Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: DfFykDIPMXqr86HWeE9TLUmvIZsDG7H815fzP7BSens=
Subject key identifier: 76:A1:CB:48:FB:AD:E4:8A:04:E5:41:96:7F:26:6C:34:CA:CE:E5:A2
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 01984EC24FFDB904F07CF633DFD8BE873D29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 1604
Signing time: Mon 28 Jul 2025 02:00:13 +0000
Manifest this update: Mon 28 Jul 2025 02:00:13 +0000
Manifest next update: Tue 29 Jul 2025 02:00:13 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: XAa0zZcVfyNn61gIb1u7JUgBDsr2QbYo2NGPFo4sLn8=)
2: nJZ2h-CE2RpObbNuUbuQAsAe9wo.roa (hash: XjXLrJ8ZAfMXOtdh84OSK02UeKqf16aa2sgmGiELBao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4e:c2:4f:fd:b9:04:f0:7c:f6:33:df:d8:be:87:3d:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: Jul 28 02:00:13 2025 GMT
Not After : Jul 29 02:00:13 2025 GMT
Subject: CN=76a1cb48fbade48a04e541967f266c34cacee5a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:06:af:a5:ea:c9:fe:26:48:83:87:e2:08:9d:
f2:ed:bc:e5:98:21:75:84:f2:ad:34:ac:6c:f4:c3:
aa:95:cd:3f:52:49:b2:9a:8b:e7:bf:12:6c:f7:5e:
10:fb:b9:81:eb:df:27:2b:5f:e5:6e:19:54:46:41:
4d:e9:1a:e4:17:34:41:bf:c7:d9:40:1a:74:5e:b6:
d1:be:43:57:69:ba:48:6d:c2:7c:cf:5d:2c:a4:14:
d5:1b:f5:a2:7a:6c:3e:dd:05:ed:a3:92:f8:9c:1c:
97:f5:86:9f:5f:9e:01:b0:88:68:79:4b:68:10:1e:
87:9b:a7:a0:61:5b:9f:a9:30:05:6c:ef:33:82:5c:
63:e7:29:56:03:1f:46:5e:91:3a:ef:57:2d:7b:52:
3a:91:84:76:bf:83:0a:77:4d:86:94:d0:af:c1:82:
ba:51:aa:b5:f3:8f:18:1e:2d:35:ab:e7:3d:e8:45:
df:30:57:05:41:9c:10:65:95:c0:89:57:cf:64:21:
ef:54:64:52:6a:46:8e:89:54:08:9c:85:02:70:60:
37:71:b4:a3:37:d4:f8:cb:b0:46:09:e2:1a:2b:38:
00:fd:48:f6:be:d9:72:fa:ee:43:d5:cd:10:75:ff:
6d:61:8e:ac:6c:bb:a8:7d:24:cc:73:d8:70:dd:f2:
bb:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A1:CB:48:FB:AD:E4:8A:04:E5:41:96:7F:26:6C:34:CA:CE:E5:A2
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:fc:ad:58:9e:6a:5d:d1:9a:08:f2:f1:de:f1:88:e7:3f:f0:
8a:df:d0:de:b7:44:96:06:a1:68:84:e6:70:17:92:7d:b5:24:
d5:29:27:b1:cd:15:45:d9:22:15:e8:ee:2c:20:1f:6d:e2:21:
9a:38:09:a9:53:c7:55:b1:26:db:96:73:8b:5e:66:da:d1:07:
f7:dd:f3:cd:d3:73:2f:00:16:35:89:c3:3e:12:d0:2f:3b:8d:
8d:5e:0a:a4:f7:11:f6:0e:2b:f8:8f:63:8c:07:a4:e7:1a:e0:
05:ec:2b:39:c4:16:e5:64:03:86:4c:81:35:34:3b:ad:bf:59:
66:47:ef:58:54:59:5a:25:fa:b7:46:82:c1:c1:a5:00:0a:fc:
0e:6e:c0:ea:66:90:6a:d7:3d:ed:5b:23:cf:38:d8:c0:79:66:
36:8e:14:41:55:60:08:d3:77:fe:e5:d8:21:da:bf:e7:5b:ea:
4b:c9:90:ff:06:5c:0c:1a:2d:e5:76:ce:f6:06:4f:60:30:0b:
6f:22:6a:8c:6c:14:75:1e:52:fe:ed:04:f3:89:b6:92:0e:f5:
74:b5:f2:91:73:94:62:e1:4a:95:2d:c1:93:ec:ca:c9:0c:b3:
eb:f9:2a:c1:b9:94:e4:f1:38:31:bf:c0:da:8b:fc:de:0b:e7:
19:50:a2:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 28 05:39:10 2025 by rpki-client