Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
File: aQqw79d1diHIbXtpx29gssP6w1Y.mft (raw, json)
Hash identifier: HWzM2hyj5sLQjCfJOvIA39GsQovWAdQudpDWKO5jKwM=
Subject key identifier: E7:EF:93:CD:99:FE:47:F1:4D:B5:C4:F5:E8:48:93:34:3F:94:45:06
Authority key identifier: 69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
Certificate issuer: /CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Certificate serial: 0197B77C071C55F451E4C43D9C832B246955
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
Manifest number: 0304
Signing time: Sat 28 Jun 2025 17:00:48 +0000
Manifest this update: Sat 28 Jun 2025 17:00:48 +0000
Manifest next update: Sun 29 Jun 2025 17:00:48 +0000
Files and hashes: 1: aQqw79d1diHIbXtpx29gssP6w1Y.crl (hash: +hX1NRNf6v/ORw1LuRBZUNVJ+2se5i7Xv05aN0ZoN0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:07:1c:55:f4:51:e4:c4:3d:9c:83:2b:24:69:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Validity
Not Before: Jun 28 17:00:48 2025 GMT
Not After : Jun 29 17:00:48 2025 GMT
Subject: CN=e7ef93cd99fe47f14db5c4f5e84893343f944506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b1:87:87:ea:0d:79:ba:0e:17:2b:eb:03:01:
6d:66:ae:a5:15:ec:d4:92:0e:4d:bd:bd:ca:aa:20:
63:5c:fb:22:12:fb:f4:be:95:63:92:97:ed:d3:1b:
d2:1a:92:11:c9:ca:73:f9:60:8f:c5:86:a5:20:e5:
89:ce:14:59:ba:f2:3e:c6:c4:9a:2d:ab:45:93:84:
4c:0b:c8:a4:d4:2b:80:2e:c1:08:b5:b0:1c:58:a5:
7d:3b:ae:ee:b6:b6:82:4e:8e:71:ff:f1:df:50:19:
64:52:d2:c3:44:72:a5:19:db:d4:7b:7a:70:6d:26:
72:3c:33:c9:b5:7b:21:a8:2f:23:7f:8d:66:84:22:
5a:34:15:62:57:e5:d5:a8:cb:36:ea:bc:1d:87:11:
3d:92:a5:ea:76:e9:64:93:9d:6d:7f:7f:aa:42:5a:
e5:4b:c9:0d:1f:b2:71:09:d9:d3:0b:b4:f6:a7:68:
fb:c6:61:1c:31:1d:3f:ce:48:ca:07:82:6b:dd:25:
32:00:01:88:6d:10:6d:ff:d3:e3:b2:e0:01:a3:55:
28:d1:e5:44:f8:90:0d:8d:77:7b:99:c4:ad:34:ad:
fb:70:28:72:35:1b:8d:37:3e:24:6c:4a:64:01:c6:
57:e2:87:91:44:ef:b9:04:08:02:10:50:9d:75:40:
1d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:EF:93:CD:99:FE:47:F1:4D:B5:C4:F5:E8:48:93:34:3F:94:45:06
X509v3 Authority Key Identifier:
keyid:69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:b0:29:8e:7c:bb:04:5a:06:a6:0f:37:2f:42:13:72:98:d2:
b0:92:eb:76:28:8a:1e:05:70:c7:46:b9:cf:ec:fa:aa:02:00:
b5:39:d2:e7:5e:5b:f7:35:3b:a5:33:82:e5:d3:d6:e2:d8:a2:
28:26:b0:b6:3c:60:96:7f:41:56:28:5f:c6:60:4d:82:c6:6d:
0e:6a:e6:a6:51:8c:1d:bb:f1:ff:49:bf:1b:90:8b:75:31:5c:
98:16:28:b1:f0:13:d2:b7:4c:3d:d6:86:3e:b8:d2:c7:53:c4:
9d:07:ab:c0:47:8d:72:77:a9:62:28:9c:22:6a:22:b6:34:a0:
d3:f6:29:b3:ce:09:bd:32:8d:f1:2e:3b:fc:98:22:f0:40:ea:
f8:df:47:75:11:e6:34:32:24:1e:fd:2f:85:41:ac:a7:7d:47:
4f:fd:92:1b:a8:cc:99:6f:63:00:ab:29:12:bd:5c:34:c0:00:
a5:a3:b4:2c:27:60:bb:ff:f7:8a:54:27:f6:a9:1c:9a:42:40:
bc:ee:68:31:69:ad:fb:f6:7e:19:3e:89:eb:a0:d0:93:b1:30:
2e:1e:3c:19:c3:42:b0:0b:0d:99:73:d6:d5:1f:bc:9e:61:83:
c5:15:30:40:4d:e6:d5:57:e2:ea:fd:be:ef:15:f2:56:45:97:
73:3b:55:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:27:38 2025 by rpki-client