Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
File: aEZbnPs2jGnssOP-o7VCupxzAfQ.mft (raw, json)
Hash identifier: 1Jw+xPGi2feDFCHLXKoN3pqV5RVzxiZesCBmPBfU3SU=
Subject key identifier: F0:02:8A:42:C8:E5:48:EB:BD:D3:F4:BF:41:55:3B:62:06:54:55:D8
Authority key identifier: 68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
Certificate issuer: /CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Certificate serial: 019785B4154E220C9A662534791785AD0DCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
Manifest number: 12B4
Signing time: Thu 19 Jun 2025 01:01:01 +0000
Manifest this update: Thu 19 Jun 2025 01:01:01 +0000
Manifest next update: Fri 20 Jun 2025 01:01:01 +0000
Files and hashes: 1: aEZbnPs2jGnssOP-o7VCupxzAfQ.crl (hash: qNC9Skzaz0rt4gXYO7r/dU4WB6/Gb8tuS05oYZwGHjg=)
2: s3MszUL2Sssrqjezj_btDkPTmQg.roa (hash: rgkSdfEiUESbKFQA8EcHOyD2UnXv2kAlPQ3EqnLhSNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 23:47:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:85:b4:15:4e:22:0c:9a:66:25:34:79:17:85:ad:0d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Validity
Not Before: Jun 19 01:01:01 2025 GMT
Not After : Jun 20 01:01:01 2025 GMT
Subject: CN=f0028a42c8e548ebbdd3f4bf41553b62065455d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b8:0f:1d:a8:8b:37:71:84:d8:ac:46:5d:17:
02:a7:7c:43:c9:8c:cb:b3:ac:b1:c1:86:95:48:d6:
d4:86:ab:2d:45:f4:53:29:84:5b:7c:d5:ac:ef:c6:
61:73:29:02:11:ef:2a:03:ce:58:e3:a5:e4:4e:84:
e1:34:66:e7:fb:00:2b:89:63:a4:69:22:e2:32:5c:
a0:84:4d:e1:fe:31:15:41:21:bb:67:22:3f:94:a0:
21:45:a5:4e:b2:d1:a0:a0:b3:e4:0d:ae:e7:16:99:
85:5b:27:4d:0c:c4:65:0a:10:ae:fb:95:2a:f1:57:
e5:28:69:7f:66:9e:65:55:9c:63:42:15:fc:02:3b:
e7:0a:a0:0a:96:58:28:2d:02:b9:21:2b:2b:bd:bf:
28:d7:23:4b:bf:ea:4d:55:6c:a6:95:99:07:64:2c:
1b:ee:96:4d:4c:0f:55:c5:78:22:4b:46:a1:9f:6f:
ac:7e:44:93:38:92:89:95:cb:b7:df:45:d1:f2:f9:
da:32:b4:83:94:61:17:87:b9:7c:37:f4:aa:5b:6a:
8a:e8:08:5d:a1:1d:3d:3d:ee:f9:06:ce:9a:06:99:
73:be:64:7d:10:02:dd:3e:42:42:1b:3f:79:8c:b5:
3c:ff:59:49:41:16:6f:f0:43:e4:38:70:ac:88:e8:
48:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:02:8A:42:C8:E5:48:EB:BD:D3:F4:BF:41:55:3B:62:06:54:55:D8
X509v3 Authority Key Identifier:
keyid:68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:a1:1c:d3:6f:a9:56:3f:79:30:18:65:27:e9:c6:84:e4:57:
b4:bd:ec:b4:38:b0:22:c2:8b:b3:05:b1:2d:f1:f5:78:22:99:
d5:37:f7:92:7a:13:cb:01:6f:a7:6b:99:9a:ba:d9:30:b3:80:
cc:4c:12:a2:d7:72:7b:6a:18:e4:ca:db:ed:d9:d1:a6:37:da:
cb:60:6a:6c:ce:4e:ab:64:dd:5d:01:0a:66:40:5d:31:3a:9e:
c1:31:fd:49:5a:0f:2d:c6:43:a3:e2:f4:64:73:74:23:fa:65:
47:8c:54:42:2d:13:25:bd:53:bb:13:22:72:54:68:39:3f:92:
6a:dd:57:3c:b2:0e:60:bb:71:fa:06:52:e3:46:8d:3b:25:41:
09:ab:cb:3a:8a:6e:b1:09:32:0f:43:a4:6c:ca:f3:10:c9:9c:
64:db:e6:88:64:bc:7e:52:eb:bc:f3:c8:6d:8c:19:b3:9a:13:
e2:6e:dc:6c:f5:fd:51:9b:8b:6e:f9:69:8c:4e:36:2d:b2:1f:
49:4d:fe:f2:d0:29:8e:53:4b:e2:c3:9e:e3:bd:20:91:b5:cd:
03:e0:f5:5a:67:ee:57:51:05:3e:60:9c:83:9c:28:75:e6:d6:
2f:70:6f:a7:11:40:23:18:5b:7a:93:af:29:5c:0e:04:09:b6:
56:d8:d2:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 09:17:58 2025 by rpki-client