bd:e2:59:e0:6f:2f:3f:3d:37:3c:79:32:6e:74:
a8:a3:13:df:74:8d:56:75:61:8a:a3:20:4e:b6:e1:88:99:78:
35:8b:73:d6:81:83:19:86:75:7b:ec:c9:8c:0d:c7:2e:24:91:
5b:ad:e6:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 05:54:26 2025 by rpki-client