Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
File: aYLwUTKpmJUH6_bumJUYdTuizbU.mft (raw, json)
Hash identifier: JZmFwTTm2t6It8dJdbjFOXNIcmVif7ve67pFDYR6YoE=
Subject key identifier: B1:A7:FE:6E:D3:E1:CB:7A:72:22:D8:DE:D4:7F:F4:AD:E9:14:8E:BE
Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Certificate serial: 0197B77C946B5353427C1DE38FE2500288FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
Manifest number: 0A67
Signing time: Sat 28 Jun 2025 17:01:24 +0000
Manifest this update: Sat 28 Jun 2025 17:01:24 +0000
Manifest next update: Sun 29 Jun 2025 17:01:24 +0000
Files and hashes: 1: aYLwUTKpmJUH6_bumJUYdTuizbU.crl (hash: zI1Mnq6ZjalygtAzBSFJBJV8Ms2q/nTi256OjBqstvM=)
2: fAKnpTzt0oxsrzvaA1bygJJ8CWQ.roa (hash: cdf+GHG9jpY7S3hS2aX03Crb7b2Au3gPgbB6NvaxmuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:94:6b:53:53:42:7c:1d:e3:8f:e2:50:02:88:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Validity
Not Before: Jun 28 17:01:24 2025 GMT
Not After : Jun 29 17:01:24 2025 GMT
Subject: CN=b1a7fe6ed3e1cb7a7222d8ded47ff4ade9148ebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:35:7c:37:b8:40:0a:92:ff:50:d2:c7:0c:5b:
c0:8b:88:cd:3f:98:2f:1a:fc:4a:f6:0e:20:a8:cf:
f9:58:bd:3d:2d:0d:ed:7f:c5:82:02:b5:a1:70:ea:
0d:bb:e2:5e:10:72:e1:fb:16:21:7b:b0:b1:ed:08:
f3:48:bd:5f:95:39:d1:7d:4a:fc:98:89:97:91:3c:
90:34:97:26:dc:13:17:9c:f8:08:d2:71:32:92:10:
c2:65:8a:2e:00:8a:49:54:e1:a3:cc:b7:e7:20:3c:
37:5c:a6:7b:b4:e5:f6:49:98:b0:2d:bd:96:9d:98:
54:ee:76:a7:80:82:07:32:2c:63:50:48:02:2d:c0:
bb:a3:2e:fa:d5:1c:53:02:e9:46:9e:f8:08:56:3b:
47:72:77:56:f0:9e:10:b2:80:64:57:a2:1c:64:03:
d6:fc:34:14:b7:c6:9b:cd:62:1c:60:d7:ac:da:11:
79:33:e3:f8:d1:cf:36:1a:b2:86:d5:7f:9c:18:e5:
3e:25:27:69:2d:fb:61:a5:f4:01:ab:b2:c7:ee:e3:
ba:be:98:b1:0a:44:60:74:26:a1:98:63:4f:13:96:
bb:5d:e5:8d:01:d7:91:74:8d:5a:8b:0d:ef:38:44:
dc:63:df:97:4e:7f:cf:57:e8:3a:6f:3f:6d:79:06:
8a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A7:FE:6E:D3:E1:CB:7A:72:22:D8:DE:D4:7F:F4:AD:E9:14:8E:BE
X509v3 Authority Key Identifier:
keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:99:56:6e:e7:8b:f1:f2:52:c3:87:4e:a3:fc:1a:ef:fd:21:
aa:36:fc:59:2e:40:d0:76:84:d2:d4:37:e1:e6:e5:2b:b1:85:
77:bb:1f:d4:b3:23:48:74:9f:c0:21:6b:b2:15:90:f2:83:71:
89:13:08:dd:c2:31:31:17:0f:e7:49:12:d7:d3:33:e0:23:a0:
f2:7c:88:bf:09:1b:df:e6:1b:e6:36:23:bd:2a:5d:1b:d8:29:
50:7f:c7:0b:8c:c0:5a:12:0c:00:2d:fd:1c:1b:48:c8:e7:27:
4b:85:28:19:0b:a9:69:37:26:35:e8:b7:73:4c:88:d4:f3:52:
5b:54:25:b6:b0:c7:31:cb:20:74:c4:81:96:0e:45:82:2b:a7:
b1:6e:bb:84:43:c6:fd:99:22:3a:09:e2:87:36:b8:c1:f0:96:
20:77:85:d4:cd:6d:47:81:8f:a7:29:23:ee:b0:4f:bd:97:99:
27:bf:c6:93:9d:48:d6:b7:66:18:ea:88:28:65:f8:2a:cd:57:
ce:0a:f9:d2:e2:d6:79:1c:4a:8d:34:43:8e:d3:56:81:8b:09:
58:7d:56:73:ad:2f:41:89:0b:10:ae:26:46:89:f0:b7:5c:ca:
e5:23:31:c0:36:8d:7c:97:57:fb:5e:94:1d:cc:e8:a7:2c:d9:
f2:58:0b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:13:26 2025 by rpki-client