Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
File: AYzG9GaiQWV79exSpjDa6wEiL4U.mft (raw, json)
Hash identifier: Wyx/owXWBw6siAT54sf4k5H6PXS9TQGBqjDjUXg3lHg=
Subject key identifier: 3C:F5:65:28:94:37:7B:26:C0:85:5A:16:26:DB:43:FD:80:E2:9B:44
Authority key identifier: 01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
Certificate issuer: /CN=018cc6f466a241657bf5ec52a630daeb01222f85
Certificate serial: 0197B5FC4E26415A412C9134EDF4913481D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 10:01:40 +0000
Manifest this update: Sat 28 Jun 2025 10:01:40 +0000
Manifest next update: Sun 29 Jun 2025 10:01:40 +0000
Files and hashes: 1: AYzG9GaiQWV79exSpjDa6wEiL4U.crl (hash: yrAVucxGjTEdDLX5uvevw0r6XOyWwVeMXdEUmaGib/I=)
2: dZX-Kvgl9o6BfgDGAkWUKr6z6So.roa (hash: pk+V195UpaNyzxBRisHlqyHLbz6AqZTl0n9ayxOtcCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fc:4e:26:41:5a:41:2c:91:34:ed:f4:91:34:81:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=018cc6f466a241657bf5ec52a630daeb01222f85
Validity
Not Before: Jun 28 10:01:40 2025 GMT
Not After : Jun 29 10:01:40 2025 GMT
Subject: CN=3cf5652894377b26c0855a1626db43fd80e29b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:4f:43:d6:12:fb:36:3d:6a:f2:7a:20:27:e1:
de:14:9c:70:ce:47:e7:c6:63:a0:8b:55:95:f7:cb:
d7:d9:7e:ab:17:fd:a6:2f:40:7c:2b:82:4e:6e:ae:
73:38:52:da:2a:59:a9:91:c0:aa:c6:09:f0:bb:0e:
d1:c0:78:88:45:eb:de:cc:8c:95:66:ab:dc:5f:fd:
a3:8b:ea:cb:ad:f4:f7:13:b6:8c:72:ec:17:3b:3e:
32:a1:ca:4b:70:f4:8d:54:ef:3f:8f:3e:7f:44:3b:
bb:b1:4c:7a:1c:d1:ee:30:2b:02:78:04:39:6b:29:
34:eb:c6:2c:3d:c3:81:57:85:55:27:cf:c1:83:7b:
95:6f:17:d3:60:25:3a:08:62:48:ce:4e:ad:18:f6:
bd:a6:2e:f7:a7:b9:1e:4b:1d:e7:c8:4b:25:d2:15:
da:36:9a:f5:92:f6:c4:8f:0c:8b:b5:a7:63:28:d4:
42:ee:6b:3b:54:55:be:f8:91:75:f3:1d:2d:72:60:
6a:ef:25:2e:5c:61:11:d6:59:53:0c:05:1c:14:0c:
f1:9c:e9:0f:5b:dd:5b:45:93:2e:5b:b6:03:28:0e:
04:d5:34:bd:27:ba:94:d1:eb:34:54:a8:1e:2a:e1:
3a:0c:48:5b:39:23:9f:d4:da:c4:d4:ab:29:b8:53:
05:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F5:65:28:94:37:7B:26:C0:85:5A:16:26:DB:43:FD:80:E2:9B:44
X509v3 Authority Key Identifier:
keyid:01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:4c:47:f0:f1:aa:33:fb:e5:b3:08:8e:29:ea:c0:be:d2:62:
d3:d7:75:e3:f3:a8:18:07:75:ab:6b:9f:35:12:95:59:69:b6:
61:d9:0c:96:47:cf:1d:d1:a3:a3:00:60:3b:58:ae:da:85:ed:
8e:7d:d3:ae:0d:82:45:8d:89:f9:f6:9f:14:a2:12:89:f3:be:
a1:a2:21:9d:1b:54:1e:d4:8c:83:93:4c:dd:64:3f:46:82:1b:
85:0f:e6:40:63:80:06:33:37:09:f9:4c:32:5c:aa:60:7a:72:
d5:ff:a5:0f:69:00:02:b8:44:22:76:f0:91:40:d0:61:5a:a9:
a5:1b:69:16:8d:9b:2f:e1:db:08:3a:5c:73:7b:ba:b9:2a:72:
19:84:69:93:9e:50:ea:ef:5b:0a:bf:2e:87:a7:82:0d:7c:67:
23:55:bb:1f:b9:42:23:e6:17:59:f7:db:90:41:cb:d8:64:aa:
bb:7a:d9:33:4b:04:51:4a:b5:2b:f6:32:8a:ee:cc:93:28:8e:
e5:a6:c4:2e:33:93:dd:7d:aa:a8:b3:76:05:c2:cd:53:e2:89:
17:e6:b7:7f:9e:ff:02:76:a2:ff:f0:1d:6b:74:4e:d0:ce:c4:
fb:ec:3c:5c:91:a8:3d:74:2b:3f:40:94:a8:78:ed:d8:9d:f0:
05:15:d5:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:02:57 2025 by rpki-client