Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json)
Hash identifier: +ebo1KR/q00bbdNMvPniIvSPvKhE9lHO1kM/xmhbZJI=
Subject key identifier: F9:CC:B7:2F:EF:80:D1:35:A4:19:41:0C:B4:83:77:5F:1D:8A:1C:27
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 01987CE4D93B4EBD8B175B3DC581AF25E4ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
Manifest number: 161C
Signing time: Wed 06 Aug 2025 01:00:29 +0000
Manifest this update: Wed 06 Aug 2025 01:00:29 +0000
Manifest next update: Thu 07 Aug 2025 01:00:29 +0000
Files and hashes: 1: Q01X85MGyHMF5rr2gbqyxSbVGJU.roa (hash: 3pLndBzBIS9IcjtzdUX4XacaMZCMolKRG+4KwxWHWEU=)
2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: QXkIjw67ej0PxrR+b9atQjZDYbVTa1M/3hlm+0vYmFk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:e4:d9:3b:4e:bd:8b:17:5b:3d:c5:81:af:25:e4:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: Aug 6 01:00:29 2025 GMT
Not After : Aug 7 01:00:29 2025 GMT
Subject: CN=f9ccb72fef80d135a419410cb483775f1d8a1c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e8:71:1e:21:ed:34:c0:34:98:02:21:5c:0e:
63:85:de:bd:5b:af:f1:22:3b:4f:f3:0e:e4:52:7f:
61:a2:54:98:bf:46:1c:2d:f1:65:d7:b0:6c:d8:35:
f1:84:ed:f5:c0:7c:04:9d:d8:67:28:9d:99:ca:e9:
cc:12:22:59:5f:9b:14:f4:b5:cf:e4:10:d4:cb:39:
9d:31:0a:73:99:44:00:42:eb:b2:31:c3:a9:d8:2f:
d7:cf:09:7f:0a:ff:29:76:8f:14:0b:8d:6f:3a:39:
ea:dc:2e:5f:b8:f9:d1:7a:3b:2e:2f:88:a7:9b:f7:
65:ba:7b:07:0c:0b:5d:61:55:2f:fd:fa:55:c5:da:
05:b9:45:d9:55:0a:22:3e:e6:ce:19:3d:1c:52:fc:
ca:27:3c:d9:53:95:53:4b:22:ce:89:89:f8:14:14:
4e:05:d6:3e:a3:32:97:7b:9a:c9:4c:c9:9f:d0:1f:
9e:de:74:0c:38:28:16:38:0b:70:fe:72:cb:f0:bd:
9b:77:f7:48:59:1b:5e:10:5c:b3:d1:26:f8:3e:8e:
00:0c:40:8f:29:14:5a:81:03:0e:dc:96:94:83:72:
67:7a:7c:7d:71:9d:0a:10:27:c5:e1:f1:62:09:33:
0a:a8:e0:8b:23:59:b8:bb:96:79:e5:39:c3:c2:a8:
cf:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:CC:B7:2F:EF:80:D1:35:A4:19:41:0C:B4:83:77:5F:1D:8A:1C:27
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:33:45:78:11:ae:fe:2e:6d:ef:73:8d:bc:f4:ed:95:85:86:
af:00:79:ba:cc:2c:78:11:be:f3:cd:48:1a:7c:9d:07:ac:ca:
f3:fc:57:8e:74:8b:92:d7:9a:56:b8:e6:a5:4b:70:ce:bd:a6:
b1:65:ac:47:b9:37:04:96:cf:df:5f:97:d0:98:ad:4d:85:d3:
be:f5:95:4c:5d:82:32:6f:d3:ca:94:8a:26:d6:2d:a0:3d:32:
0b:14:56:9d:5d:b3:af:b3:e4:47:80:76:6d:e1:d0:2f:53:28:
fc:0f:f9:d1:19:6f:54:60:9a:a9:d2:da:ad:0b:6c:4c:68:c7:
f1:94:5f:b2:02:04:01:d1:d4:18:ac:3c:67:70:68:8b:0e:c1:
eb:45:b3:be:80:a2:1e:1a:be:d5:5b:ab:9e:53:b1:2e:4e:1e:
e7:3c:dc:54:ca:67:21:92:35:c8:52:6e:0a:f9:8c:d5:82:ce:
e7:04:67:68:6b:7e:65:56:06:30:8c:38:f0:28:0b:6a:e2:22:
fd:2d:48:ba:b5:bf:f8:08:70:82:c3:61:ea:f4:d4:0d:06:f7:
e8:e5:b1:43:8f:87:6d:0d:3a:b7:e8:8d:f3:ba:45:73:d3:36:
d2:03:ab:b7:79:e0:3c:e1:35:96:3f:c0:41:e0:45:f1:79:0a:
3d:6b:6b:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 06:00:56 2025 by rpki-client