Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
File: aEZbnPs2jGnssOP-o7VCupxzAfQ.mft (raw, json)
Hash identifier: A49adiXRNGss6YmWH+13gO/BJzAd6toqsgragM9Q7Ys=
Subject key identifier: 17:07:DE:F8:5F:A8:25:41:84:12:C3:2F:80:92:34:0F:D2:24:F7:C6
Authority key identifier: 68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
Certificate issuer: /CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Certificate serial: 01987ED40160EDB9E83A4DC7691A53F7CD99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
Manifest number: 1335
Signing time: Wed 06 Aug 2025 10:01:19 +0000
Manifest this update: Wed 06 Aug 2025 10:01:19 +0000
Manifest next update: Thu 07 Aug 2025 10:01:19 +0000
Files and hashes: 1: aEZbnPs2jGnssOP-o7VCupxzAfQ.crl (hash: Jy6/P3Y6sGWrQEqgkwkLl8wHYm2AUD9lHne5Z5Ffaao=)
2: s3MszUL2Sssrqjezj_btDkPTmQg.roa (hash: rgkSdfEiUESbKFQA8EcHOyD2UnXv2kAlPQ3EqnLhSNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:d4:01:60:ed:b9:e8:3a:4d:c7:69:1a:53:f7:cd:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Validity
Not Before: Aug 6 10:01:19 2025 GMT
Not After : Aug 7 10:01:19 2025 GMT
Subject: CN=1707def85fa825418412c32f8092340fd224f7c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ba:21:ab:ed:b6:25:90:79:e7:f5:91:5d:ac:
f2:c5:d6:65:61:6a:b3:12:ab:d3:87:2a:19:f4:af:
e3:2f:3a:44:0c:09:5a:d9:05:c8:05:c7:85:2f:32:
00:fc:b7:07:fa:fd:88:6a:52:87:fa:56:31:21:e8:
80:30:42:a5:ba:80:76:1e:fa:5e:59:6b:d9:b6:b9:
dc:7d:47:33:13:b5:07:a2:f7:6e:5c:f2:4b:f0:f0:
99:89:c3:23:ac:9c:1a:54:01:39:ae:d7:a4:b6:46:
a8:ef:5c:d6:53:e3:cd:4f:b5:71:90:98:be:77:56:
5f:6f:87:c2:36:78:0c:26:30:0b:c7:59:4b:52:37:
3b:85:b9:22:ff:fe:42:1d:8c:6c:c7:b3:9a:92:c7:
5b:b5:8f:3b:4b:a6:2e:7b:1f:b7:db:d1:b6:51:c1:
ba:c5:15:96:1f:a7:f9:b6:fa:e3:e8:20:fd:33:ed:
76:69:5c:e5:52:59:32:fc:00:bd:8e:49:13:46:02:
87:53:cc:ae:6c:3b:e8:13:7d:cc:0d:38:7e:9d:54:
82:a4:cd:0c:bd:8a:4b:36:a7:9d:2a:d8:29:87:03:
c5:70:f4:dc:d0:1b:7c:1c:a8:d2:37:17:8d:c8:00:
35:cd:a3:1c:50:99:fa:8a:f9:92:2f:2e:ac:0b:50:
05:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:07:DE:F8:5F:A8:25:41:84:12:C3:2F:80:92:34:0F:D2:24:F7:C6
X509v3 Authority Key Identifier:
keyid:68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:cb:09:ac:b0:ec:ed:19:b4:17:9c:05:4f:86:88:96:c7:ed:
39:c0:26:00:cc:b9:1e:90:56:a7:92:4e:4f:d9:31:c0:07:ec:
f8:93:11:b4:bf:50:f4:f2:29:bb:8a:7e:ce:3b:23:ef:94:49:
1f:76:76:e2:e0:51:a3:5f:7b:f0:a3:a6:8e:f0:97:19:5d:7b:
43:1e:70:d7:91:70:20:20:3b:4b:0f:c9:87:15:43:68:89:7f:
00:62:6a:a1:db:fe:61:7e:d9:60:5f:11:94:20:c3:59:fb:14:
27:9f:1d:b4:bc:33:3f:b4:fb:07:b2:e1:c2:7b:35:28:c7:8d:
f7:dc:e1:95:89:0b:72:92:ec:7c:36:7b:df:75:54:bd:28:31:
4c:f8:2c:11:02:f7:42:ff:07:a9:dc:22:6f:80:ff:55:94:52:
11:09:d7:f7:d0:03:63:c4:d1:52:e6:96:d4:e1:c4:ac:d3:7c:
41:d4:d9:d6:9e:e8:7e:4b:5d:a4:c9:0f:fb:78:39:c6:89:28:
c3:37:4f:db:c2:2c:98:03:80:e4:01:72:d0:1a:20:b0:c1:a2:
2e:97:a4:cd:bb:cd:62:75:e4:1d:58:91:98:63:a5:95:a9:13:
f5:35:81:10:d4:5d:87:29:e7:a8:ab:48:35:03:d5:4c:79:23:
f1:c1:52:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:13:12 2025 by rpki-client