Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
File: WqKpJUebz8vBloipUqJDAfTnaDk.mft (raw, json)
Hash identifier: 7xq5FAGs5AoYKdrJYugV9I6RXL1J4er6oQUBFGSVCJg=
Subject key identifier: 17:1D:AC:47:D3:21:58:0A:CA:9A:86:26:03:29:A5:05:7D:A7:E9:15
Authority key identifier: 5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39
Certificate issuer: /CN=5aa2a925479bcfcbc19688a952a24301f4e76839
Certificate serial: 0197B5FBF90CD6CE925AFA0E29F404E1B1E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
Manifest number: 070C
Signing time: Sat 28 Jun 2025 10:01:18 +0000
Manifest this update: Sat 28 Jun 2025 10:01:18 +0000
Manifest next update: Sun 29 Jun 2025 10:01:18 +0000
Files and hashes: 1: WqKpJUebz8vBloipUqJDAfTnaDk.crl (hash: ixuSrEYZ78BZYNl+BVz3Oy5Koq3sZ9ekdQNF7ig7uyk=)
2: jYQY-U25B3NSBy3Axt-DvgoJjdQ.roa (hash: zP4WnXpWxsW1++MaE9e5/n5ALBQb36qRJjvWEAaaUiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fb:f9:0c:d6:ce:92:5a:fa:0e:29:f4:04:e1:b1:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aa2a925479bcfcbc19688a952a24301f4e76839
Validity
Not Before: Jun 28 10:01:18 2025 GMT
Not After : Jun 29 10:01:18 2025 GMT
Subject: CN=171dac47d321580aca9a86260329a5057da7e915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:78:71:85:3b:44:83:bf:f4:a4:ac:e4:dd:16:
30:28:ae:b2:71:2f:d8:b9:be:d4:39:61:fa:20:68:
a1:4a:ae:c3:a6:ad:02:d2:31:f5:aa:eb:45:89:ff:
88:df:0e:7d:89:17:61:29:4a:65:24:b9:60:44:fb:
4b:bd:52:2b:1f:da:9c:3a:74:75:3c:f9:d4:2d:5c:
65:4f:cc:37:c4:ed:19:4a:8e:5b:26:87:79:4e:7a:
e9:8b:b7:e6:a2:98:f9:35:b6:f7:65:96:c6:c9:0c:
e2:be:cb:3b:04:42:da:77:2c:a2:8c:7f:ee:01:13:
9d:92:ec:05:3e:97:fe:4e:eb:68:26:63:15:0a:30:
e5:ce:d7:59:16:97:46:c5:a6:f9:60:ae:91:93:6d:
2f:de:3d:81:2d:06:d5:27:ca:32:c1:98:4c:36:0c:
d8:ee:af:97:89:c9:dc:55:0e:8c:46:1c:8f:af:90:
04:64:c7:d5:6d:21:ad:2d:9b:56:78:ca:14:89:29:
6d:da:90:ce:f7:cd:15:1f:ad:73:20:22:91:f5:36:
a5:8f:1f:36:92:ac:6a:9c:17:6b:8d:6d:12:9d:5a:
19:ae:83:b5:42:9d:8a:7b:ee:63:9c:16:8c:d5:54:
4b:55:11:28:2a:51:84:48:66:f8:35:12:8d:3b:71:
22:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:1D:AC:47:D3:21:58:0A:CA:9A:86:26:03:29:A5:05:7D:A7:E9:15
X509v3 Authority Key Identifier:
keyid:5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:12:db:76:10:6b:94:7a:1e:04:04:28:59:99:53:f9:0e:81:
9b:5b:e3:bc:77:06:46:9e:17:29:4d:4a:9f:97:c6:7f:77:79:
c0:78:00:3b:a4:88:40:41:f5:8f:d5:90:af:48:a5:4e:78:4b:
34:eb:ba:90:bc:86:c3:04:9c:2e:05:5d:f6:48:d3:48:ac:e0:
e4:32:52:74:de:ab:04:04:57:c2:c3:03:3d:ca:08:84:17:7d:
21:d5:02:82:75:b3:f7:2d:73:74:f2:8c:1a:22:24:67:35:bc:
34:b1:8e:f1:1e:26:b9:ee:e1:3a:3c:01:f5:70:15:d7:f2:7e:
9b:9a:71:bc:66:45:8a:35:4d:f5:07:71:61:c5:c7:80:fc:07:
38:23:79:ab:ad:57:b3:31:fe:7e:b2:b6:67:71:93:15:29:f5:
9d:af:65:6c:38:fb:1d:30:9c:3f:03:10:73:09:09:41:a2:27:
12:ae:a1:e0:44:19:59:f8:75:96:af:81:67:e1:6a:c9:bf:8d:
23:df:d3:88:89:3d:86:92:50:eb:31:d3:bb:8c:65:f0:7d:28:
5f:70:48:2f:7c:b3:41:a0:8d:60:ef:b7:33:bf:ac:5d:97:8c:
14:92:5e:c1:13:b1:e5:1e:2f:cf:b5:1c:90:cb:6a:a0:30:be:
4e:8b:80:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:09:39 2025 by rpki-client