Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
File: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft (raw, json)
Hash identifier: cl8RWFGRgQPZr7kLscqMJyd+THxYZEcu9ogQv/pkrD4=
Subject key identifier: 1D:0E:AD:A6:1A:9E:F1:8F:93:09:33:65:2F:3C:A1:9B:0D:0E:65:11
Authority key identifier: A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
Certificate issuer: /CN=a4068c6655c333fc712832c113f67f1fd688aec4
Certificate serial: 0198D6613CD95CE124A467D4770AB20BBE89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
Manifest number: 1347
Signing time: Sat 23 Aug 2025 10:02:33 +0000
Manifest this update: Sat 23 Aug 2025 10:02:33 +0000
Manifest next update: Sun 24 Aug 2025 10:02:33 +0000
Files and hashes: 1: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl (hash: UeomlIZNhEXdXe80LHx9pHGkkULRg8Wu5C04j9Br/qY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:3c:d9:5c:e1:24:a4:67:d4:77:0a:b2:0b:be:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4068c6655c333fc712832c113f67f1fd688aec4
Validity
Not Before: Aug 23 10:02:33 2025 GMT
Not After : Aug 24 10:02:33 2025 GMT
Subject: CN=1d0eada61a9ef18f930933652f3ca19b0d0e6511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ca:63:11:e3:a9:92:2f:80:a4:0a:57:e3:37:
52:54:24:c6:e7:17:1d:df:21:fc:aa:ef:02:db:0a:
be:86:c5:b0:02:e3:8b:03:b7:39:69:14:ac:72:8d:
c3:c5:7c:e3:0b:7a:b9:f8:78:da:49:44:6e:b3:9f:
96:b8:e7:b4:b6:f3:37:14:43:85:83:4d:81:9d:91:
9c:65:8e:98:70:27:d9:7b:63:97:b0:a6:2e:4e:ea:
c6:3e:3a:b0:78:7f:8e:90:c8:39:8a:c3:1b:1a:09:
1f:85:54:b1:d4:cb:55:56:3d:b0:ae:0f:1b:de:f4:
d3:f1:44:13:fc:25:19:f7:96:b8:f9:5c:da:2a:0d:
fe:f9:cb:ee:19:c4:37:7f:76:1b:05:04:21:30:8d:
d8:b2:68:3d:33:fe:30:21:0c:05:63:1b:bc:4b:c4:
af:eb:26:34:b9:dd:a6:05:69:29:85:e4:f3:74:66:
cc:19:59:89:86:21:66:03:1d:bd:c3:b6:c2:7d:c3:
07:1d:6e:c5:f3:ee:5b:40:cb:19:ee:03:fd:63:06:
30:dd:0d:4a:ef:af:8a:3b:97:f4:3f:e9:29:8d:f4:
be:00:62:9a:48:db:9d:f5:ad:2e:8b:54:65:7d:67:
da:c0:40:e6:56:6e:a3:5d:e0:c3:1c:14:c6:26:e9:
eb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:0E:AD:A6:1A:9E:F1:8F:93:09:33:65:2F:3C:A1:9B:0D:0E:65:11
X509v3 Authority Key Identifier:
keyid:A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:01:1b:ff:20:cf:9b:fa:c3:d7:13:9e:8e:93:0f:13:bf:a4:
ab:a3:29:5c:27:ae:5f:2a:3b:22:4a:30:64:99:b2:19:33:ef:
9e:ae:0c:4e:7a:b3:b1:d9:53:5c:37:a6:d2:56:06:bf:1a:d8:
36:10:23:93:94:87:13:d7:65:3d:28:af:dc:74:a5:36:be:61:
8e:5b:5b:21:bb:1f:82:39:9a:77:7e:a0:24:b5:63:1f:a0:38:
f9:a8:53:6a:21:14:ae:4f:c7:96:a5:76:d4:57:76:3b:b3:ee:
3f:45:a9:d9:d4:32:2c:34:1b:b3:52:5b:7b:86:30:0f:cf:24:
ae:56:fb:3d:b6:1e:d5:f2:87:24:46:48:17:f2:c9:9e:c2:d8:
77:65:f6:95:e2:1d:36:d1:7c:29:ae:6f:4f:59:16:d0:d4:7b:
c8:72:be:8e:cf:f6:56:23:87:66:92:91:c4:0c:97:76:ee:e4:
9f:36:ed:57:24:63:2a:bb:ae:00:b6:73:84:c9:aa:b0:33:14:
8d:94:86:f5:d9:e8:43:62:1c:fd:7f:2e:b0:f4:a0:85:35:f1:
8d:31:63:72:de:1a:03:fb:5c:35:b2:a5:bb:93:30:f0:65:5d:
b3:63:f2:68:e9:30:2b:6a:ba:ad:03:de:e0:17:62:6d:25:9a:
97:ff:f3:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:47:24 2025 by rpki-client