Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json)
Hash identifier: putZcdUIr9xyXvoIcUMrW3mucqygeQc+GwAqmuglLc8=
Subject key identifier: 16:7A:BE:34:4E:ED:86:31:EF:F7:8A:A2:CC:84:54:F1:F0:C7:6F:57
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 01976E87483EC818413985AE752F43B4B1A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 13:00:48 +0000
Manifest this update: Sat 14 Jun 2025 13:00:48 +0000
Manifest next update: Sun 15 Jun 2025 13:00:48 +0000
Files and hashes: 1: Q01X85MGyHMF5rr2gbqyxSbVGJU.roa (hash: 3pLndBzBIS9IcjtzdUX4XacaMZCMolKRG+4KwxWHWEU=)
2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: nmHYm4wM04/rkG7olCCjh3Bs5BmM4U6jlg1WkgYCRps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:87:48:3e:c8:18:41:39:85:ae:75:2f:43:b4:b1:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: Jun 14 13:00:48 2025 GMT
Not After : Jun 15 13:00:48 2025 GMT
Subject: CN=167abe344eed8631eff78aa2cc8454f1f0c76f57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:65:69:a0:86:6b:8b:c3:b0:ed:ee:f8:d9:1b:
75:93:9c:5f:ca:f5:d4:78:f5:a8:0b:85:03:3a:c8:
3c:86:3f:d1:6c:a4:17:c9:7a:76:25:71:0e:20:16:
ee:83:67:f9:77:d3:09:89:10:87:c9:3d:c5:33:7e:
5b:ea:48:2c:22:3d:16:b4:ff:67:b2:eb:e4:b8:85:
ee:38:ee:d9:c5:a1:b1:7f:9a:54:25:60:91:66:0d:
19:f3:8c:6e:d1:83:9e:b6:31:80:86:47:d7:e9:b9:
de:8a:77:cc:c3:b3:ac:67:df:6a:32:3d:d1:3a:3d:
71:0f:e6:f0:f2:aa:ba:20:70:7b:c5:99:55:46:8c:
dd:a1:b9:59:c3:b1:da:3f:9c:53:05:4b:82:f5:e0:
62:ef:e8:bc:10:26:3a:56:9b:52:84:e2:61:7e:4b:
02:a9:a3:80:41:05:c5:cd:dd:ab:00:6d:cc:19:ca:
b5:9e:9e:87:f3:23:ab:d4:4f:ba:f8:18:ff:e5:ae:
2d:aa:30:44:7b:3e:d9:06:56:91:63:fc:30:75:fc:
f8:3f:1b:84:78:1a:92:49:e2:05:f1:9c:6e:03:3a:
9d:e7:51:bb:27:87:c7:8a:8c:32:c4:3b:f0:35:68:
e6:dc:03:42:77:25:11:cf:28:44:fb:59:76:08:bf:
1b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:7A:BE:34:4E:ED:86:31:EF:F7:8A:A2:CC:84:54:F1:F0:C7:6F:57
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:46:d4:33:82:f5:85:9a:f7:78:b0:b9:ea:28:c4:44:4a:a5:
fa:d7:e3:d3:24:fe:7c:b9:1d:77:96:cc:9d:70:04:7a:9e:3f:
c7:00:37:52:84:de:e3:3c:83:4f:80:3a:83:27:bf:bc:6e:35:
d9:b7:4c:10:7c:dd:c0:ef:be:cd:c9:9e:78:85:fc:c7:a1:08:
03:c6:7e:ac:40:04:fd:2c:be:03:ea:26:2f:46:29:4d:94:da:
0a:16:00:b1:ce:1d:40:ae:9a:09:13:42:90:9f:cc:40:7e:cf:
99:32:77:21:fb:1a:8c:2b:0b:d4:2c:fa:f2:33:a4:d4:5c:b5:
03:34:8d:d5:34:be:93:d8:af:64:4b:60:bc:00:a8:6b:74:19:
5e:c5:42:bd:7d:b1:14:23:51:99:47:00:b4:0e:10:9c:86:97:
a2:05:0d:f8:ca:4f:76:c5:3d:ad:a9:6a:4b:70:af:54:7f:67:
40:53:1a:71:4a:8e:e1:66:2c:84:2b:26:57:5a:ab:52:fa:51:
4d:ef:7d:89:66:a6:b4:ce:7d:cf:56:45:d8:1c:05:6a:01:2d:
33:24:e8:73:d8:fb:03:ab:06:7d:0d:ad:12:5c:e4:05:05:a9:
c4:c9:99:ba:a8:14:80:cb:6a:f6:f4:91:be:b7:9d:9e:a9:b6:
13:9d:f9:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:07:52 2025 by rpki-client