Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: Xy3HbGRon9NZvTsXiYQvHa5N22wv9MIhreI9oAViHao=
Subject key identifier: 3E:00:3C:DC:E2:CB:BE:3F:7E:55:BB:08:DF:91:8E:2D:F3:7B:4D:7B
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 0197B745AB5C8928B31438E9E871105FC5F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 05EE
Signing time: Sat 28 Jun 2025 16:01:25 +0000
Manifest this update: Sat 28 Jun 2025 16:01:25 +0000
Manifest next update: Sun 29 Jun 2025 16:01:25 +0000
Files and hashes: 1: WhLENsO2y4UEzkuswA1wx41c4K4.roa (hash: qqWz2hpUFCfdOvnndjkfI9tgPQ2D7KLxkWgnxyi1reI=)
2: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: eRiMz8x7kn35FlUbn7s2aWquDAs69T4w9f8DLare0H4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:ab:5c:89:28:b3:14:38:e9:e8:71:10:5f:c5:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: Jun 28 16:01:25 2025 GMT
Not After : Jun 29 16:01:25 2025 GMT
Subject: CN=3e003cdce2cbbe3f7e55bb08df918e2df37b4d7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7b:48:ba:73:38:ae:da:fd:be:31:0b:93:8e:
79:d2:e6:9b:62:d4:bc:75:68:9f:03:e4:99:97:e4:
f2:4a:76:44:a4:5b:3b:af:ff:78:5e:f6:0e:61:4f:
2d:28:d5:97:ed:0a:1e:8c:55:ea:63:67:23:83:97:
4a:21:0b:18:05:f6:90:78:55:0e:b5:3e:3b:f2:7f:
f9:8d:70:ff:40:42:16:a8:95:7f:b3:a7:c5:26:a9:
ca:4a:91:68:08:d9:a9:e7:51:0c:1f:ce:7a:eb:a5:
3c:3f:0f:72:0d:fc:e4:ff:ef:f5:54:4b:13:a5:91:
41:b2:5d:2c:bf:b9:66:5e:99:bc:4b:c9:80:ad:6a:
f5:70:a1:e8:ef:8e:3a:f4:8c:01:3f:f7:f0:4f:4a:
9f:66:ff:73:3e:11:9e:2d:d5:f3:a2:d9:81:01:7c:
28:73:d7:62:60:71:b2:3f:b2:d6:64:6b:fa:8a:64:
fc:da:c8:52:31:b3:d0:32:ba:f7:f5:2a:89:c5:62:
2a:fb:76:82:50:4e:70:8d:5f:1c:19:a1:1c:88:20:
6f:a4:4f:c3:6a:9d:f3:6f:de:ff:eb:da:84:c3:29:
97:0c:1d:dc:1c:31:d8:8b:4b:31:b9:c3:8d:3a:0f:
d3:df:c3:9a:29:3f:84:cc:d0:df:43:d8:82:c6:4d:
fd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:00:3C:DC:E2:CB:BE:3F:7E:55:BB:08:DF:91:8E:2D:F3:7B:4D:7B
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:cf:40:8a:ab:4d:ea:f1:f1:93:1a:12:fe:1a:13:99:be:9e:
84:ab:bc:a0:21:07:85:63:a2:6e:b3:ed:7d:2e:dd:d5:e0:bf:
8d:ad:01:86:90:4f:b6:ca:24:e2:b4:ab:71:00:89:7a:47:69:
3c:58:45:96:6f:c9:df:a1:22:a4:b2:2c:c7:4c:d4:9e:a5:24:
b8:f3:d7:c3:7e:2e:09:b6:7e:b0:b0:48:b0:27:08:22:6e:ec:
25:a4:7a:b4:78:e7:c2:51:af:f1:5c:ca:15:75:1f:83:17:d5:
05:77:95:dc:5c:75:68:3d:a0:c6:fd:7b:c3:0c:5e:3b:dd:96:
6f:a6:a7:42:1f:fd:95:fc:0d:92:a7:1a:2f:a0:04:a2:3a:5c:
ed:9c:ba:4c:00:88:07:40:7a:11:f9:7b:98:ff:67:df:4b:87:
ef:96:e7:73:fd:41:ec:0b:42:51:38:cb:84:e1:bb:6f:e6:f6:
0d:e4:fa:ee:1d:54:58:e2:01:c1:7c:1e:31:9b:1a:e1:15:e1:
1d:54:ba:06:2e:47:22:2f:67:58:79:99:8f:b0:c4:39:3b:18:
6a:44:77:3e:4d:11:36:de:d1:0d:d4:0b:15:ab:4f:ef:ca:45:
87:68:95:dc:b1:b1:ac:d6:c5:13:b3:3d:d3:99:f8:47:32:68:
2b:42:2c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:35:10 2025 by rpki-client