Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft
File: AUI61NYpsvgot58ArEA4jje44lI.mft (raw, json)
Hash identifier: 6safKIS/nNZwoXabU2d5swXXX31pSQ4tudC5uNi1GSg=
Subject key identifier: 90:4F:CF:C8:2A:3F:AE:66:CE:98:2A:94:81:AF:5C:B7:67:87:6F:1E
Authority key identifier: 01:42:3A:D4:D6:29:B2:F8:28:B7:9F:00:AC:40:38:8E:37:B8:E2:52
Certificate issuer: /CN=01423ad4d629b2f828b79f00ac40388e37b8e252
Certificate serial: 0197B5C49E6ADF8D42AE8F48905ED2144C8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft
Manifest number: 11E9
Signing time: Sat 28 Jun 2025 09:00:50 +0000
Manifest this update: Sat 28 Jun 2025 09:00:50 +0000
Manifest next update: Sun 29 Jun 2025 09:00:50 +0000
Files and hashes: 1: AUI61NYpsvgot58ArEA4jje44lI.crl (hash: hNApywvjdaMv/+AHM66eiOnqEHogkrRv5TlaAbO3f8I=)
2: ibDNoVPt_SWuF1TTYGcbR_ptYMU.roa (hash: ul6C7Hw2mOMrIR7JJ3pVvWUBrEsSVBHfGtaoivQYtXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:9e:6a:df:8d:42:ae:8f:48:90:5e:d2:14:4c:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01423ad4d629b2f828b79f00ac40388e37b8e252
Validity
Not Before: Jun 28 09:00:50 2025 GMT
Not After : Jun 29 09:00:50 2025 GMT
Subject: CN=904fcfc82a3fae66ce982a9481af5cb767876f1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:70:c2:53:e4:72:05:d9:d3:96:8b:57:32:a7:
38:e7:2a:7d:5e:13:f8:28:16:a3:0d:e5:16:0b:b0:
d7:f7:ab:1b:05:e8:bc:f3:3a:6c:c1:b9:e2:e0:4f:
c1:ca:e9:fa:b1:a8:b3:2a:67:aa:69:27:f6:8d:ad:
16:ba:17:9f:a1:8b:7b:79:2f:b6:9a:ae:af:e9:17:
06:bb:db:62:39:27:5e:f1:78:4a:78:74:5e:27:bf:
0c:e3:fd:22:ac:15:bc:4a:72:ce:38:61:c4:31:56:
29:9d:dd:07:a6:fa:3e:f1:9f:cd:0e:95:ce:6b:4d:
eb:76:80:30:51:66:9d:9e:43:06:a7:6c:79:19:f4:
4b:a6:e1:d4:0a:84:22:44:34:1e:0a:7d:06:60:fa:
e0:26:65:65:1f:af:c2:96:d9:d6:05:aa:1e:a8:c9:
69:84:79:ac:8a:7c:31:80:ed:02:51:9c:4a:d7:55:
ac:20:b5:df:09:3d:16:24:4d:4b:cb:a0:d0:8a:14:
e7:48:bc:47:34:99:fa:e2:f4:50:1f:12:40:21:dd:
30:f5:b3:3f:08:e1:de:ce:e5:59:73:4b:e5:5d:ae:
da:0e:20:5f:c0:b3:c7:de:73:e9:f5:9a:1d:76:08:
7f:25:7d:84:58:25:62:0a:82:22:43:63:d8:99:88:
d8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:4F:CF:C8:2A:3F:AE:66:CE:98:2A:94:81:AF:5C:B7:67:87:6F:1E
X509v3 Authority Key Identifier:
keyid:01:42:3A:D4:D6:29:B2:F8:28:B7:9F:00:AC:40:38:8E:37:B8:E2:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:73:dd:93:c7:3c:e3:be:ee:5c:dc:78:6a:1d:cb:7f:c5:d5:
4b:46:85:cb:dd:18:73:16:6b:56:a4:87:45:59:b2:1b:89:a7:
76:0b:5e:80:60:1e:5d:26:b9:b8:5b:05:13:ac:7d:c9:c9:97:
79:ea:7c:c9:7f:57:5d:85:a0:03:16:be:ec:ac:1c:0a:c9:3c:
f3:7e:a8:68:6b:e5:11:a0:fb:4d:fa:b8:63:22:15:73:38:28:
38:62:10:bf:9f:22:a0:3c:8a:cc:e4:57:84:fb:df:53:93:f7:
e2:18:87:22:8e:8c:5a:00:8a:98:5c:97:12:a4:9b:73:b4:13:
63:a8:60:a2:4c:c1:30:0b:fb:28:84:6f:ab:30:59:5d:66:1d:
d4:dd:ec:ab:a5:a7:4a:e4:79:5a:09:ec:3f:7c:1e:01:17:07:
af:aa:e5:b4:73:75:0a:c9:9f:69:fb:f6:8a:cf:63:89:d1:58:
53:fa:9a:36:ae:3e:ef:58:01:e7:ab:03:50:9d:3a:1c:7e:5d:
91:71:50:5a:9f:26:52:c3:2e:0d:b1:e6:91:cf:e6:2a:2a:a5:
4b:24:96:40:cb:f1:f0:b4:90:5a:a3:4c:ab:c0:60:b3:e4:d6:
0e:6a:32:64:10:d0:2a:58:cf:28:1c:03:50:2b:ef:23:82:ef:
17:7d:01:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:31:27 2025 by rpki-client