Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
File: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft (raw, json)
Hash identifier: 7xDfHZnQQHgKBeInz4WasowAczNJomFu2wyIy1jbabE=
Subject key identifier: 6D:87:D3:C1:CE:CC:9C:A3:81:D6:53:EA:BD:2B:D1:A0:53:F5:65:AE
Authority key identifier: A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
Certificate issuer: /CN=a4068c6655c333fc712832c113f67f1fd688aec4
Certificate serial: 0197BA7DC25038F825DC1F4D7937DEBDF7BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
Manifest number: 12B4
Signing time: Sun 29 Jun 2025 07:01:33 +0000
Manifest this update: Sun 29 Jun 2025 07:01:33 +0000
Manifest next update: Mon 30 Jun 2025 07:01:33 +0000
Files and hashes: 1: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl (hash: i3nKK6i/D0ueAOkAWwmy7o3b3D42SiM8woVSujOEn54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7d:c2:50:38:f8:25:dc:1f:4d:79:37:de:bd:f7:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4068c6655c333fc712832c113f67f1fd688aec4
Validity
Not Before: Jun 29 07:01:33 2025 GMT
Not After : Jun 30 07:01:33 2025 GMT
Subject: CN=6d87d3c1cecc9ca381d653eabd2bd1a053f565ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:9e:34:10:68:93:ea:2a:5f:28:0f:cd:0b:b1:
6e:00:a5:66:20:6f:13:a8:68:17:8d:a8:fd:1d:d5:
3b:d6:7e:b8:ec:21:e0:7c:56:40:1a:22:07:8b:51:
5e:f3:22:db:43:99:03:6d:de:94:7f:ee:c0:4a:e9:
d3:38:4c:96:c0:be:b8:b4:2a:87:fb:bc:60:ff:63:
37:ae:ad:32:53:29:90:21:ed:b4:80:d7:10:5f:ce:
fa:0f:a9:08:d9:9a:31:c1:25:d7:b5:f4:2e:20:69:
2b:eb:99:fd:6f:69:1b:f4:a8:16:d4:bc:fb:39:6a:
fa:df:c4:00:bf:3c:dc:54:50:31:9c:1c:b9:bb:56:
a1:00:47:1c:5d:3d:0a:a1:44:77:ed:66:c4:45:17:
47:15:47:39:5f:17:ce:e2:ac:6c:32:45:86:a6:5d:
cb:f1:24:97:4a:f4:09:ff:fc:97:32:61:59:56:87:
4e:e0:ec:92:fd:57:c8:01:d5:69:44:de:93:66:08:
b3:4a:1d:75:db:fa:86:b2:3b:99:47:4c:84:37:65:
45:94:aa:95:1b:0a:85:f1:04:10:ea:7c:e6:aa:8b:
bb:23:00:da:fc:9f:90:90:77:bd:65:81:af:6d:63:
03:88:9f:e3:2a:52:78:da:e0:10:0f:93:1b:f0:6d:
f4:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:87:D3:C1:CE:CC:9C:A3:81:D6:53:EA:BD:2B:D1:A0:53:F5:65:AE
X509v3 Authority Key Identifier:
keyid:A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:7a:c6:35:c7:f2:ad:8a:e3:d1:7e:34:1a:20:72:58:81:0a:
63:83:24:16:e4:78:59:3e:eb:1c:a8:51:92:28:d9:17:c3:a2:
b3:83:82:47:87:e5:2c:ac:fd:be:15:02:35:56:94:4b:84:3f:
1e:4a:b6:7a:36:e2:a3:57:80:92:80:df:60:f0:b6:f2:35:ec:
f9:66:a9:e4:d8:cd:1d:4a:83:83:43:87:64:c9:0d:fe:ee:d4:
6d:fc:a1:f5:c1:5f:8f:38:a3:b5:a9:96:ae:f9:cb:ff:a0:92:
c8:24:9e:93:b6:fb:80:72:b5:43:f4:39:db:ed:89:7e:05:95:
c4:6c:19:42:3a:39:5e:d2:a0:bb:68:97:63:cb:b1:6e:40:74:
ca:8b:49:74:bb:3c:36:04:ba:c1:52:a2:91:a5:2f:4b:99:95:
a3:16:bb:46:ed:6d:71:15:2d:a7:de:89:18:56:07:fd:dd:45:
68:de:8f:0d:e7:a2:ad:79:9c:21:d3:3f:d6:1a:8b:5e:2f:3c:
c2:ea:c2:15:80:e1:97:e8:b1:eb:ab:5a:4d:13:73:19:39:0f:
1d:84:d3:a5:b5:6a:84:e3:90:08:cf:36:a0:87:85:69:1d:79:
9f:f6:e4:67:62:ce:a3:69:9d:f9:d4:6b:2c:91:65:bc:cf:17:
4d:9b:59:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 10:22:29 2025 by rpki-client