Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
File: aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft (raw, json)
Hash identifier: gefVERD+l8OSC5VoJWOGJOA80eQCfIINJhucu+pgjkw=
Subject key identifier: 50:EC:31:7E:5A:EC:F3:D3:FC:BB:F9:CE:E6:EB:D7:15:D5:08:75:18
Authority key identifier: 68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
Certificate issuer: /CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Certificate serial: 0197B6A0587942860FAA7123A75F6421FB67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
Manifest number: 1548
Signing time: Sat 28 Jun 2025 13:00:51 +0000
Manifest this update: Sat 28 Jun 2025 13:00:51 +0000
Manifest next update: Sun 29 Jun 2025 13:00:51 +0000
Files and hashes: 1: aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl (hash: 4sKPlAPUvL+Vn9YHfJvM5yaLn1zsdwzv7G6Oee3gkAk=)
2: c3cfCpPele1fDi8UyS3_TO9IOZU.roa (hash: x4G7KBYVMCONibc2Rol9WiF29BGQsdbC/SUMmPlKdpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:58:79:42:86:0f:aa:71:23:a7:5f:64:21:fb:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Validity
Not Before: Jun 28 13:00:51 2025 GMT
Not After : Jun 29 13:00:51 2025 GMT
Subject: CN=50ec317e5aecf3d3fcbbf9cee6ebd715d5087518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a4:68:24:d9:0a:24:d1:49:d2:8e:ec:0a:40:
a7:29:17:79:5f:e4:6d:6b:6b:f1:53:ad:46:03:a4:
b2:a0:d0:c4:b3:12:a0:ea:f5:b5:96:10:26:b0:ea:
ac:fb:d5:79:ee:5b:06:a1:62:8d:20:4c:90:f7:61:
29:c3:4b:d9:ff:7a:8f:a3:6e:1d:2f:11:79:06:88:
a2:5f:31:a9:98:65:03:03:61:87:c8:82:0f:f7:a1:
b1:79:22:c7:5d:cb:ba:f2:36:37:2f:32:9e:77:0c:
60:40:ec:05:ea:a0:e3:41:d9:cb:d4:85:90:e4:ad:
cd:53:32:d2:a6:63:c5:fe:40:02:25:a8:91:13:c5:
8a:75:3d:86:15:db:4c:1f:04:fc:f5:ff:91:47:b5:
63:6b:ac:fc:dd:eb:f6:7e:8d:ff:f5:80:6c:ec:5a:
a2:a9:72:f2:24:e8:da:0b:98:ce:d2:4b:4a:89:9d:
43:35:52:66:6d:29:8c:74:1a:6f:7e:e6:b9:3c:44:
79:ed:f5:2e:33:3e:ec:2e:18:7f:52:f6:0d:95:23:
86:50:cb:c2:e5:cb:71:2d:94:ed:c5:f6:7b:c6:81:
5f:5b:1e:53:51:6a:23:4b:80:97:12:70:f5:3d:a6:
c1:fc:70:35:4f:08:9e:49:91:69:98:9d:e3:69:ba:
3d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:EC:31:7E:5A:EC:F3:D3:FC:BB:F9:CE:E6:EB:D7:15:D5:08:75:18
X509v3 Authority Key Identifier:
keyid:68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:84:46:aa:4d:8e:db:fe:dd:59:78:a1:a7:69:60:4a:dd:40:
24:c8:31:50:9b:d4:2c:e8:3e:41:34:c2:4f:6a:bf:13:82:46:
5f:24:b3:28:8e:ad:53:cb:b1:25:0d:c5:4c:18:d0:d0:cf:a4:
43:40:7c:e1:f4:4a:1e:df:4f:41:5c:ad:fd:df:77:68:0d:78:
6d:9b:29:1f:09:cc:b0:ac:80:f4:95:ed:6f:7c:1b:1b:e7:11:
d7:34:cc:c9:a5:76:60:f8:bf:7e:8e:f9:33:23:ec:02:a0:e8:
e1:f5:88:c6:7b:ed:42:65:3a:6d:5a:bc:55:7d:43:7b:cf:04:
e2:ff:23:a0:e2:d1:3b:2f:eb:46:00:f5:40:79:4b:84:5f:fd:
eb:89:61:33:3e:3b:18:0e:73:2f:66:eb:99:8d:a3:55:61:99:
21:69:ec:6b:24:d3:29:61:00:64:31:d5:a3:7a:d0:c0:5e:fd:
a1:50:11:f8:32:a3:b0:39:8f:5c:d6:9b:43:ee:29:7b:bb:af:
42:59:88:e9:3c:a9:4f:b3:99:76:26:41:43:80:31:12:a2:e1:
d2:92:6f:1d:fc:7b:16:4d:2e:54:89:e3:c5:4c:0d:14:30:05:
be:41:3a:0c:d2:f0:7f:df:99:be:2a:31:6b:95:d8:1b:99:96:
26:dc:90:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:01:33 2025 by rpki-client