Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
File: AaVsQu18uWPyhVA87AYG1g0Ks4c.mft (raw, json)
Hash identifier: ZX7u+hgQlNj+KJZ8iXelMSFUKGpWMBt00plVvYSk9p0=
Subject key identifier: 33:7C:15:5E:34:62:43:3C:6A:85:92:C8:F7:25:56:6C:1B:8A:80:6D
Authority key identifier: 01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
Certificate issuer: /CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Certificate serial: 0197B6A10B39B435339187DFC5F8F956AA6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
Manifest number: 0E76
Signing time: Sat 28 Jun 2025 13:01:36 +0000
Manifest this update: Sat 28 Jun 2025 13:01:36 +0000
Manifest next update: Sun 29 Jun 2025 13:01:36 +0000
Files and hashes: 1: AaVsQu18uWPyhVA87AYG1g0Ks4c.crl (hash: QJSTe+zQD/FbfC/Ll2V1xYfaIX8/zE/dc6WG5bZYM0U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:0b:39:b4:35:33:91:87:df:c5:f8:f9:56:aa:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Validity
Not Before: Jun 28 13:01:36 2025 GMT
Not After : Jun 29 13:01:36 2025 GMT
Subject: CN=337c155e3462433c6a8592c8f725566c1b8a806d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:dc:d6:f5:72:eb:5f:fe:c5:fc:a0:c0:f9:bc:
78:c1:58:50:df:d5:b2:e7:6f:3b:67:e0:50:3e:a8:
80:4d:b1:85:1c:8e:83:8e:48:e2:85:97:06:35:cc:
3e:eb:79:8c:bb:88:d2:5f:12:05:b4:1e:00:37:5e:
7e:55:b9:83:be:5c:fc:28:82:63:87:f3:f5:f4:71:
d9:a5:32:00:4e:8f:ec:0f:08:27:1f:f1:74:33:ce:
48:8c:91:7b:53:18:58:82:36:4f:41:a5:d2:c6:ae:
ee:e8:0f:cb:37:03:fb:e2:33:c2:c3:45:b1:a8:30:
74:ad:13:51:32:07:5c:97:fc:15:85:6b:09:a4:a1:
35:24:ff:70:7d:ad:bd:d1:93:62:0a:7f:c2:ab:65:
60:02:69:b0:b1:f0:38:ce:8a:4e:59:df:d4:e4:93:
86:f4:fe:40:bb:6a:c5:ef:36:f4:ba:db:de:83:48:
e8:25:3b:c5:12:16:7a:19:c7:88:5e:c1:3f:36:0b:
76:bd:f6:9e:f2:39:4f:39:74:71:49:96:56:e0:18:
f0:7a:8f:1d:74:d7:9b:47:a4:c4:b4:c1:bc:1e:ba:
d2:72:c8:d6:2a:c7:98:f4:ce:66:df:69:a9:3e:21:
4d:21:75:b0:a3:33:94:64:05:70:69:e0:26:d7:e9:
84:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:7C:15:5E:34:62:43:3C:6A:85:92:C8:F7:25:56:6C:1B:8A:80:6D
X509v3 Authority Key Identifier:
keyid:01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:8f:84:e9:fb:5e:ed:0d:6f:c1:03:ac:eb:19:fb:be:d8:20:
c5:7a:fc:91:d6:ee:67:52:4a:4d:da:f6:5b:c8:ce:62:d5:56:
e2:08:eb:9f:c3:e0:20:6d:9f:4b:39:8e:8e:b5:10:7d:d7:c1:
36:d4:48:06:40:d0:b1:f3:f4:d8:6e:71:fe:2c:11:7e:06:8c:
c8:c4:87:e6:14:c7:71:13:a6:5d:4b:3f:b0:64:76:9e:df:9e:
28:f5:28:32:fb:ea:9e:d3:9f:bc:f1:89:70:fe:78:f1:0d:18:
93:61:71:98:90:0a:80:fd:bb:b9:a2:97:40:65:a2:9a:48:14:
52:11:d3:5a:0c:de:99:ef:21:98:39:12:d2:59:92:5d:97:e6:
cc:e9:a5:dd:27:69:2e:05:06:b5:67:29:41:19:05:00:5b:da:
f9:00:b1:69:9d:29:5e:ac:67:5a:39:c3:81:76:f0:b6:60:58:
63:29:b7:47:d7:27:7c:87:28:d1:d9:2b:f0:8e:fc:32:39:bb:
78:cf:d3:e7:f2:00:93:dc:4c:73:10:b5:80:32:e8:ae:70:69:
20:ae:11:b1:bb:82:80:96:45:9a:5f:c9:fe:7f:85:2f:b5:7a:
80:7f:1e:3d:f6:fc:f4:ce:41:c6:33:e0:e2:91:73:60:06:86:
a5:ec:da:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:24:28 2025 by rpki-client