Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
File: aJQuPste6nkqdvray-wBqFaOl_Q.mft (raw, json)
Hash identifier: /mZqUSvGuadSACmD+0uc75X0DVKk6uRDGzo4nJZN6qs=
Subject key identifier: B1:15:8A:C5:F8:A4:58:20:42:A5:9F:43:D9:C9:9B:AE:DE:D3:C6:37
Authority key identifier: 68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
Certificate issuer: /CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Certificate serial: 0197B820C6FFB5DCCE9415BC3FEFA58B8A90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 20:00:45 +0000
Manifest this update: Sat 28 Jun 2025 20:00:45 +0000
Manifest next update: Sun 29 Jun 2025 20:00:45 +0000
Files and hashes: 1: 2I7Ug_0TKUirYBKdCRFB3X-yPVM.roa (hash: OuAKBuCtiZrdtqQo3Ia+YQ9DdlyXDqDuhn9BW+I9wGc=)
2: aJQuPste6nkqdvray-wBqFaOl_Q.crl (hash: TR8dyP8BmVjgIAT9XFUbbtah1OyJ0utDSf/4bG13ecU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:c6:ff:b5:dc:ce:94:15:bc:3f:ef:a5:8b:8a:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Validity
Not Before: Jun 28 20:00:45 2025 GMT
Not After : Jun 29 20:00:45 2025 GMT
Subject: CN=b1158ac5f8a4582042a59f43d9c99baeded3c637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:04:b4:e3:04:64:8a:32:05:33:06:c5:d7:20:
3e:1e:02:83:82:90:30:f8:e6:a5:fa:0f:e5:e5:0c:
32:30:5d:04:23:8e:5f:26:bd:76:bd:c1:b5:2a:cb:
ee:56:bf:8b:31:26:e9:52:24:27:59:89:11:93:51:
56:d9:0b:3c:94:bb:e5:2e:01:19:c5:6e:cb:b9:10:
35:fb:86:2f:1d:aa:e9:2e:13:15:ba:10:69:4c:fc:
8e:de:f2:f8:9d:1b:27:96:73:37:40:ef:fd:62:ac:
33:cb:f7:9c:d1:24:a6:60:b9:0e:7c:1c:28:82:af:
74:27:dc:01:2a:29:1a:b3:77:82:5d:3c:e4:62:e9:
57:d2:58:a4:a1:70:10:d5:10:e4:6f:55:b2:0e:33:
7e:b3:3a:8f:0f:94:db:ca:bb:b5:72:7a:fd:04:1d:
45:0d:54:d3:38:e6:86:48:dc:70:c9:5f:be:22:75:
ca:04:20:93:cf:17:b0:23:f4:4f:75:37:a9:3a:6c:
c6:bc:3c:75:e9:ea:d1:9c:10:b8:cd:7e:e8:c2:94:
ea:fc:fb:44:3a:fd:cd:83:5c:87:2c:f6:bd:a2:23:
6c:3c:79:bb:23:55:6f:2f:a4:6a:ea:3a:fc:99:91:
6c:a5:ba:49:6e:04:45:d4:46:fa:72:d1:de:de:91:
00:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:15:8A:C5:F8:A4:58:20:42:A5:9F:43:D9:C9:9B:AE:DE:D3:C6:37
X509v3 Authority Key Identifier:
keyid:68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:c3:10:e6:f6:83:c3:24:94:e9:2b:94:84:46:87:cf:cc:ab:
17:bc:be:3c:8c:c7:17:a9:67:47:a0:c8:9e:02:3f:65:b5:51:
6f:31:6a:27:6b:7a:c0:7b:86:f3:13:b7:92:dd:b4:c5:72:ce:
89:3a:fb:58:c1:d0:12:4e:82:8e:ac:92:21:33:89:26:19:18:
19:88:e6:7c:a4:6c:bd:77:72:28:c4:65:db:f3:45:fd:66:ff:
37:c0:63:f0:32:d0:10:b2:5f:8d:c1:23:fe:4e:f9:2e:2f:7c:
9a:26:a4:d6:ac:5e:fa:0f:c2:ca:84:fa:5f:85:83:68:03:79:
ea:4c:d4:d9:7c:39:94:f0:ea:24:af:7e:5c:c5:bb:9c:d3:df:
f2:b6:fe:62:f4:8e:c2:72:57:82:b7:61:21:7b:59:d1:e7:8f:
1f:cb:aa:56:61:6c:f0:24:b3:15:76:82:09:0e:2c:d5:d3:ba:
16:41:2b:01:09:17:f9:de:fc:1b:f9:ed:2f:93:3f:e1:91:39:
29:c2:d8:58:51:3c:59:ec:a3:b2:c9:ed:bf:a3:1a:f1:0b:ff:
cc:77:43:8e:18:40:ea:98:7e:ef:fe:38:42:9f:4a:9e:07:85:
04:22:22:36:7c:99:d1:1f:6d:7e:a3:a9:6b:18:d3:13:cc:4d:
6c:47:15:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:46:40 2025 by rpki-client