Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/aa9d76-305d-4ad7-9cb6-4c068ee8897f/1/WZyb6F-CikOPCNH1CvrCUz0qbsI.mft
File: WZyb6F-CikOPCNH1CvrCUz0qbsI.mft (raw, json)
Hash identifier: sANTD4GbqVSqStkPjgG7e2zA6eBTB2rAC2kC38aouLo=
Subject key identifier: AA:BB:76:FA:22:27:6B:68:59:B2:FD:F1:96:09:59:FE:47:0D:01:02
Authority key identifier: 59:9C:9B:E8:5F:82:8A:43:8F:08:D1:F5:0A:FA:C2:53:3D:2A:6E:C2
Certificate issuer: /CN=599c9be85f828a438f08d1f50afac2533d2a6ec2
Certificate serial: 0197B70EBB358CE8751862F59861EF8C7EE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZyb6F-CikOPCNH1CvrCUz0qbsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/aa9d76-305d-4ad7-9cb6-4c068ee8897f/1/WZyb6F-CikOPCNH1CvrCUz0qbsI.mft
Manifest number: 0585
Signing time: Sat 28 Jun 2025 15:01:25 +0000
Manifest this update: Sat 28 Jun 2025 15:01:25 +0000
Manifest next update: Sun 29 Jun 2025 15:01:25 +0000
Files and hashes: 1: WZyb6F-CikOPCNH1CvrCUz0qbsI.crl (hash: gcn9OJpvdcZxOY0X9mDIELMVWo/UM+Qu8U7LdL2hijc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/aa9d76-305d-4ad7-9cb6-4c068ee8897f/1/WZyb6F-CikOPCNH1CvrCUz0qbsI.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/aa9d76-305d-4ad7-9cb6-4c068ee8897f/1/WZyb6F-CikOPCNH1CvrCUz0qbsI.mft
rsync://rpki.ripe.net/repository/DEFAULT/WZyb6F-CikOPCNH1CvrCUz0qbsI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:bb:35:8c:e8:75:18:62:f5:98:61:ef:8c:7e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=599c9be85f828a438f08d1f50afac2533d2a6ec2
Validity
Not Before: Jun 28 15:01:25 2025 GMT
Not After : Jun 29 15:01:25 2025 GMT
Subject: CN=aabb76fa22276b6859b2fdf1960959fe470d0102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4d:28:4a:de:01:68:6e:bc:1e:9e:d6:23:c4:
2c:69:9f:43:33:e1:dc:f0:b2:6a:60:d6:43:ef:da:
13:64:2a:20:9c:0c:64:6b:09:90:3a:92:65:5e:ae:
6a:94:53:31:bc:60:4d:f6:23:a4:35:47:ef:c7:84:
e2:5e:5f:2d:9f:cb:d2:f3:73:39:8e:34:c7:c9:14:
29:0b:01:b6:18:9e:43:b5:f9:04:9e:57:20:6d:77:
dd:fa:50:40:b1:87:f7:f0:08:ce:7f:27:4b:bc:62:
f1:43:84:a8:4e:cc:21:8f:64:ba:9e:53:cd:a1:c2:
61:cf:7b:c7:ae:a2:ce:56:90:6f:fa:e3:c4:31:91:
78:c4:04:b8:f3:7b:82:78:b2:cc:14:6b:e7:ce:5a:
2f:7f:72:21:64:04:b2:0b:8c:26:f0:73:6d:0a:6a:
d7:b0:d5:aa:d3:f0:4b:5a:20:77:a0:2a:59:54:ae:
d6:8a:3a:f7:02:5c:e8:3c:b5:32:a1:ac:a9:5d:d5:
ad:6d:fb:28:a2:ce:ba:a8:9e:5c:3e:26:8c:6d:d5:
8b:c2:0d:43:c8:e8:25:c5:e2:d9:88:79:2d:62:cc:
60:37:0a:76:c7:23:09:b7:43:56:83:20:97:4c:ba:
a0:cf:0e:0f:bb:37:b6:2c:3e:9d:bb:8d:68:d6:94:
d8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:BB:76:FA:22:27:6B:68:59:B2:FD:F1:96:09:59:FE:47:0D:01:02
X509v3 Authority Key Identifier:
keyid:59:9C:9B:E8:5F:82:8A:43:8F:08:D1:F5:0A:FA:C2:53:3D:2A:6E:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZyb6F-CikOPCNH1CvrCUz0qbsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/aa9d76-305d-4ad7-9cb6-4c068ee8897f/1/WZyb6F-CikOPCNH1CvrCUz0qbsI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/aa9d76-305d-4ad7-9cb6-4c068ee8897f/1/WZyb6F-CikOPCNH1CvrCUz0qbsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:f8:56:07:3c:c2:bf:91:75:68:58:71:73:9c:d1:85:3a:18:
70:b1:69:db:20:81:66:62:e0:77:90:e8:df:af:ab:17:6e:4e:
4c:dc:b0:57:c3:74:23:58:8e:36:2d:6d:1d:44:f5:d6:cd:30:
d5:ba:a7:45:0f:e1:90:f3:ce:4c:9b:fd:23:dd:3a:d5:62:5d:
d0:21:36:27:63:a9:b1:26:7d:41:84:92:cc:0e:3f:03:98:ab:
5a:57:28:29:b6:06:72:59:90:c9:1e:ea:17:8f:1c:e9:dd:0e:
0d:96:88:54:83:70:4f:63:c5:7b:bd:c3:2e:f9:8a:59:e3:59:
c2:1f:d0:20:9d:e6:53:05:f9:2e:82:60:a3:21:b8:aa:f2:5d:
e4:3b:48:a9:a7:cf:11:0a:e3:56:fe:80:3c:15:55:36:eb:dc:
12:27:e1:04:37:8b:85:83:3e:ab:02:72:ee:92:04:64:1d:43:
f1:5c:ef:e7:08:f8:50:ba:d7:ee:53:d8:d4:26:8b:51:e3:1a:
f1:b3:18:96:dc:c6:9c:e1:c4:18:1c:f2:44:c2:e9:24:ea:fc:
ab:df:24:a0:bb:f1:e8:1c:7f:0b:5a:7c:67:a5:2b:51:30:de:
f2:3a:ae:4e:07:e9:1e:68:d8:04:a9:87:4d:96:b3:1b:90:84:
59:c0:2c:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:53:03 2025 by rpki-client