Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json)
Hash identifier: lLorWfySOZxA8mEGRV4o+xYWbvfNME/8/b1bMNB37F8=
Subject key identifier: 2A:0C:A3:42:5C:08:81:3C:DA:D2:01:49:03:2C:F9:CF:7B:BE:BB:76
Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d
Certificate serial: 0197B6D7B1913E849A76EBC03BF0AE87EBBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
Manifest number: 078E
Signing time: Sat 28 Jun 2025 14:01:18 +0000
Manifest this update: Sat 28 Jun 2025 14:01:18 +0000
Manifest next update: Sun 29 Jun 2025 14:01:18 +0000
Files and hashes: 1: aHJU3TtGM9M9L2c33hiqaeAD6-M.roa (hash: Jnk6c3GJ5E4y6b+inckEyRoPVADxMl1TsyYlid/Y0Y0=)
2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: eEsy3p65KyUmufmZTL7ONmFrxNq6gd7EreMKlyYOvfU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:b1:91:3e:84:9a:76:eb:c0:3b:f0:ae:87:eb:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d
Validity
Not Before: Jun 28 14:01:18 2025 GMT
Not After : Jun 29 14:01:18 2025 GMT
Subject: CN=2a0ca3425c08813cdad20149032cf9cf7bbebb76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0b:a1:3a:8f:bf:34:80:f0:4c:51:9c:38:0d:
ca:76:7c:f5:14:57:3e:4e:b7:04:d9:f6:3a:0e:c5:
0e:26:64:96:5f:2c:d0:1f:4a:23:83:8e:08:14:ba:
54:0f:21:31:4a:d1:39:c1:81:76:77:c6:5b:f8:34:
da:dd:58:08:57:da:21:23:98:b9:e1:3f:1d:6a:26:
58:dd:fe:8f:02:67:d1:2f:04:0c:52:b6:e2:93:bc:
19:22:11:f2:83:89:ac:ea:e7:8e:d3:ec:a4:51:c8:
9f:04:d9:76:88:a4:0c:44:f8:49:7e:53:55:75:1f:
2b:c0:9d:bf:22:05:01:90:4f:2e:b5:98:68:74:24:
8c:81:2c:cf:a1:05:00:b6:d7:94:d8:47:3a:7e:66:
e6:08:eb:40:f3:fd:96:2a:a6:03:5b:27:96:60:a5:
1b:d5:ae:b3:17:2f:f6:a1:df:a2:ea:a7:78:ed:d0:
6c:a0:53:5f:a4:39:a0:94:6d:71:80:d2:0b:87:7b:
46:82:8c:4e:9c:10:da:3a:4b:39:4b:d6:1c:c2:bb:
a5:68:b8:b6:ad:92:ca:9a:20:b5:5a:fc:91:0c:a0:
c0:42:43:70:42:6e:55:cb:7a:77:16:f1:59:82:85:
15:48:69:d0:1a:a1:f9:62:64:42:a5:6c:80:c7:4d:
99:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:0C:A3:42:5C:08:81:3C:DA:D2:01:49:03:2C:F9:CF:7B:BE:BB:76
X509v3 Authority Key Identifier:
keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:2f:a0:c7:c7:33:17:d8:fe:2c:e5:c8:b1:95:53:24:6d:ea:
2f:0c:0f:e3:9f:4c:8b:0f:1e:9d:e1:7f:a3:e6:76:b6:f8:6f:
14:0a:4b:96:a2:01:a5:03:2d:4c:49:ba:15:3d:bb:d3:d1:87:
1f:8b:72:48:96:0c:1d:0d:12:ba:87:94:31:7f:f2:d1:1a:78:
cd:fe:b2:86:56:90:13:a9:31:76:75:6a:79:8d:8c:13:2c:5f:
d2:57:ca:b1:f8:09:8f:57:05:9f:47:89:74:35:e6:be:64:ef:
c7:15:7a:8c:12:e4:93:35:7c:31:8f:a5:f5:2f:91:0f:6c:1d:
ad:4a:3f:48:8f:1a:eb:84:f0:9b:a1:b6:44:ee:94:af:99:7c:
15:7e:7d:fc:b2:23:2e:65:30:80:4c:d8:b4:ef:d2:11:80:3b:
7b:c6:69:25:6e:2b:cc:16:75:2d:38:b9:84:7c:5e:ce:1a:14:
88:1d:91:eb:c3:52:dc:22:89:3a:16:13:b1:d4:3b:df:90:0d:
c8:ab:6b:42:68:9b:49:78:f9:47:06:69:20:a6:23:7b:e3:37:
cf:47:23:7c:a5:74:c2:68:9f:7f:e8:fe:12:d6:36:5f:f7:8f:
d4:55:75:3f:06:82:1f:6e:52:09:ed:af:98:c0:c3:42:a6:28:
22:31:ce:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:00:34 2025 by rpki-client