Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: lDkLEF4JG9/Y3wxQtcd12gQw78ev2BYttH48o/f6v1E=
Subject key identifier: 9C:4D:7C:31:AD:E2:1B:77:E5:4E:63:96:B7:B1:3F:F3:3A:07:E6:6A
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 0197B88F5B0D92998ACAC4177956F6CF13E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 22:01:32 +0000
Manifest this update: Sat 28 Jun 2025 22:01:32 +0000
Manifest next update: Sun 29 Jun 2025 22:01:32 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: 3Xa0PD/wak/qQBjY762YqmtJfoLHu/ci569Sxj7x4gw=)
2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:5b:0d:92:99:8a:ca:c4:17:79:56:f6:cf:13:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Jun 28 22:01:32 2025 GMT
Not After : Jun 29 22:01:32 2025 GMT
Subject: CN=9c4d7c31ade21b77e54e6396b7b13ff33a07e66a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b8:28:be:71:2f:fb:c8:2c:8f:1e:8e:36:4c:
95:4e:8a:f3:4b:db:a8:4e:33:1d:ff:72:ea:a9:68:
bc:26:a4:1d:87:cf:4c:bc:60:ed:d8:06:d6:cc:ae:
d8:0e:8d:18:ec:ed:8f:5c:8d:83:3d:e6:dd:a9:f7:
6b:c9:b3:9b:d0:15:54:a4:cc:c3:38:de:55:4b:c8:
48:3c:3d:a4:bb:6e:bc:52:ee:f8:f6:02:ac:4c:67:
89:11:5e:a4:74:d6:2c:fa:34:47:54:46:22:c8:85:
fa:35:f8:6f:bb:67:ba:be:df:cf:0a:e0:5e:3c:59:
7b:18:0a:95:95:2d:6e:e7:b8:87:73:65:7c:1a:17:
b4:33:fb:04:ec:db:26:a8:ff:c7:6c:b3:cc:ce:43:
92:f3:ec:b6:9a:76:b3:d9:44:8e:4d:be:27:9f:36:
5c:14:34:d0:a0:19:0a:b8:30:b5:07:33:68:14:e2:
a7:ae:f1:19:5d:a5:5b:1f:13:80:1e:65:4c:ae:08:
a7:2b:e5:b9:7a:e8:29:fa:6e:81:c1:cf:3c:0e:13:
3d:22:31:b7:c7:e8:51:74:3b:40:be:f8:d5:b9:aa:
f0:2b:85:2e:cc:e2:7d:d0:a7:be:7c:04:1b:cd:88:
07:bc:73:e3:85:3c:07:1b:2f:a9:94:ad:c4:f0:05:
1c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:4D:7C:31:AD:E2:1B:77:E5:4E:63:96:B7:B1:3F:F3:3A:07:E6:6A
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:d0:34:97:a0:2f:c6:dc:10:a3:b2:36:e1:44:da:1d:39:20:
16:18:7f:13:dd:39:e7:a4:45:e6:69:c8:9f:7b:ed:4a:ed:87:
c1:14:32:57:93:b4:da:62:af:55:94:13:ab:c3:83:e1:b8:01:
6f:c0:b4:40:39:9b:fa:da:3c:5d:1c:51:a3:86:54:0c:32:9c:
ef:59:3d:ae:e4:fe:a4:56:f1:2d:3f:b4:b5:2a:04:f3:e5:4b:
56:c4:7d:6a:0d:6d:77:6d:c6:fc:72:82:26:07:81:55:df:04:
f7:ae:65:2e:9c:2e:55:0a:e4:e0:dc:27:e0:05:a2:47:c2:0e:
91:e9:45:be:86:38:e3:f0:69:b0:1d:ca:42:12:6b:7e:e0:71:
94:dd:b4:5a:72:35:ce:8d:1a:f1:9a:3f:5e:89:65:fb:bf:c9:
a8:f2:74:07:60:6c:d7:11:6b:8f:f2:f4:80:64:77:d1:9f:cb:
20:4b:dd:62:ae:1b:23:9f:71:ad:82:9e:cc:e8:ba:90:9d:0d:
e6:7b:71:7a:6c:e6:2a:a8:9b:c2:1e:6e:c4:9b:a2:b5:9b:ae:
c9:e3:88:cb:17:6e:7d:4c:21:0d:0b:de:2c:7b:24:00:4f:53:
ef:54:e3:6c:77:2d:c1:e1:3a:5d:93:87:b5:d6:b5:fd:50:89:
6d:18:4f:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:30:11 2025 by rpki-client