Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
File: aNQlzHsbeICodfdr7agP4xCTGe0.mft (raw, json)
Hash identifier: /vZgdA0D/hExYU0BdIktuereLYbqdJv6mYaYGf1V1dM=
Subject key identifier: 08:95:31:08:A2:D0:5E:5E:FE:B8:2A:5A:F9:57:6D:04:05:FC:CB:C0
Authority key identifier: 68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
Certificate issuer: /CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Certificate serial: 01976DAB836B12CAE2ABF4A6D93C05BAEDF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 09:00:46 +0000
Manifest this update: Sat 14 Jun 2025 09:00:46 +0000
Manifest next update: Sun 15 Jun 2025 09:00:46 +0000
Files and hashes: 1: 1ikX92cBkm7W7rHfhLCtgqKM0d8.roa (hash: oY5BxXRyJZhAnRLwWm3V4CClsVP5JaJOwIydkhqNE80=)
2: 2KU1lG8tmW62eqBwxBBDds81m5A.roa (hash: DXWqInrCKLzcQadKZzuaDGdIbNbzO5YygQPkSyOtdqY=)
3: aNQlzHsbeICodfdr7agP4xCTGe0.crl (hash: h1EUqd7GE6gcdZgb2GCtnTrEYqKGlZ7UQkvauYE8OxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 09:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:83:6b:12:ca:e2:ab:f4:a6:d9:3c:05:ba:ed:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Validity
Not Before: Jun 14 09:00:46 2025 GMT
Not After : Jun 15 09:00:46 2025 GMT
Subject: CN=08953108a2d05e5efeb82a5af9576d0405fccbc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:7b:bb:f1:71:c8:b5:11:29:5f:a9:47:24:5f:
95:1d:08:9c:c3:16:2d:50:b8:2b:a1:4d:fd:22:d7:
7f:70:e0:35:b5:33:79:96:b0:1e:0b:de:13:da:50:
e0:a0:68:57:06:b8:f0:ca:19:99:eb:81:64:79:0d:
c4:a9:05:8b:b5:48:ea:f8:cd:13:65:59:e9:b5:6e:
58:1c:85:5c:2f:98:3f:da:bb:5d:09:05:16:19:f0:
19:0b:7f:9a:54:e1:dd:e4:61:59:70:a6:90:8f:9a:
38:72:40:4c:61:ce:88:94:73:79:b6:5d:ff:f6:48:
e5:13:d3:ca:a9:b8:83:a6:09:33:d9:a5:d2:6e:ea:
55:84:34:7a:25:ef:0a:94:c1:70:0f:40:59:85:19:
7a:8e:0b:cc:06:13:b4:51:42:4e:2b:be:90:8b:8e:
4e:c9:7f:0f:e1:bd:09:ff:26:cc:a3:6d:c4:1b:a0:
20:8b:b1:0d:4d:4c:b5:47:70:87:80:c1:3b:2d:60:
df:5f:90:33:3a:6a:41:31:68:3c:43:7e:db:b9:05:
ff:53:d1:ef:f5:a4:e1:4c:26:a8:4d:e1:cd:82:f3:
6a:ee:ce:2a:cb:0b:44:96:8d:ca:5f:1b:6c:03:6f:
bd:34:1d:e0:93:12:65:b8:c9:f4:ed:9b:ae:7c:bf:
1f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:95:31:08:A2:D0:5E:5E:FE:B8:2A:5A:F9:57:6D:04:05:FC:CB:C0
X509v3 Authority Key Identifier:
keyid:68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:c0:6e:82:42:e2:10:70:53:a4:86:a9:aa:f3:8d:1d:de:41:
d5:dc:76:95:d4:ed:46:cb:1c:1a:0a:9a:81:5a:5c:63:df:7b:
a1:60:e4:ff:b0:8b:f7:84:2a:a6:26:fc:3f:7a:46:45:85:57:
07:61:43:e0:e0:26:a0:b7:65:9e:15:72:ed:95:d0:de:fc:a3:
4e:34:fe:34:0f:e1:a4:d7:c0:61:01:a3:6e:e9:88:71:44:57:
e7:66:c7:1a:8e:68:f9:40:bf:c1:28:6e:64:7b:e5:00:a1:93:
9f:42:6f:6f:2a:d1:81:e3:7a:1d:0b:51:a8:02:b1:49:d6:3f:
44:9e:05:3b:d2:78:fb:85:49:da:e9:86:9b:bb:50:77:d5:04:
5b:1e:7f:5e:f7:a0:bb:3d:73:6f:05:4b:5d:1f:42:06:66:56:
d9:ec:75:ed:e7:87:ea:7c:33:e7:91:96:da:e0:8a:03:92:4f:
ea:ca:e3:c2:49:53:ab:b6:6c:de:60:58:e5:90:3d:02:30:f5:
d6:12:ec:8a:51:7c:38:1a:c5:01:5e:ee:81:7f:d0:a2:d6:9b:
dd:87:f1:9a:d1:9f:d2:39:4c:04:7a:13:b0:e6:d5:c6:07:7f:
52:44:af:24:b7:8d:85:14:54:f0:e5:06:96:52:a0:79:ea:27:
f3:cd:bb:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:55:47 2025 by rpki-client