Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: s8mjapgUANa6TYrgQ+Sop6KvtRW3u3wBwGd5EdTSGQ8=
Subject key identifier: B7:56:A4:2E:A9:59:A3:E5:A3:39:C2:14:BD:54:79:91:D2:FE:13:33
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 0197B6A127CF69CC731F7CED5C739719A1BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 13:01:44 +0000
Manifest this update: Sat 28 Jun 2025 13:01:44 +0000
Manifest next update: Sun 29 Jun 2025 13:01:44 +0000
Files and hashes: 1: K-gQWrDorOWk95T1Ck9YnvOvyOw.roa (hash: M7ISU7dx2mACRrVyXnpQ2vx1ALS4joyLkkEwNFtNto0=)
2: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: TtpUzsjm7gLuwKSxVsR9Mwk6iXYqZDkkIeuRkhLe7C4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:27:cf:69:cc:73:1f:7c:ed:5c:73:97:19:a1:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Jun 28 13:01:44 2025 GMT
Not After : Jun 29 13:01:44 2025 GMT
Subject: CN=b756a42ea959a3e5a339c214bd547991d2fe1333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d5:db:f4:41:e1:17:79:d8:5d:ee:bc:b0:0b:
72:78:6a:30:d3:6b:3b:30:27:60:31:03:3b:29:da:
41:4e:f9:82:95:54:db:b4:68:1f:4b:9a:5d:de:30:
98:58:57:f1:67:9b:aa:f8:ae:3f:37:fc:de:a0:bb:
c5:8d:aa:ed:8d:e4:a6:ac:e8:09:cf:19:ed:2e:65:
b2:07:e8:45:21:14:fe:f0:2e:37:a8:32:8a:9e:73:
2a:0b:f6:16:5b:6d:40:ba:7a:d3:de:81:e2:72:8d:
2e:ed:2e:45:61:bb:b1:07:36:5c:ba:18:a3:26:ad:
4e:af:fa:a4:30:d5:97:e6:6c:7f:18:94:f3:0f:79:
e5:26:f1:f1:a9:d0:9b:d7:eb:1e:5e:a2:83:c0:c1:
ca:c2:c6:44:e8:02:b8:5d:fa:0b:27:63:82:70:7d:
6c:a2:f4:88:69:87:78:89:fd:24:04:44:48:fe:87:
30:ae:2e:d4:1d:de:bc:03:2b:87:f6:72:5c:11:ed:
aa:1c:ff:78:e0:da:14:9a:0a:93:2b:b7:f7:61:d3:
35:b6:01:50:ca:a7:d3:8f:ad:91:ac:97:3c:1d:3d:
f8:f2:ec:92:54:c4:00:11:c1:1a:55:87:84:59:43:
ba:81:9c:47:30:14:ec:11:81:38:b9:28:c7:60:57:
35:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:56:A4:2E:A9:59:A3:E5:A3:39:C2:14:BD:54:79:91:D2:FE:13:33
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:c4:42:60:09:31:47:32:58:65:5e:b5:23:00:c0:a4:8c:d1:
7d:b3:d8:0e:5e:9b:c6:2d:fa:4e:fb:c4:b8:39:0e:8b:6c:0e:
a6:1a:bc:2b:a6:d7:57:32:91:76:ef:31:48:f4:2c:9f:c5:57:
57:73:9b:28:52:76:9c:1e:c3:64:f7:be:e2:24:f0:be:6f:8e:
dd:ab:7c:25:cd:ff:82:a4:88:e1:aa:d4:ca:3b:14:21:5a:99:
f6:c8:48:de:b1:76:75:90:6b:50:2e:78:35:34:bd:a9:e6:e8:
38:d5:e4:a3:55:35:14:32:2b:49:e0:25:05:4c:7e:ac:4b:90:
64:7f:93:43:02:44:9d:02:ef:d1:37:a3:10:5d:b3:7c:36:2a:
a6:0c:3b:2e:92:7f:89:b6:26:d7:18:22:15:a3:34:b9:5d:7a:
9c:83:9d:14:1d:03:18:ff:4e:fb:49:08:b1:a2:a5:ba:cf:1d:
f2:3b:c7:fe:d5:89:62:cd:8f:25:c5:b4:40:41:5a:51:48:12:
24:b5:fc:ec:1c:eb:b7:c8:4e:c0:25:e9:fd:ef:9e:89:f7:f3:
3b:79:8e:28:fb:26:e8:b6:e6:35:4b:12:60:97:f1:db:1d:67:
fd:a7:bf:b6:d4:c7:72:88:4b:d2:10:75:fe:b8:03:cc:66:93:
d1:42:79:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:26:09 2025 by rpki-client