Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.mft
File: aU0ylbrOkvvFQHllxly2WWm60Cg.mft (raw, json)
Hash identifier: GXN4HWF6UUtZzdEkjMiI9+bZsZGGW58bhDEtGNCidHk=
Subject key identifier: 47:42:1A:FE:82:0A:68:B8:5B:67:68:F1:4E:78:D4:99:89:0C:DB:4E
Authority key identifier: 69:4D:32:95:BA:CE:92:FB:C5:40:79:65:C6:5C:B6:59:69:BA:D0:28
Certificate issuer: /CN=694d3295bace92fbc5407965c65cb65969bad028
Certificate serial: 0197B6D7950EAEA87EA3150C4765F6759520
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aU0ylbrOkvvFQHllxly2WWm60Cg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.mft
Manifest number: B3
Signing time: Sat 28 Jun 2025 14:01:11 +0000
Manifest this update: Sat 28 Jun 2025 14:01:11 +0000
Manifest next update: Sun 29 Jun 2025 14:01:11 +0000
Files and hashes: 1: aU0ylbrOkvvFQHllxly2WWm60Cg.crl (hash: rJlkcrE+ftJ1EwuLa2O62jrQ9ASTezpJgHRdj7ew+Sg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.mft
rsync://rpki.ripe.net/repository/DEFAULT/aU0ylbrOkvvFQHllxly2WWm60Cg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:95:0e:ae:a8:7e:a3:15:0c:47:65:f6:75:95:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=694d3295bace92fbc5407965c65cb65969bad028
Validity
Not Before: Jun 28 14:01:11 2025 GMT
Not After : Jun 29 14:01:11 2025 GMT
Subject: CN=47421afe820a68b85b6768f14e78d499890cdb4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:1f:05:d1:3c:80:b4:ec:dc:4b:f7:17:91:7a:
24:89:93:91:c7:38:79:bc:c4:85:30:5f:1c:e7:51:
5f:83:b5:ac:07:b3:d0:19:bb:ea:3a:25:35:c8:63:
d3:5e:ef:21:b7:a8:31:21:d0:60:bc:b5:95:0e:b8:
7a:57:0c:0e:d7:a3:ab:c5:93:2b:14:64:15:12:88:
a2:42:38:3a:56:64:01:c8:29:3f:75:31:00:0b:d4:
0c:fa:f5:f4:6b:cc:be:23:06:b9:9f:fe:37:a1:54:
7f:b8:05:8f:64:53:23:ce:c9:28:c3:5e:04:08:84:
ad:aa:21:f7:2e:16:b0:62:36:84:90:f0:4b:8d:91:
27:09:d8:fb:6f:a8:ca:11:50:12:ec:f8:a7:1d:67:
6c:32:93:85:da:9c:c8:ce:88:83:11:5a:3b:d5:89:
63:c1:86:7f:e2:43:9a:da:91:cb:2b:55:8a:13:fb:
df:19:0e:6e:5d:e0:42:aa:e4:fa:da:f4:fa:f3:67:
3f:2b:36:eb:2d:ea:96:35:6a:12:c8:a3:9e:ab:4b:
af:ec:df:b8:69:3e:a8:c1:b2:52:1f:6a:78:12:59:
d2:cf:bf:f0:4a:60:4b:d1:28:3a:81:ef:72:cf:3b:
f9:31:de:55:83:65:88:c6:2e:9c:b3:96:5c:d6:4b:
11:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:42:1A:FE:82:0A:68:B8:5B:67:68:F1:4E:78:D4:99:89:0C:DB:4E
X509v3 Authority Key Identifier:
keyid:69:4D:32:95:BA:CE:92:FB:C5:40:79:65:C6:5C:B6:59:69:BA:D0:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU0ylbrOkvvFQHllxly2WWm60Cg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0ad468-daea-4b04-a408-27e96b9047a8/1/aU0ylbrOkvvFQHllxly2WWm60Cg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:e4:4e:1d:8b:13:46:31:15:f9:79:b9:6c:b2:4c:65:28:22:
16:9a:13:bb:2d:a7:59:23:50:8a:65:78:f6:e9:d1:01:1d:cf:
e6:fd:3d:59:6c:aa:06:5e:c2:9e:26:0d:1d:bd:af:c1:82:1b:
fb:40:ce:cd:90:6c:79:8e:3a:55:d0:92:54:9e:8a:c8:7e:03:
c9:e9:fa:03:00:f7:82:0b:29:dd:f8:f1:7b:ad:ed:cf:c3:8c:
78:07:06:0e:ca:f7:c5:d6:a8:05:08:5f:08:73:0b:a0:46:62:
3f:89:21:87:0c:95:a5:25:17:88:8b:a3:a1:d4:f4:87:26:5b:
b4:ce:e7:4d:cc:55:f4:1a:f3:c0:ce:80:c5:19:b0:c5:21:71:
be:a9:2e:b8:58:3b:02:12:e5:fc:26:dd:0a:69:eb:f7:2e:31:
3d:30:cf:c9:71:94:ec:51:7a:39:80:b0:9b:78:86:89:9c:71:
fc:ed:5b:96:34:85:d1:a3:b4:e1:c4:82:a7:7c:7b:a8:28:bf:
2f:a0:bb:79:41:6a:15:ca:2d:d8:94:f6:ac:c4:58:af:64:64:
13:7c:70:a1:e4:e1:6d:27:6b:f8:7f:b5:59:d0:de:54:b0:54:
46:89:cc:4e:47:82:c8:8c:c5:bc:05:77:0b:c6:79:fb:32:a9:
fc:c3:ce:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:53:43 2025 by rpki-client