Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft
File: aXJqlhM2--eCCz10joEvSVyHLTU.mft (raw, json)
Hash identifier: 2fMAm8eWEstKwyZmroAxNe+HZc/9yGvimMjZvRerk1Y=
Subject key identifier: 61:C0:10:43:31:88:FF:B4:6E:E2:48:BF:D9:E3:05:03:22:1E:9F:4B
Authority key identifier: 69:72:6A:96:13:36:FB:E7:82:0B:3D:74:8E:81:2F:49:5C:87:2D:35
Certificate issuer: /CN=69726a961336fbe7820b3d748e812f495c872d35
Certificate serial: 0197B7EAAC9BA96B6A2E7854304AC5A8E8D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXJqlhM2--eCCz10joEvSVyHLTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft
Manifest number: 0DA5
Signing time: Sat 28 Jun 2025 19:01:39 +0000
Manifest this update: Sat 28 Jun 2025 19:01:39 +0000
Manifest next update: Sun 29 Jun 2025 19:01:39 +0000
Files and hashes: 1: TPjf70pa6qBZmpfYB0iX9CcL4Y4.roa (hash: swAbvLbVBmlLATlL/hX7o87L+INYtKkOcONzc8lraTI=)
2: aXJqlhM2--eCCz10joEvSVyHLTU.crl (hash: mlWdwTgL/o+JFYc4v9pqnHavkXsQrmSs/jRY6HgAGNw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aXJqlhM2--eCCz10joEvSVyHLTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:ac:9b:a9:6b:6a:2e:78:54:30:4a:c5:a8:e8:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69726a961336fbe7820b3d748e812f495c872d35
Validity
Not Before: Jun 28 19:01:39 2025 GMT
Not After : Jun 29 19:01:39 2025 GMT
Subject: CN=61c010433188ffb46ee248bfd9e30503221e9f4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:84:8c:93:86:20:ab:20:59:7b:1e:27:bc:6e:
27:6c:97:af:d0:80:8c:d4:af:07:1b:4f:3a:b5:8d:
4a:3f:30:2c:8e:34:58:3b:38:dc:45:29:b0:49:e2:
5d:9f:b1:26:e2:8c:c8:57:e6:6c:48:d2:2a:db:46:
c4:6b:2b:48:17:bf:b3:f7:4c:2d:9c:34:05:26:29:
e6:8c:27:f3:4d:c6:dc:f0:06:01:2c:94:e2:af:62:
37:d6:d4:94:68:38:af:43:f5:3a:d7:cb:1b:f1:af:
5b:d0:f2:e2:38:a9:e9:ae:81:16:23:84:42:b3:f7:
65:25:73:1a:16:1d:a5:f8:05:7b:2a:00:c6:2a:6c:
dc:90:de:47:6f:76:b6:ae:60:bf:ac:75:d3:4c:b6:
aa:6a:99:a2:41:66:df:5a:19:74:d8:31:c8:2a:92:
70:51:2d:54:30:f6:e5:f0:4f:54:f9:ee:83:d0:41:
45:40:c3:7d:a7:9a:87:cb:c2:fb:e4:8a:10:a0:a9:
cd:00:6d:91:c4:e5:f6:52:1d:e9:a1:41:6e:01:3d:
ee:58:f8:f7:1d:27:4b:65:f9:86:c4:2c:8f:64:6a:
59:28:f8:71:1e:b3:39:a0:aa:fe:6c:8f:0b:32:d8:
82:ea:a2:f3:7b:a2:79:59:68:bb:a9:b9:81:05:c2:
6c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:C0:10:43:31:88:FF:B4:6E:E2:48:BF:D9:E3:05:03:22:1E:9F:4B
X509v3 Authority Key Identifier:
keyid:69:72:6A:96:13:36:FB:E7:82:0B:3D:74:8E:81:2F:49:5C:87:2D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXJqlhM2--eCCz10joEvSVyHLTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:3f:a4:1b:69:e0:d5:09:34:df:81:f2:42:95:99:04:3e:11:
4d:94:ed:a0:a0:4e:24:7a:95:68:06:6f:b5:ee:b4:d8:1f:ad:
20:c4:83:1e:7d:e0:ad:27:5b:99:c2:d7:ea:e5:79:8b:12:90:
0d:a6:cc:72:cf:ae:2c:4f:92:48:b0:f0:92:a1:e8:47:9c:8e:
46:78:c7:b9:1a:52:ef:9f:ca:12:d0:f8:7a:17:aa:59:99:aa:
94:2d:58:cb:02:9d:aa:98:57:e2:76:58:1d:7c:12:b0:86:4e:
c6:c9:be:c2:98:e3:6c:4c:3c:ed:1e:e8:1e:f1:b6:01:e7:ce:
e4:33:ee:77:0c:40:7d:5a:b3:ad:9d:10:04:a4:71:aa:0c:56:
28:cc:e1:77:e3:7b:24:9c:9c:51:e3:75:9f:2e:85:e3:1b:6a:
dd:90:01:5e:44:ae:89:14:bb:66:56:b1:3e:d2:11:b7:8c:8d:
c7:f7:66:aa:35:eb:35:e5:2d:93:8b:88:6e:af:1e:0b:6e:70:
27:b7:83:af:08:09:c3:1b:5c:7c:3c:2a:d6:e3:e6:56:a4:46:
73:5b:09:c3:8b:6c:52:49:a1:5d:a4:0a:76:02:67:07:fd:56:
dc:5b:aa:79:f3:c5:dd:5d:6e:1c:4b:f6:39:c8:dd:0f:2a:bc:
3d:40:dc:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:12:35 2025 by rpki-client