Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
File: aHyL8iKia_HJxmOMw1bSg1UC8tY.mft (raw, json)
Hash identifier: /ygKWKub0FRCy+IiucjaCtzPmVaf5TmBfkeNRtObhKs=
Subject key identifier: 8E:58:A7:01:8A:96:5E:41:55:7B:FF:7E:39:38:47:B3:D9:BD:C7:3B
Authority key identifier: 68:7C:8B:F2:22:A2:6B:F1:C9:C6:63:8C:C3:56:D2:83:55:02:F2:D6
Certificate issuer: /CN=687c8bf222a26bf1c9c6638cc356d2835502f2d6
Certificate serial: 0197B88FC32CA60B0CB9CF5F4C3828BE78CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
Manifest number: 06F6
Signing time: Sat 28 Jun 2025 22:01:58 +0000
Manifest this update: Sat 28 Jun 2025 22:01:58 +0000
Manifest next update: Sun 29 Jun 2025 22:01:58 +0000
Files and hashes: 1: aHyL8iKia_HJxmOMw1bSg1UC8tY.crl (hash: 5P0Y6zOiOu4drQDw+QVRBaqrHNTAw+DkDsPIXLPlbaQ=)
2: szxe0DPYsGTMI_tgKM1yaWgLDtI.roa (hash: fjZgmmGMINi/iYDucRgC4NEVBx45QTUkAnBaw6M5XK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:c3:2c:a6:0b:0c:b9:cf:5f:4c:38:28:be:78:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687c8bf222a26bf1c9c6638cc356d2835502f2d6
Validity
Not Before: Jun 28 22:01:58 2025 GMT
Not After : Jun 29 22:01:58 2025 GMT
Subject: CN=8e58a7018a965e41557bff7e393847b3d9bdc73b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bf:eb:5e:8d:41:f5:f6:cf:da:f8:ad:26:69:
c5:d5:5d:95:78:3b:d8:bd:81:d5:9c:d4:5c:ad:eb:
99:30:01:f3:f8:80:96:4b:9f:94:06:ef:1f:b0:c1:
dd:d9:36:b2:e2:ac:d2:2c:0e:89:62:04:1e:c0:b3:
ce:09:5c:41:b7:1c:20:03:17:a0:87:b8:58:d5:f7:
04:7e:e2:47:e8:7a:34:4c:c4:ec:23:fe:ba:6e:54:
89:ca:e0:38:a5:6d:38:49:6d:4f:9b:ec:68:6b:80:
c7:71:32:b4:a0:85:87:9f:5b:6c:18:6e:9f:53:24:
45:b3:c8:3e:fe:e6:a1:fa:77:0c:25:d8:4e:df:e8:
c9:b2:a1:cc:d4:eb:7c:25:b8:78:65:41:d9:b0:c8:
8c:5e:88:b0:4b:f2:60:fe:cd:d1:cb:8e:28:65:09:
78:c2:7c:e7:26:d3:41:8e:0a:95:18:f3:ac:be:33:
d8:1f:89:64:97:66:d0:ae:d8:73:4f:fa:2b:6a:d1:
b5:c9:75:5d:2d:0c:80:63:28:35:d3:21:0b:a2:50:
86:4a:a3:1a:bb:59:94:ee:5c:78:7a:7a:92:5b:b0:
0f:74:cf:74:4e:46:d1:8d:4a:83:0a:c9:0a:df:1c:
ed:af:30:74:44:cf:e2:b6:f7:5d:a5:2a:6a:a9:31:
06:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:58:A7:01:8A:96:5E:41:55:7B:FF:7E:39:38:47:B3:D9:BD:C7:3B
X509v3 Authority Key Identifier:
keyid:68:7C:8B:F2:22:A2:6B:F1:C9:C6:63:8C:C3:56:D2:83:55:02:F2:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:4d:36:d8:a6:3d:13:0e:11:a7:88:33:ae:e6:07:d4:88:0e:
c4:cf:c7:7a:a2:4c:6b:a7:d2:75:2b:65:09:70:28:ec:25:db:
52:79:db:af:93:1b:39:59:9f:76:90:7f:d3:94:db:f3:96:64:
b4:c7:ff:6f:88:fa:62:ba:05:22:46:1e:ec:62:83:22:1a:4e:
03:64:54:33:7a:56:4d:ab:d1:a2:1c:cc:e6:97:2a:83:e5:ea:
c6:19:5f:a5:45:fe:43:4e:7e:e9:ec:48:6d:54:f0:d0:dc:82:
17:86:83:1b:34:98:12:dd:de:21:e5:5e:de:4a:61:b4:f3:8b:
e0:3a:4e:90:05:39:86:38:3e:c5:54:72:27:25:ef:15:fc:58:
05:0e:5b:ba:84:e4:66:b6:2a:fc:8c:8b:3c:c3:60:99:26:ae:
05:58:af:5f:93:7c:ed:2b:fa:ad:67:98:87:ee:d7:74:c9:0d:
b9:f7:1a:21:2b:57:a0:6d:f0:7c:cd:04:2b:3c:81:c3:2d:f3:
00:99:0a:6b:3f:fc:5a:56:73:a3:44:7b:ec:17:6f:63:c2:05:
46:61:48:0d:4c:48:4a:03:79:41:7e:66:28:18:64:d9:e3:b1:
9d:66:ea:6d:f7:f5:c9:51:35:54:4f:7c:07:cb:2d:1f:89:42:
ec:5b:cb:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:16:29 2025 by rpki-client