Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
File: aEZbnPs2jGnssOP-o7VCupxzAfQ.mft (raw, json)
Hash identifier: F++Kou6grnYCjzocn7jadKq1eWOiASxZVkoCnPTwsms=
Subject key identifier: A8:65:96:B9:D8:1C:78:E8:7D:6D:3A:2B:8D:B3:B4:1F:38:D7:11:53
Authority key identifier: 68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
Certificate issuer: /CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Certificate serial: 0197B5FC1CECC319F35F06E4963B713A71EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
Manifest number: 12CD
Signing time: Sat 28 Jun 2025 10:01:27 +0000
Manifest this update: Sat 28 Jun 2025 10:01:27 +0000
Manifest next update: Sun 29 Jun 2025 10:01:27 +0000
Files and hashes: 1: aEZbnPs2jGnssOP-o7VCupxzAfQ.crl (hash: Bc465ih/PeWwo2xsq7PMEzpIcCRWmsvBJnK/C1Yhiaw=)
2: s3MszUL2Sssrqjezj_btDkPTmQg.roa (hash: rgkSdfEiUESbKFQA8EcHOyD2UnXv2kAlPQ3EqnLhSNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fc:1c:ec:c3:19:f3:5f:06:e4:96:3b:71:3a:71:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Validity
Not Before: Jun 28 10:01:27 2025 GMT
Not After : Jun 29 10:01:27 2025 GMT
Subject: CN=a86596b9d81c78e87d6d3a2b8db3b41f38d71153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1c:3a:a4:07:a7:2f:15:5c:5e:64:cc:bd:f9:
52:24:8f:0d:87:f9:36:cb:2a:a1:5d:37:08:4c:bd:
f9:17:9a:cf:c8:cb:23:54:43:74:fb:4b:41:78:8e:
79:76:68:7b:5c:c4:3d:23:2f:a3:d6:ae:30:36:bc:
64:ff:41:75:22:ed:26:7e:37:9b:53:ff:ae:5e:95:
38:62:b8:1a:e3:9d:88:03:3c:67:88:55:e5:75:b9:
16:cf:a7:aa:80:06:43:e3:58:fd:5d:68:35:42:12:
40:04:3a:b3:49:77:a8:71:ca:3a:b8:cd:c4:84:e3:
c8:ce:c8:f8:a6:4b:54:86:44:7b:26:77:38:d1:d6:
16:15:f7:16:b8:96:1c:03:00:6e:1f:d0:10:95:cb:
63:d6:48:c2:cb:23:33:e1:37:71:4e:06:16:f6:6e:
c1:5c:c3:18:e0:fc:2a:a2:e3:d5:2b:a7:3f:a3:00:
e0:74:91:1e:8c:30:cf:7a:5a:fb:64:2c:4e:fe:41:
3b:3b:63:69:67:d8:23:c5:65:e7:2e:aa:cb:dc:3d:
74:f2:a1:47:dd:78:c5:e0:be:2c:0f:61:dc:ba:36:
32:cc:18:41:f4:5b:65:70:b7:81:67:bf:37:d1:11:
b5:76:71:4c:af:a7:db:14:45:11:dd:79:52:61:49:
1e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:65:96:B9:D8:1C:78:E8:7D:6D:3A:2B:8D:B3:B4:1F:38:D7:11:53
X509v3 Authority Key Identifier:
keyid:68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:88:c1:f4:87:51:23:37:d5:da:ae:b5:2b:f0:12:90:c6:44:
c8:35:48:65:96:24:2d:a6:25:5b:df:54:89:6a:15:32:56:dc:
49:9c:54:55:b4:9a:78:51:e0:d2:59:de:8a:8e:9c:55:57:40:
60:35:9f:24:25:52:3d:a3:bf:c8:1e:17:f2:f5:8f:3f:d8:0b:
91:b5:40:1d:77:82:00:bd:a1:07:39:42:1a:d9:7f:f6:8c:41:
9f:5c:d5:24:76:18:a0:ed:49:4d:eb:1d:c7:50:95:03:b2:5e:
e7:0f:52:45:7a:ad:17:e4:79:d8:0d:b2:b3:b0:cd:6a:81:6f:
71:6c:de:c3:2c:f4:71:6a:a0:b7:ad:33:bf:fe:b4:22:ec:70:
f5:19:f2:b3:37:4c:dd:ba:fa:4c:7b:02:0c:04:86:01:63:48:
72:f9:00:4f:00:5c:17:7b:70:62:1b:8b:be:48:0c:a5:23:ec:
42:f0:2b:32:31:42:05:69:ea:40:3f:f9:4c:77:42:ca:99:76:
80:f6:54:86:94:ba:90:8e:56:bb:c3:a9:2f:83:41:8e:9b:c1:
c2:9c:39:3c:da:36:3a:75:de:e1:ae:b4:db:64:6a:6b:c2:6d:
15:d3:c8:2f:c7:b9:c1:5d:22:81:c0:ea:8c:70:f3:91:6a:56:
21:a7:d5:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:44:41 2025 by rpki-client