Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json)
Hash identifier: hKI1uSbq1Nyb8xPiQCJdzxBMTDwPFl/UpDmU2r46fpM=
Subject key identifier: 18:32:A4:D2:6E:D3:87:41:53:57:42:0B:E9:04:4A:31:6B:C3:0F:57
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 0197B7EAD2B5FA88DB9B10C97401A31D7374
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 19:01:49 +0000
Manifest this update: Sat 28 Jun 2025 19:01:49 +0000
Manifest next update: Sun 29 Jun 2025 19:01:49 +0000
Files and hashes: 1: Q01X85MGyHMF5rr2gbqyxSbVGJU.roa (hash: 3pLndBzBIS9IcjtzdUX4XacaMZCMolKRG+4KwxWHWEU=)
2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: cAihBVvBO1bKH0ORRZclTWTQYBfEX01UqloWSNQIuPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:d2:b5:fa:88:db:9b:10:c9:74:01:a3:1d:73:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: Jun 28 19:01:49 2025 GMT
Not After : Jun 29 19:01:49 2025 GMT
Subject: CN=1832a4d26ed387415357420be9044a316bc30f57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:66:18:1b:5e:23:39:d3:b4:76:50:7a:f2:25:
29:65:f3:de:e6:eb:8d:66:5a:e5:47:36:90:8e:fd:
aa:9b:a5:00:0a:43:a4:be:c5:2e:b8:40:a1:d9:fd:
17:54:a0:dd:2c:f0:a3:57:33:65:f0:43:a2:14:94:
75:b2:6f:a3:1c:35:8c:4a:b1:7b:db:a0:b7:27:6d:
40:e6:ca:8c:fc:9a:6d:06:1d:b2:9a:31:f2:18:1b:
ea:99:2e:d1:4e:ac:70:96:b6:ae:93:e9:99:5b:97:
c3:86:cb:41:1b:81:7a:f6:1e:73:1b:c2:72:ee:f8:
da:46:21:0e:63:fe:19:86:b8:35:ba:77:9d:81:7f:
d8:e4:c3:0e:4d:6e:be:04:17:4c:93:5f:dc:00:26:
7a:90:b6:13:a3:8a:fd:20:40:47:fa:98:b0:e7:c9:
dd:38:ed:1e:80:33:d9:2f:00:a8:c1:03:ce:26:77:
db:74:e9:4b:69:6e:dc:82:39:f5:09:d9:fa:1b:05:
73:f7:b0:52:5e:8c:31:80:6c:5d:ef:c2:52:ad:1a:
5d:d0:c0:2d:8f:66:d0:4b:2b:2f:9d:4c:c6:f7:28:
27:0b:01:27:1f:65:e4:5e:7d:05:af:7b:45:36:0c:
89:64:c0:c6:be:93:03:a4:33:0f:63:91:ee:95:84:
d5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:32:A4:D2:6E:D3:87:41:53:57:42:0B:E9:04:4A:31:6B:C3:0F:57
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:8b:14:14:20:4c:4f:ea:6f:99:ac:0a:13:ab:8a:fe:7b:94:
f5:3a:bc:36:f6:05:86:6a:2f:af:7b:9d:4d:4d:4b:bb:57:5a:
07:04:47:25:dc:a5:38:ef:5f:c4:57:24:5b:8d:96:1f:40:49:
be:f9:a2:f6:e2:9a:25:90:6f:ab:10:85:ba:d9:4d:f1:ff:4b:
ae:26:2d:07:ce:01:2b:7b:a6:9d:05:25:ca:8b:48:a9:0c:c9:
0d:21:53:ef:d9:b7:04:e4:c8:e6:30:c3:8a:81:43:93:2b:4a:
9d:30:0c:2f:74:19:b0:d1:95:c2:6f:61:58:a9:e8:70:a5:43:
ef:bb:4e:96:53:3a:9f:19:ca:9f:f6:3f:98:01:46:71:3b:fd:
3f:68:be:28:1b:c4:74:94:df:7f:16:13:88:dd:62:f6:fc:51:
fc:2e:97:02:dd:a9:cf:7e:32:22:00:d0:23:88:04:d5:89:17:
df:08:6f:9a:f8:2b:ef:36:87:c6:4d:9b:28:f7:80:9d:f8:31:
ae:23:32:c9:d7:69:ec:5e:4b:95:cf:48:93:0c:96:d6:e3:bf:
9f:cf:3e:68:34:ae:74:c0:07:f5:77:35:30:a3:7c:97:ca:f2:
7d:e3:c3:48:48:4b:fc:e1:50:5d:7a:31:eb:e0:c9:ad:66:c7:
4c:fa:c1:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:56:54 2025 by rpki-client