Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
File: aEZbnPs2jGnssOP-o7VCupxzAfQ.mft (raw, json)
Hash identifier: tc+aB7iBtDE1sGf3ao5JEqjs3NiC29XXow0NLELDb0s=
Subject key identifier: 1F:FA:24:18:48:3C:AB:0E:42:D3:03:AB:D5:09:D1:03:94:CD:88:A2
Authority key identifier: 68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
Certificate issuer: /CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Certificate serial: 0198D5BC5876E935F4615AB1E7C9000990D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
Manifest number: 1362
Signing time: Sat 23 Aug 2025 07:02:27 +0000
Manifest this update: Sat 23 Aug 2025 07:02:27 +0000
Manifest next update: Sun 24 Aug 2025 07:02:27 +0000
Files and hashes: 1: aEZbnPs2jGnssOP-o7VCupxzAfQ.crl (hash: GB4564vIbSF5CNDGJ4xIdcvkZtp/OxwcRwZkhgCqdV4=)
2: s3MszUL2Sssrqjezj_btDkPTmQg.roa (hash: rgkSdfEiUESbKFQA8EcHOyD2UnXv2kAlPQ3EqnLhSNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:58:76:e9:35:f4:61:5a:b1:e7:c9:00:09:90:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Validity
Not Before: Aug 23 07:02:27 2025 GMT
Not After : Aug 24 07:02:27 2025 GMT
Subject: CN=1ffa2418483cab0e42d303abd509d10394cd88a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f4:c1:23:db:45:12:e9:4d:c7:ef:8c:50:39:
f6:30:c7:93:c9:7a:d2:28:6d:34:43:ff:0d:3e:0e:
ea:45:bd:ef:47:df:b1:d9:35:b5:1d:0b:78:bc:61:
e8:df:a5:5f:a3:e6:3f:f1:c5:da:bb:bf:5f:36:1d:
5b:11:b7:54:29:82:8e:85:0b:85:74:b7:45:52:ec:
36:eb:a0:f2:77:6c:52:a2:b7:5c:b8:73:63:45:d6:
d4:72:e7:1b:6f:c6:ac:81:dc:4e:bc:5b:ac:c7:59:
05:a4:26:1c:9d:c1:68:3f:ba:51:6d:03:e7:bf:42:
31:f7:04:95:48:66:ec:34:2a:f3:9d:1b:2b:71:24:
26:20:61:b9:cb:0e:d3:ef:e3:a7:55:b0:1d:02:51:
b6:3e:8a:1c:f4:88:e7:8e:af:5d:cf:db:18:2c:6c:
87:50:6f:5a:43:87:31:db:ea:0b:cd:e9:5e:12:62:
2e:e5:02:98:52:7b:df:53:41:8c:ac:04:3a:38:d5:
f0:6d:23:c2:77:59:f3:41:82:fb:31:f0:87:91:2a:
de:eb:f1:30:36:b9:16:7e:a1:f8:9d:78:bf:d9:f9:
f3:06:86:8b:73:c7:93:89:05:fb:5a:6e:aa:c2:92:
26:dc:34:67:35:52:02:6c:b1:32:2b:ac:f5:b9:cc:
a8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:FA:24:18:48:3C:AB:0E:42:D3:03:AB:D5:09:D1:03:94:CD:88:A2
X509v3 Authority Key Identifier:
keyid:68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:8e:33:d1:26:f2:41:df:01:2c:be:bc:d9:55:f9:ba:52:9b:
58:fb:8a:e7:1c:98:41:28:9a:82:8e:b5:35:08:52:10:8a:af:
02:76:13:b1:84:b6:9d:85:c7:f1:f8:92:6f:78:c1:98:18:0e:
9c:eb:2f:c4:3c:5e:42:ba:80:ff:d6:e1:7d:99:8d:21:3f:b0:
2c:9b:c8:df:16:d9:0c:ee:5c:06:5f:26:0d:5c:b6:41:e3:4c:
fa:22:f4:97:5e:8d:17:5d:a7:b8:04:bb:a2:af:89:d2:73:08:
85:3a:93:4f:d0:81:7a:8b:26:fc:47:b5:20:41:c2:57:45:0c:
76:3b:e9:1a:40:86:94:74:89:0f:34:a3:99:c8:04:1e:73:b7:
f6:09:85:9a:c3:6d:a3:9d:02:f6:5d:af:28:cc:65:cf:70:c0:
17:d1:32:6b:9d:f4:ae:fe:3f:68:90:4c:f1:b8:3c:44:13:e5:
8e:30:a2:86:eb:fc:0d:33:15:0c:9c:3c:ee:42:0f:e1:4c:39:
4b:15:04:eb:2e:ac:8e:68:a8:84:3f:a6:6b:08:77:93:25:49:
14:6a:66:82:c2:c2:1a:20:c9:4e:a2:63:b9:f0:aa:65:2a:46:
6c:52:01:d5:88:b6:bf:26:21:82:dd:7d:cf:e5:8b:13:29:f2:
fc:3b:2f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:48:52 2025 by rpki-client