Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/8266a6-39f2-4a9f-a4dd-a456e364cb0e/1/aQMR37ZbZZViGO_0cZep65akB9s.mft
File: aQMR37ZbZZViGO_0cZep65akB9s.mft (raw, json)
Hash identifier: 4K6ZdSTqdTVzpzdirutBEJqSvgs3/32rt8AapgwoBgw=
Subject key identifier: 74:48:69:EB:CB:3D:98:65:23:DA:12:5A:2A:56:0F:6E:EA:79:DE:E2
Authority key identifier: 69:03:11:DF:B6:5B:65:95:62:18:EF:F4:71:97:A9:EB:96:A4:07:DB
Certificate issuer: /CN=690311dfb65b65956218eff47197a9eb96a407db
Certificate serial: 0197B6A212D41823C7C12DA421A6E18B12F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQMR37ZbZZViGO_0cZep65akB9s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/8266a6-39f2-4a9f-a4dd-a456e364cb0e/1/aQMR37ZbZZViGO_0cZep65akB9s.mft
Manifest number: 15B2
Signing time: Sat 28 Jun 2025 13:02:44 +0000
Manifest this update: Sat 28 Jun 2025 13:02:44 +0000
Manifest next update: Sun 29 Jun 2025 13:02:44 +0000
Files and hashes: 1: aQMR37ZbZZViGO_0cZep65akB9s.crl (hash: E36JoBqfZ4k63y0zUbReI3XtYobTLkugXFL9JbI+nq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/8266a6-39f2-4a9f-a4dd-a456e364cb0e/1/aQMR37ZbZZViGO_0cZep65akB9s.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/8266a6-39f2-4a9f-a4dd-a456e364cb0e/1/aQMR37ZbZZViGO_0cZep65akB9s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQMR37ZbZZViGO_0cZep65akB9s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:12:d4:18:23:c7:c1:2d:a4:21:a6:e1:8b:12:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690311dfb65b65956218eff47197a9eb96a407db
Validity
Not Before: Jun 28 13:02:44 2025 GMT
Not After : Jun 29 13:02:44 2025 GMT
Subject: CN=744869ebcb3d986523da125a2a560f6eea79dee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a8:f2:f4:44:36:36:1e:b8:32:4c:c5:7d:9d:
fc:ef:5c:4e:02:42:b9:23:cb:f9:ac:8d:b6:cc:2d:
cc:b5:02:db:16:df:62:cd:ed:a9:95:35:ee:0d:f9:
45:77:16:9a:a8:a6:d6:de:43:b3:12:84:61:34:6b:
df:e2:63:94:4a:c1:db:5d:7a:ed:b8:b6:c3:a0:5a:
da:31:6c:82:0b:ca:44:4d:3a:07:3f:3f:84:c3:54:
64:ea:e7:26:77:9d:88:41:a7:a0:5c:35:77:2b:9a:
87:f3:f0:3b:ce:0b:0e:ea:98:b4:4f:30:8b:77:3c:
99:61:ec:02:e0:0a:07:05:f7:a6:aa:f3:64:9d:93:
b3:c2:22:97:55:2e:c3:6a:42:4a:c6:2d:a3:4c:a2:
22:7a:1c:7c:33:e6:86:24:fc:c2:18:3c:92:73:8d:
62:a2:af:2d:9c:60:ed:cc:09:16:53:2a:99:7c:db:
a3:69:05:08:52:6e:20:c3:be:e6:4f:b3:ba:62:dc:
46:e7:2c:4c:dd:f1:ae:ee:bf:1a:39:bf:38:9a:90:
ad:c3:63:98:06:ee:71:56:4f:4a:c5:6f:eb:89:ee:
bb:f5:56:33:5d:a9:39:6e:22:f0:a7:5a:fb:99:b3:
60:e9:05:73:1e:cf:6d:b9:0a:9f:bf:b5:c2:a0:ea:
db:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:48:69:EB:CB:3D:98:65:23:DA:12:5A:2A:56:0F:6E:EA:79:DE:E2
X509v3 Authority Key Identifier:
keyid:69:03:11:DF:B6:5B:65:95:62:18:EF:F4:71:97:A9:EB:96:A4:07:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQMR37ZbZZViGO_0cZep65akB9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/8266a6-39f2-4a9f-a4dd-a456e364cb0e/1/aQMR37ZbZZViGO_0cZep65akB9s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/8266a6-39f2-4a9f-a4dd-a456e364cb0e/1/aQMR37ZbZZViGO_0cZep65akB9s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:26:e8:ab:c3:c9:fa:da:06:85:99:24:de:f8:6c:0d:e9:f6:
64:ac:13:86:46:4f:c8:de:bd:94:9b:92:83:47:fb:17:5c:c8:
e5:07:1c:24:af:56:14:c7:2e:4a:b4:ba:c6:19:20:4d:d3:b3:
ea:3d:5e:5d:59:11:90:29:21:61:f2:cc:69:b1:1a:85:53:93:
e2:21:88:99:1d:17:09:6a:52:06:9a:7a:14:c8:20:ab:0f:c4:
c7:3f:03:c1:5a:76:24:a9:c2:b6:40:40:75:6b:9f:81:cf:28:
a1:72:c8:ff:cb:ab:bc:88:e7:a1:93:ad:69:ad:b3:11:7b:82:
f0:1d:32:7c:7d:9d:28:dc:5c:3d:a2:4a:2d:25:93:0f:89:17:
ce:e6:64:f6:7b:17:88:15:0a:e9:19:eb:48:9e:31:29:0e:c9:
21:e0:53:04:6a:de:22:84:cb:b1:77:50:51:12:bf:99:f9:63:
f3:6d:02:37:ce:4f:34:7e:e5:b8:0a:4b:ce:b7:f4:9b:c7:bf:
1f:84:b2:bd:ab:47:5c:1a:c7:3a:34:43:b1:3e:2b:3c:f8:de:
07:62:30:95:60:fd:fd:f4:65:58:22:0a:0a:4d:e5:6f:fd:4b:
35:a1:44:47:ba:6e:bd:55:7e:d6:8d:9f:b4:40:16:47:22:63:
56:34:25:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:58:29 2025 by rpki-client