Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: rTvlXWI0m9wTRIz2LSPX/k9gq3B9v4tAma/UCdG0B18=
Subject key identifier: B6:BA:3C:A5:E5:94:8D:75:BF:02:4A:A5:03:53:CD:7E:31:C0:3F:ED
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 0197B63278AEFDEF0AB7E1E29CCDB590F3CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 11:00:50 +0000
Manifest this update: Sat 28 Jun 2025 11:00:50 +0000
Manifest next update: Sun 29 Jun 2025 11:00:50 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: VHp3BLt61S6WcDrKjPNe0o0vLSwqpo/sG3h228LyDpE=)
2: nJZ2h-CE2RpObbNuUbuQAsAe9wo.roa (hash: XjXLrJ8ZAfMXOtdh84OSK02UeKqf16aa2sgmGiELBao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:78:ae:fd:ef:0a:b7:e1:e2:9c:cd:b5:90:f3:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: Jun 28 11:00:50 2025 GMT
Not After : Jun 29 11:00:50 2025 GMT
Subject: CN=b6ba3ca5e5948d75bf024aa50353cd7e31c03fed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:fc:70:c2:52:4d:d5:be:15:c2:2d:79:55:39:
cc:f8:a8:27:58:c9:d9:c3:e5:94:ec:8f:05:9b:17:
98:7f:13:67:45:8c:5c:30:70:03:4c:f0:9a:be:e2:
0b:cd:4b:66:85:67:e2:e9:ca:70:7d:f0:20:18:55:
a0:07:bd:d5:cd:73:1a:4b:07:8e:64:6d:8c:fa:84:
5a:fc:fd:93:f2:1b:7c:f8:56:5e:95:cf:d0:ec:f4:
7a:ef:75:5b:20:84:e9:2d:db:4a:a9:c9:cb:ee:9d:
34:09:11:dc:2c:ae:96:69:30:77:1d:ac:de:a8:14:
af:3d:fd:e2:e9:67:60:99:89:bc:27:de:29:4a:2f:
cd:0f:a4:ef:43:a5:72:e3:dd:25:0c:54:88:42:ce:
4c:1a:c8:55:54:49:49:8e:61:61:22:04:49:2e:72:
76:62:a8:ae:59:eb:23:24:b2:e0:64:63:d6:61:a3:
02:ec:82:34:c7:bd:b2:85:ea:fc:fa:f5:bc:36:99:
c9:ee:84:e5:74:61:f6:5d:c8:06:78:32:73:13:82:
9e:35:31:cc:55:c6:2e:52:2d:bf:c7:73:c1:1b:c5:
96:70:0f:71:5c:a1:91:e9:87:a1:b8:9d:05:45:a1:
e8:79:c7:e6:0d:2a:3a:8b:d8:c1:26:f4:71:e5:bb:
bc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:BA:3C:A5:E5:94:8D:75:BF:02:4A:A5:03:53:CD:7E:31:C0:3F:ED
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:38:1b:df:09:1f:d9:5b:80:5b:3a:fe:75:be:b7:d5:82:8f:
93:ee:8a:e7:2d:6a:2b:fb:cb:a5:b7:91:69:bc:38:af:7c:8c:
9d:f5:fa:58:6d:83:59:81:0c:12:13:d6:35:2e:aa:04:f4:5e:
01:1d:c1:19:3b:83:02:58:7d:71:c2:82:a0:c3:f6:0c:ab:63:
44:2b:22:a3:30:23:eb:80:34:48:da:2f:23:ce:cd:6a:24:5f:
f7:82:86:40:82:59:15:d8:31:23:6f:56:98:4c:12:86:ce:03:
9e:20:af:1b:e5:c9:1c:c6:f4:26:cd:f9:74:1d:d2:0e:38:7b:
77:13:71:dc:b6:d3:03:41:76:e7:45:42:cb:9d:73:54:dc:24:
31:b6:80:05:a8:4a:57:31:53:40:16:25:74:48:78:78:ff:b5:
23:bf:c6:e1:b4:03:0e:1b:d2:f9:5b:be:d6:0b:05:06:b3:14:
96:66:87:e5:a0:a0:da:b4:c6:d2:62:97:e9:53:de:71:3f:cc:
ff:bb:47:62:47:d9:5b:d7:8d:22:cd:bd:bd:34:8a:57:d7:83:
0a:02:7b:8d:1e:52:e5:8f:03:cf:dd:ab:1a:b9:3d:c9:14:5f:
b0:5f:38:74:d2:7e:dd:7b:d1:ee:0e:57:79:f7:d9:35:4f:d3:
32:a7:e4:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:04:44 2025 by rpki-client