Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
File: aCMaUAoKgQjcekNYsQArH9vweZU.mft (raw, json)
Hash identifier: ee4gWvP3U1Ztjfo9o45t3fDi32vOLpwN6UoU1f80iTM=
Subject key identifier: 0F:FF:FD:31:97:04:A0:16:8D:2B:7E:B4:54:0C:11:93:0D:52:84:BF
Authority key identifier: 68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
Certificate issuer: /CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Certificate serial: 0197B6D7A02D5055548C10F3D272E635E61D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 14:01:13 +0000
Manifest this update: Sat 28 Jun 2025 14:01:13 +0000
Manifest next update: Sun 29 Jun 2025 14:01:13 +0000
Files and hashes: 1: XSGE2n2dKWY3M_jq3MngIc3i_t8.roa (hash: pwMRSRLzn3jyPbMLShLv8HDNQd5Gm8ws1AjCFBEAHaU=)
2: aCMaUAoKgQjcekNYsQArH9vweZU.crl (hash: 6wAkb42ZNoYSoNx18NNzsCU7gzOzdeqMf7/61E/pcjE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:a0:2d:50:55:54:8c:10:f3:d2:72:e6:35:e6:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Validity
Not Before: Jun 28 14:01:13 2025 GMT
Not After : Jun 29 14:01:13 2025 GMT
Subject: CN=0ffffd319704a0168d2b7eb4540c11930d5284bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ff:ec:72:5d:42:88:17:a4:71:8e:ef:a6:df:
bb:62:99:0d:cc:89:c5:49:61:3b:d0:9b:3a:d7:0c:
ba:26:b7:8f:f3:ca:54:68:b5:7b:5b:11:1a:1f:07:
bb:20:9b:eb:87:f9:b9:be:b5:82:78:0e:4b:97:15:
33:a5:b7:e0:5b:73:91:6a:4f:7e:d2:a2:13:3f:6b:
f6:7e:c0:c4:8a:2c:46:bb:ca:dc:11:7d:76:88:14:
16:5a:41:58:45:c4:70:bf:03:61:1e:b9:c4:dd:37:
b7:1e:d8:8b:e0:96:69:59:51:19:8f:0a:de:61:a2:
38:9d:01:76:4b:6c:d0:d9:65:36:88:32:0f:1a:54:
11:d1:95:83:29:71:a3:51:43:07:4c:b6:f3:77:1f:
28:eb:67:f7:d2:a8:87:bb:d0:c9:80:73:02:87:69:
1b:10:cb:86:6d:31:39:5c:e6:15:35:bf:ff:17:3c:
d7:bb:bc:c2:d8:08:d5:60:96:86:ff:3a:c8:22:11:
71:67:c3:d9:e3:73:46:ae:7e:c6:dd:7b:70:7c:02:
c2:9d:b8:54:80:7f:64:7e:7a:bf:56:39:dc:7f:4c:
60:11:5f:68:ce:0d:9f:de:cc:82:7b:d4:09:3f:01:
83:1c:9f:3b:f7:66:a3:7e:ba:77:36:62:04:a1:8f:
44:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:FF:FD:31:97:04:A0:16:8D:2B:7E:B4:54:0C:11:93:0D:52:84:BF
X509v3 Authority Key Identifier:
keyid:68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:d4:e7:11:2b:3a:54:8f:74:63:7d:a4:a4:b2:b0:58:c2:be:
84:b1:b6:bc:6d:85:2f:6e:34:4b:c7:ca:a1:55:e0:0f:40:d8:
54:87:79:a1:2c:39:21:19:b0:a9:c2:cd:fa:44:72:3e:93:23:
80:52:76:8f:39:b5:1a:42:d4:05:59:c7:3b:b0:b0:1e:1c:c2:
d2:0a:de:b1:bb:c9:23:61:25:ad:1a:ab:b7:02:3f:62:e3:8e:
16:f1:dd:76:ab:da:ab:7b:4e:66:ea:94:f3:8a:11:23:dd:c7:
5a:7b:12:17:8f:89:cb:4a:ca:20:ba:88:a0:7f:c1:b2:5f:95:
e2:e4:aa:ae:c2:1d:d1:9e:d9:3e:43:c1:eb:f6:50:6d:94:91:
98:60:0d:ee:3d:23:c3:cb:71:b8:22:10:2d:4e:9f:cf:98:c6:
98:3f:94:f7:14:07:e6:52:87:8c:51:06:d0:74:9a:5b:fd:b6:
a6:91:38:48:cb:64:90:f6:8a:43:54:b8:da:5e:cf:43:f6:d2:
19:15:3a:73:98:ec:2a:2c:b4:7f:55:f8:f8:80:92:f5:91:02:
45:f8:76:3a:f5:90:e3:92:6f:77:f1:ab:c4:e4:44:22:85:7d:
8f:9d:c9:92:ef:36:d5:3a:b7:c6:07:2f:81:d5:99:b4:bc:4d:
0a:84:9a:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:57:00 2025 by rpki-client