Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
File: 0aiWnX4yy_knZkstxDa5bnFJpis.mft (raw, json)
Hash identifier: tMi+KsmmiZHcAADPC/KdG1tr2kzR/qb2IUhnozA+QoM=
Subject key identifier: C5:D0:C3:05:3C:23:6F:3C:A2:69:0B:69:01:C7:45:E0:0F:1D:89:99
Authority key identifier: D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
Certificate issuer: /CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Certificate serial: 0197B77C70F776F68BDB97C2651A4C77C436
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
Manifest number: 0EEC
Signing time: Sat 28 Jun 2025 17:01:15 +0000
Manifest this update: Sat 28 Jun 2025 17:01:15 +0000
Manifest next update: Sun 29 Jun 2025 17:01:15 +0000
Files and hashes: 1: 0aiWnX4yy_knZkstxDa5bnFJpis.crl (hash: QHO42VIThSq8epXrTXYAtrfd1R220jVHBa1FxIuocqs=)
2: p1fyn5poKGi3v6udklaZLK6DaPs.roa (hash: ksuBLRSUua1zFmd4JmcnhcAsP8MWyD8OR/dcK6d/pkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:70:f7:76:f6:8b:db:97:c2:65:1a:4c:77:c4:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Validity
Not Before: Jun 28 17:01:15 2025 GMT
Not After : Jun 29 17:01:15 2025 GMT
Subject: CN=c5d0c3053c236f3ca2690b6901c745e00f1d8999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:99:d7:a2:ab:6d:ba:a3:2d:47:3b:f7:a0:b3:
62:a7:be:1b:b9:28:18:97:df:ba:26:dc:69:62:e7:
9b:d1:dc:7b:92:1a:63:19:9a:18:4b:15:b1:97:4c:
d4:da:35:b9:2d:cc:fb:0e:59:c3:f2:69:54:19:ca:
b2:99:a5:a7:1e:e8:51:3a:e4:c9:ab:8d:29:34:8b:
44:47:35:a8:d3:87:ed:6e:f8:24:2a:47:35:73:30:
3e:84:51:50:03:76:f1:3a:9d:3e:c2:10:21:64:72:
2a:64:43:3c:06:01:be:d0:77:04:4d:5d:05:77:06:
6c:a2:e3:63:b1:2f:94:04:63:4b:c5:15:ae:91:00:
a9:9d:d1:2f:c8:5d:cc:92:86:eb:62:da:27:a1:87:
66:ce:46:27:a3:d6:2e:ab:e0:45:60:f6:30:02:56:
1e:34:ad:ac:4a:88:26:94:80:9a:45:5b:d1:c2:9f:
09:99:47:56:b9:99:d3:98:18:48:78:9e:43:cd:b1:
ce:d8:e8:e0:c3:36:c8:fa:1a:20:d0:96:4f:89:34:
8e:06:71:30:0d:b6:11:ed:90:48:2c:6a:e4:b0:f9:
76:f2:d7:36:74:f3:6e:72:2f:39:e3:bb:22:c3:05:
24:d2:6e:cd:95:76:48:9d:b7:95:90:ab:a6:d9:bf:
df:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D0:C3:05:3C:23:6F:3C:A2:69:0B:69:01:C7:45:E0:0F:1D:89:99
X509v3 Authority Key Identifier:
keyid:D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:8f:9f:0c:62:db:b3:1a:e7:af:69:e2:d2:7b:42:01:d3:72:
56:84:0d:dc:6f:bd:b1:04:bd:bb:dd:b6:8a:e3:80:eb:50:30:
99:ed:53:bf:21:00:33:cb:1e:91:be:67:1d:9d:10:b4:fa:3b:
fd:65:81:8a:f5:62:eb:c9:94:85:1d:a7:83:c9:8d:7c:ba:b3:
71:60:e2:ae:80:8a:cb:4e:b0:77:8b:3c:8b:d0:0f:b0:46:11:
61:6d:b2:2e:f7:e5:68:86:20:0e:ad:7a:49:e8:fe:0b:f1:f5:
f7:b6:8b:93:a3:c5:76:6b:89:25:47:2c:b3:a5:09:16:17:eb:
02:29:99:fe:71:a3:90:8f:3f:5b:45:69:0d:d6:5a:bc:1e:69:
32:ac:45:82:9d:eb:10:94:85:52:22:d1:e5:26:a8:4b:69:ee:
c1:04:51:fe:21:4a:65:2f:98:bd:3c:93:97:82:61:7b:60:b2:
de:76:ec:84:e3:12:90:19:f7:d5:ae:fd:88:53:83:24:7d:dd:
04:7b:07:dc:1d:79:c2:3b:2f:01:d6:43:48:ec:3f:37:29:28:
db:fa:30:e0:3a:70:af:8f:ef:b3:52:93:7a:ad:cb:d9:fa:e1:
4a:92:30:23:f1:ff:be:df:b6:a7:27:4d:dd:23:b9:94:a9:d2:
5e:bb:e1:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:30:04 2025 by rpki-client