Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
File: aKUCPY4CESaZfXkmpHcBYIqs48c.mft (raw, json)
Hash identifier: 4k1GZpcXWuF3m8wCdK8UN96j/quzlhyGUaGID+E3nvw=
Subject key identifier: BE:1C:A8:08:89:DB:7E:E6:BD:AF:99:89:E8:2F:76:6E:48:69:E4:C9
Authority key identifier: 68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
Certificate issuer: /CN=68a5023d8e021126997d7926a47701608aace3c7
Certificate serial: 0197B70F3B976521CC52DF1C077656D09F34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
Manifest number: 0726
Signing time: Sat 28 Jun 2025 15:01:58 +0000
Manifest this update: Sat 28 Jun 2025 15:01:58 +0000
Manifest next update: Sun 29 Jun 2025 15:01:58 +0000
Files and hashes: 1: aKUCPY4CESaZfXkmpHcBYIqs48c.crl (hash: rPTy5ZIqXw6HAVmlO9hXgW8SkNYZRI7NNC3aaCJbuPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:3b:97:65:21:cc:52:df:1c:07:76:56:d0:9f:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a5023d8e021126997d7926a47701608aace3c7
Validity
Not Before: Jun 28 15:01:58 2025 GMT
Not After : Jun 29 15:01:58 2025 GMT
Subject: CN=be1ca80889db7ee6bdaf9989e82f766e4869e4c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e4:0f:5b:27:44:56:5b:29:60:8d:d9:d3:75:
52:06:51:2e:ba:28:06:4e:e1:fb:d2:2b:76:62:5f:
40:e4:3a:a4:c0:ef:de:1b:68:fb:5a:ca:b2:d0:8c:
fe:c0:fc:46:32:26:0d:38:48:bb:06:cb:cb:c5:fb:
f7:c0:2a:3e:cd:b8:a9:0d:10:90:dd:cb:e8:8c:24:
24:40:2c:9d:14:ba:45:42:f4:a9:a8:ea:ee:2d:63:
6c:bf:42:20:8d:99:a9:62:7e:34:b2:49:a9:d5:9e:
07:61:2c:15:cd:bc:2e:bd:78:b6:d1:b0:46:bd:80:
31:01:c9:3a:e8:be:b3:73:1e:94:d2:a7:4f:da:0a:
ed:31:85:1c:35:b0:a7:7a:73:9d:6e:15:8c:13:11:
36:03:76:a8:e6:ea:31:8f:a5:ad:3c:36:f9:d6:dd:
53:f1:a0:68:34:3c:2a:94:a8:da:3e:28:60:41:80:
06:91:4d:31:bc:02:92:ed:c2:c5:86:01:ac:34:da:
c5:d6:b5:96:2c:6e:30:50:c2:2d:17:ce:6c:0d:1f:
9c:16:2b:4f:4c:34:35:d4:6d:40:04:a5:97:76:a9:
72:c5:f2:2a:19:a6:e1:35:57:11:ec:27:df:2b:72:
b8:78:a6:70:9b:dc:4e:90:f0:66:3a:f9:73:b0:8c:
9a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:1C:A8:08:89:DB:7E:E6:BD:AF:99:89:E8:2F:76:6E:48:69:E4:C9
X509v3 Authority Key Identifier:
keyid:68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:26:e0:ed:b3:28:ab:55:b7:8c:59:dc:8f:0c:00:34:d4:65:
6d:9f:9c:c9:86:2d:b0:88:51:eb:e0:71:81:8b:7f:5b:03:92:
b2:a9:26:1e:0a:1a:ea:ce:d4:29:f3:17:cb:ba:98:3a:48:b0:
9b:e0:a7:8c:de:0e:86:1c:01:9f:1a:51:ed:fc:40:e0:37:6a:
06:57:54:58:64:73:64:51:8c:f8:21:c4:72:a7:47:01:41:74:
4b:b8:b3:5a:ba:a7:75:d0:f1:ef:91:b2:f8:61:9f:df:77:96:
c9:fa:2c:90:95:ff:39:86:1b:da:f3:2a:11:1f:bc:f6:9e:81:
36:b4:ea:83:0e:00:5d:ab:95:48:f8:7e:e6:52:b7:4e:9f:9e:
e0:7d:82:59:1c:a9:2f:af:8f:d3:8d:82:53:44:62:c4:dc:04:
cf:1e:f5:e7:b2:7f:ef:bb:9f:05:2f:7d:78:0c:ac:5e:b5:a7:
57:a7:a7:07:6e:8e:f0:57:bc:b5:c4:59:ef:2a:4d:36:29:24:
eb:46:c9:c5:91:cd:cb:4f:f7:2e:04:be:36:49:2f:75:32:a5:
14:0f:38:b8:a6:a2:54:3d:ec:38:eb:1e:2d:70:c8:84:1f:39:
bb:5b:c7:84:57:a1:e1:bc:5c:96:cf:02:77:51:fd:af:7c:74:
2a:09:90:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:23:35 2025 by rpki-client