Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
File: ap2Z4esn7Hq76TViechBGkEw_co.mft (raw, json)
Hash identifier: 64ZHO0a1ttbK649QlLvC+KvXlycrCnjLNhZqyd+UFWg=
Subject key identifier: 7C:B2:0E:E8:C5:BE:22:F6:E1:83:3A:EB:EE:F8:96:6D:EC:BB:E9:FB
Authority key identifier: 6A:9D:99:E1:EB:27:EC:7A:BB:E9:35:62:79:C8:41:1A:41:30:FD:CA
Certificate issuer: /CN=6a9d99e1eb27ec7abbe9356279c8411a4130fdca
Certificate serial: 0197B70EB314369B3F370789556FA650A78B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
Manifest number: 0C2B
Signing time: Sat 28 Jun 2025 15:01:23 +0000
Manifest this update: Sat 28 Jun 2025 15:01:23 +0000
Manifest next update: Sun 29 Jun 2025 15:01:23 +0000
Files and hashes: 1: ap2Z4esn7Hq76TViechBGkEw_co.crl (hash: maxw4vVTx3bw1cUKIoksLtr18XBCsKRSPIRmC53o1JY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:b3:14:36:9b:3f:37:07:89:55:6f:a6:50:a7:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a9d99e1eb27ec7abbe9356279c8411a4130fdca
Validity
Not Before: Jun 28 15:01:23 2025 GMT
Not After : Jun 29 15:01:23 2025 GMT
Subject: CN=7cb20ee8c5be22f6e1833aebeef8966decbbe9fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:98:65:15:4b:4c:d7:0c:8f:61:b5:77:bb:1f:
d0:f9:83:74:42:68:8e:1d:7b:84:34:8b:8c:d0:6c:
2c:f6:5a:32:eb:1b:75:4d:07:41:4e:b3:66:58:41:
90:5e:cf:78:2b:66:3d:e8:f4:31:05:6a:ad:e5:05:
8b:3c:fd:64:f8:5b:e1:65:16:ba:5b:58:96:8e:fd:
fb:25:b1:fc:d5:23:ab:b7:ab:d6:7b:d4:ac:85:11:
5c:05:3b:63:96:d7:7c:60:03:37:ee:1e:5f:14:09:
06:96:e8:40:86:3c:5a:c9:10:b5:f3:eb:a9:98:69:
5d:04:86:ef:35:61:2b:a4:e5:12:25:6a:1b:fc:b4:
4e:b9:d1:01:b4:99:4b:42:7b:23:60:3f:0f:ca:62:
aa:f2:b3:98:a2:bd:7b:4f:68:2d:fd:d6:9a:8d:25:
52:f5:b1:b1:0e:22:47:eb:cc:60:1f:1c:80:65:59:
93:6a:3e:4b:24:a9:2e:2f:8f:27:a3:5c:1d:94:78:
36:97:0f:7b:9f:88:b2:4e:38:64:df:a6:a1:35:87:
2f:02:df:4f:55:84:13:e8:48:71:69:74:e8:d6:a6:
fb:c0:f2:ea:62:02:4d:18:4e:70:b7:f7:79:6f:72:
34:c7:77:c7:34:47:78:cc:c5:b9:b5:78:2d:fd:69:
59:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:B2:0E:E8:C5:BE:22:F6:E1:83:3A:EB:EE:F8:96:6D:EC:BB:E9:FB
X509v3 Authority Key Identifier:
keyid:6A:9D:99:E1:EB:27:EC:7A:BB:E9:35:62:79:C8:41:1A:41:30:FD:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:a6:d4:5d:f7:8d:9d:88:98:cc:83:36:59:3c:0f:8c:ff:9f:
4f:15:0a:b7:98:46:96:6e:a1:6a:4c:33:0e:fe:b5:79:cc:22:
c9:cb:f9:cf:c1:0a:31:18:2b:2b:3d:f6:9e:56:3e:12:f7:99:
65:73:ef:70:19:34:72:1f:ed:fa:c5:60:cd:ef:8b:5b:ca:c4:
5d:16:1c:9a:fd:43:d1:8b:3a:c2:ab:10:44:68:54:f1:05:29:
ce:3d:68:c9:ba:59:cf:27:50:92:03:56:cf:f3:5f:24:03:b8:
62:dc:c8:64:6d:53:33:e6:ec:87:43:61:38:35:ad:4e:1c:4c:
31:cf:15:9f:50:fa:9c:e0:27:83:1c:6d:e6:ed:a4:6c:6f:b6:
eb:d6:be:48:aa:ad:16:75:02:ba:0e:46:73:8f:aa:0c:e2:ac:
b6:d2:b5:d9:4b:91:89:28:64:87:17:fe:43:6d:34:58:bd:83:
8b:02:cf:95:7d:59:a9:0c:32:49:9d:f9:5e:c3:55:b7:a5:47:
4a:34:65:6b:8e:6e:95:4e:19:4f:d9:e8:6f:7e:10:72:b0:28:
7c:ad:ca:48:0c:7c:54:cc:72:df:ae:fa:d8:df:52:d5:96:b3:
11:67:ed:86:4f:3d:62:70:33:7d:80:bf:75:b5:45:ab:77:e6:
5f:08:3c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:21:21 2025 by rpki-client