Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
File: aaUdRFt2erm2YncC5KKzkE0gP3c.mft (raw, json)
Hash identifier: 4Xyhc0MGZVcUHwUtxW7rWq5vzgyvHWG9+jFMANg2M6U=
Subject key identifier: 58:B1:F4:72:B1:0D:75:B3:CA:B4:82:CA:36:7D:87:B2:BF:40:0F:F5
Authority key identifier: 69:A5:1D:44:5B:76:7A:B9:B6:62:77:02:E4:A2:B3:90:4D:20:3F:77
Certificate issuer: /CN=69a51d445b767ab9b6627702e4a2b3904d203f77
Certificate serial: 019769977FDC1224E4CAAA00D2FD49390B6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaUdRFt2erm2YncC5KKzkE0gP3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
Manifest number: 151F
Signing time: Fri 13 Jun 2025 14:00:25 +0000
Manifest this update: Fri 13 Jun 2025 14:00:25 +0000
Manifest next update: Sat 14 Jun 2025 14:00:25 +0000
Files and hashes: 1: aaUdRFt2erm2YncC5KKzkE0gP3c.crl (hash: e8P/lfRvNfDk6kW6Vh8cGgAP5WWD8Kgltm2PFzf4DxQ=)
2: gvJBtDmrBY4y1m9tVe-S6ndjy20.roa (hash: e9qz/rQIxQf43DTjLpdblCilaun5V9rCKHAnrG6oKJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaUdRFt2erm2YncC5KKzkE0gP3c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:7f:dc:12:24:e4:ca:aa:00:d2:fd:49:39:0b:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a51d445b767ab9b6627702e4a2b3904d203f77
Validity
Not Before: Jun 13 14:00:25 2025 GMT
Not After : Jun 14 14:00:25 2025 GMT
Subject: CN=58b1f472b10d75b3cab482ca367d87b2bf400ff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:36:f1:52:eb:2c:8c:d7:a5:6b:db:56:71:0a:
1c:2d:df:56:b0:89:10:ec:83:65:67:48:55:c3:bb:
c3:78:0a:44:3e:a1:43:0c:9b:81:bc:6e:bb:44:42:
68:32:8f:52:ec:34:17:40:50:ba:e1:2a:1c:2c:8f:
c5:ba:4b:f3:38:ba:a6:47:4e:4c:c3:a6:05:5e:8d:
24:6f:06:31:51:20:71:67:53:cd:91:99:6a:4d:26:
9c:38:a4:fa:d2:81:18:73:67:c9:03:40:c1:72:cb:
56:a1:59:98:e6:c0:59:6a:8d:4c:2a:cd:b9:6a:45:
c1:5e:52:75:f5:d0:cf:36:6c:fa:6b:69:e1:c4:5a:
e5:fb:c4:36:c6:c4:5a:76:c8:ed:ba:6f:7a:68:31:
fe:8d:80:0d:ba:47:d3:e9:73:e3:14:99:ba:c7:2f:
aa:7b:31:3f:82:f4:99:b0:27:1b:02:0a:72:ec:cd:
0b:40:75:9f:d4:c2:7f:fd:1b:38:d5:8b:30:81:79:
3c:5a:9f:b4:12:29:c0:6a:b9:46:82:c8:35:0b:a7:
ae:0c:29:63:36:fa:e1:78:1b:83:d0:22:2d:4e:25:
86:e4:f3:63:a8:a3:03:4a:51:f1:65:9f:48:6a:07:
5c:cd:f7:37:2c:0c:93:1b:3a:b9:57:5c:62:fd:f9:
c2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B1:F4:72:B1:0D:75:B3:CA:B4:82:CA:36:7D:87:B2:BF:40:0F:F5
X509v3 Authority Key Identifier:
keyid:69:A5:1D:44:5B:76:7A:B9:B6:62:77:02:E4:A2:B3:90:4D:20:3F:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaUdRFt2erm2YncC5KKzkE0gP3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:b9:2f:8b:00:29:ac:d2:c2:a7:03:28:74:67:ee:b2:7a:d6:
23:f2:57:aa:e4:45:cf:17:6a:25:85:94:eb:b5:c2:56:16:21:
68:50:d4:ac:5a:3e:23:91:b4:89:f3:18:2b:1e:0d:98:a0:63:
a2:81:c4:59:cf:69:c0:49:e5:39:1d:16:62:67:42:cd:00:5e:
11:ea:14:e4:49:3f:34:61:cb:29:54:cd:ce:7b:70:9a:53:40:
14:e3:0c:bb:0a:95:e9:fb:da:1f:67:0b:59:6d:c4:a9:f1:63:
59:93:66:a0:c7:2b:f6:aa:4f:18:39:77:fd:c9:2c:a4:23:c3:
8a:d1:8d:0c:d1:e9:d3:f7:34:cc:09:2e:35:6b:56:cc:1b:e7:
ab:41:b5:04:d6:9b:e8:5b:96:b1:e1:d5:5b:7d:bc:bc:5b:ab:
23:ae:be:6a:8c:60:a5:c7:3d:22:72:f2:88:57:2f:ff:36:5f:
7f:01:9e:6b:eb:bc:5f:06:f5:cb:43:e4:ba:96:57:b5:46:23:
40:46:4a:01:7d:71:81:ef:0b:31:d4:f5:50:de:64:be:02:c9:
5e:4f:bf:92:33:ed:df:ad:5f:87:e6:32:12:92:d6:7c:bd:ff:
d5:b8:f4:0b:4d:88:2e:ff:a3:d6:e2:30:68:14:eb:b9:67:99:
50:3c:44:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:15:42 2025 by rpki-client