Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
File: aaTWkWuTFZqoCYSps3dGg7tVDr0.mft (raw, json)
Hash identifier: 0e/ba29m/zQ3tSYrOPo+i1PB1Mxsy5zLRSOpUG9SPlc=
Subject key identifier: 7C:47:E6:C1:08:D5:99:E0:F9:01:F5:2E:75:CC:44:A8:C4:2C:B6:A2
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 0197B5C4ED42FD76C4F05AF70FDE063820FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
Manifest number: 12F7
Signing time: Sat 28 Jun 2025 09:01:11 +0000
Manifest this update: Sat 28 Jun 2025 09:01:11 +0000
Manifest next update: Sun 29 Jun 2025 09:01:11 +0000
Files and hashes: 1: Jqr-CXHYnZmzg_xVdImaXbMmVEI.roa (hash: XvpOhA/u1tpu0r7xTILje32qKTHGeywG7gPta8XZExU=)
2: S7cvUB4j_UAWLlorKkQpKplvSek.roa (hash: BzDMJKCxDcsJF5G/pnwJpmaeHc/VSanQaPg+mRpgeIU=)
3: aaTWkWuTFZqoCYSps3dGg7tVDr0.crl (hash: XfaQMwGzOriR/2BZ2senbvqiOFNzYbc5Tur4KaWyo+w=)
4: p5Pxp-2R2mpxd_TdGf_xD9MyhUg.roa (hash: 8XfSlLN4HMzOCIW1k555GHmyKjvtxd9c3WvZ5/ZNc5E=)
5: qGNxVRIhvMDYI5LZ_Vl9S3rhWPc.roa (hash: A64MjanIkQ8ukg/riCQQDjM5t/zWrzXBJspszNezj3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:ed:42:fd:76:c4:f0:5a:f7:0f:de:06:38:20:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: Jun 28 09:01:11 2025 GMT
Not After : Jun 29 09:01:11 2025 GMT
Subject: CN=7c47e6c108d599e0f901f52e75cc44a8c42cb6a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e3:0a:69:fd:12:a1:d3:9e:51:0d:5f:14:3c:
d6:97:77:49:cd:72:83:41:39:d9:2a:7e:42:bd:84:
3f:9b:f7:ca:fd:70:a6:4e:22:22:63:54:32:1e:06:
d0:a9:8d:a8:15:23:49:2a:05:8c:e4:d1:86:1a:e7:
04:06:14:6a:a1:36:98:7f:31:da:5e:27:9b:9d:85:
04:d1:53:51:42:0c:7e:c1:d0:ef:65:24:f7:1b:77:
a4:83:dd:dd:ea:8d:89:7c:8d:b7:70:85:8b:9b:33:
d2:cb:23:f0:71:33:43:c9:32:3a:ed:0e:51:4a:a8:
e7:83:91:82:ba:b2:39:21:15:bd:c6:d4:f4:78:98:
af:da:78:c1:42:96:cb:23:83:f5:06:c7:1d:c4:63:
24:f2:76:4b:1a:46:70:63:37:18:42:7a:96:45:64:
19:de:08:0b:04:68:2f:5f:f8:19:94:ef:b2:bc:fd:
2c:76:cf:15:b2:66:cf:b5:d9:4e:0b:b4:e6:6e:3e:
51:8c:a5:c6:7c:ee:4a:02:4f:40:55:06:3e:91:1c:
97:18:13:f5:08:35:b5:16:ab:56:73:00:b6:50:0b:
33:a9:77:28:7d:46:49:55:97:24:65:6b:e4:f3:1b:
51:51:52:be:90:1c:ad:62:e1:19:ae:b4:97:69:e3:
6d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:47:E6:C1:08:D5:99:E0:F9:01:F5:2E:75:CC:44:A8:C4:2C:B6:A2
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:cb:5d:bf:dd:80:0b:08:bf:3f:97:7c:7a:6f:af:7e:d6:01:
20:c9:c0:e6:88:7a:84:fd:d3:d5:29:6f:ff:30:de:7a:57:16:
f3:be:5e:06:77:e1:ff:b0:fc:b8:4a:1f:1c:70:53:53:ca:c0:
71:9c:99:37:d4:a7:8c:c1:3f:8e:cb:7f:6a:4b:47:05:8c:25:
f2:8d:a6:e4:fc:d1:21:bb:11:c1:71:a7:2f:3a:2e:27:3a:2f:
ff:c2:88:72:17:c6:11:45:e3:66:c2:05:02:3d:b9:05:98:9f:
fd:38:4e:6a:01:ac:c5:5b:9c:fc:f6:61:f6:dd:d8:82:b4:89:
f5:d7:e1:81:de:4e:e7:44:28:a2:18:b0:ec:0c:a6:dc:eb:76:
c4:dd:0d:34:c2:86:49:1e:35:ab:b4:31:6c:99:1e:15:18:fe:
dc:81:55:4a:e8:15:79:3f:e9:51:e3:c7:98:2e:55:91:6b:50:
ce:14:ab:4b:c2:a9:f5:c8:34:06:7f:d3:88:ba:8d:d7:e2:c6:
8d:ce:1e:75:60:e1:20:47:36:30:44:70:b7:8f:95:e4:2e:6c:
83:f6:6b:f8:b0:f6:d1:b7:92:33:46:d3:95:9d:c5:42:02:d5:
2c:ae:f4:3e:3f:0a:18:7b:23:87:74:14:45:f0:7a:6d:10:2d:
0a:c2:89:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:49:56 2025 by rpki-client