Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
File: aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft (raw, json)
Hash identifier: lf5T3Q5bv6T23V/yqqc83+N0iu5+vxDNiUcvRs1uaP8=
Subject key identifier: 1C:9C:45:ED:1A:1E:6D:24:34:8C:E9:27:79:AB:F9:6F:0B:7A:D0:D8
Authority key identifier: 68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
Certificate issuer: /CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Certificate serial: 0197B933B908DD7ED8996F0F6AC2B74662D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
Manifest number: 0579
Signing time: Sun 29 Jun 2025 01:01:03 +0000
Manifest this update: Sun 29 Jun 2025 01:01:03 +0000
Manifest next update: Mon 30 Jun 2025 01:01:03 +0000
Files and hashes: 1: VftZMAe-HTAVpMfwxes2FDGztqs.roa (hash: KKajIYpdkVhXrGRISoXddoe+7uEBtFz7JC2M/TbIWjs=)
2: aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl (hash: Cg7UgKIA+lotG/6D9zFUW+g2MskJjx8AZbB4EyyS51M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:33:b9:08:dd:7e:d8:99:6f:0f:6a:c2:b7:46:62:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Validity
Not Before: Jun 29 01:01:03 2025 GMT
Not After : Jun 30 01:01:03 2025 GMT
Subject: CN=1c9c45ed1a1e6d24348ce92779abf96f0b7ad0d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:07:20:11:b3:23:19:5f:69:e3:6f:ea:a6:1d:
bf:6f:a3:00:cb:7e:7b:ea:74:b8:54:85:5f:7c:72:
3a:f4:a9:30:c7:84:a2:47:b7:33:58:b6:6e:ea:cc:
43:e4:40:51:b3:5f:9c:22:36:4d:2c:9b:4b:bd:fe:
44:2b:8c:05:c4:08:4b:80:09:8e:22:1c:20:e9:e7:
c1:1f:6b:20:3b:c7:cc:ff:b7:4f:d4:54:aa:b0:b5:
fd:a3:5b:40:32:4b:d3:d4:c1:20:a2:34:de:36:b3:
98:49:42:01:89:d5:33:86:74:82:4f:33:7e:b0:69:
3c:b3:0b:3b:47:bf:a4:c5:11:c0:55:0f:96:9a:bb:
0d:a9:5a:60:88:4e:78:a4:7d:9e:43:03:b4:43:94:
f0:a7:aa:a0:5f:13:cf:8d:90:b2:25:80:8e:24:83:
cc:e2:43:ff:91:4d:c4:b4:bd:e2:f9:b0:c8:88:06:
63:a2:c9:68:b7:fd:8f:47:e6:0f:93:a9:d9:95:29:
b5:76:e7:ff:ee:6a:3b:43:12:59:61:6d:45:86:b2:
2d:00:4f:82:95:5f:55:0e:e1:f5:67:31:c6:d2:fd:
f2:cb:4f:e8:fd:de:18:8c:83:7a:a9:dd:94:aa:12:
d3:ab:8e:0b:04:cf:c1:6e:32:e9:8b:37:31:94:d3:
73:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:9C:45:ED:1A:1E:6D:24:34:8C:E9:27:79:AB:F9:6F:0B:7A:D0:D8
X509v3 Authority Key Identifier:
keyid:68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:5b:a9:55:a0:b0:4c:de:55:21:2b:8b:f8:51:a8:6b:0f:d6:
ff:36:6b:84:30:d4:41:a0:24:ab:b6:1b:6b:21:b2:ea:b6:af:
05:62:98:0e:98:1d:4e:79:23:d8:1e:57:63:58:37:ab:41:96:
1c:d5:0a:36:de:67:b0:75:11:df:16:c5:f9:19:13:84:d5:4f:
ca:93:bf:a5:19:e8:d8:57:bd:18:a5:99:36:ba:9f:12:89:3e:
2e:91:13:8f:88:ca:40:65:ce:0d:09:a7:a0:57:86:1b:48:89:
15:a1:50:90:ca:cf:c2:9e:73:0c:02:df:aa:b2:59:b7:fa:de:
03:25:6f:1f:b8:6d:92:70:58:96:56:c2:fd:e4:24:01:a9:f3:
14:48:a9:6d:c1:dc:76:2f:41:f8:a7:5c:c9:ae:8f:6d:c3:fb:
2d:03:dd:ed:78:24:39:31:01:b7:be:be:35:e5:3e:b3:89:bb:
cb:54:b9:8e:07:6d:67:67:b9:9f:36:a4:66:8b:3b:00:c5:08:
4c:61:d5:ec:12:7f:3c:0f:84:3f:80:e5:11:d3:1c:2b:74:51:
e8:4e:20:85:ac:39:ac:ad:f9:da:53:39:f5:69:d7:00:57:7a:
58:7d:e5:09:14:c7:2f:17:25:30:5c:ca:ba:ad:34:41:8e:59:
b4:86:19:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:38:54 2025 by rpki-client