Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/917d50-fc64-4b3e-91e9-a31893b0eafc/1/cAiszpDUdaD6oR0oVIakU1ILgfA.mft
File: cAiszpDUdaD6oR0oVIakU1ILgfA.mft (raw, json)
Hash identifier: GXx3OqLzinbAWcVOOT6by1FG//BBSHl/crWi2xLSCWQ=
Subject key identifier: 72:B3:07:FB:BB:25:22:DB:49:C8:74:33:09:27:85:A3:EB:5B:D8:0D
Authority key identifier: 70:08:AC:CE:90:D4:75:A0:FA:A1:1D:28:54:86:A4:53:52:0B:81:F0
Certificate issuer: /CN=7008acce90d475a0faa11d285486a453520b81f0
Certificate serial: 01982747B44BADC22C8E6E7EDD1A914A834A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cAiszpDUdaD6oR0oVIakU1ILgfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/917d50-fc64-4b3e-91e9-a31893b0eafc/1/cAiszpDUdaD6oR0oVIakU1ILgfA.mft
Manifest number: 2D
Signing time: Sun 20 Jul 2025 10:01:07 +0000
Manifest this update: Sun 20 Jul 2025 10:01:07 +0000
Manifest next update: Mon 21 Jul 2025 10:01:07 +0000
Files and hashes: 1: SGExsZYw7zZNQMmCejqPLZCEzR4.roa (hash: lywDbb/BT202qwVyQW4Rrl3AkbHkGjJUpz5yvpYCOaU=)
2: cAiszpDUdaD6oR0oVIakU1ILgfA.crl (hash: zXOUBIIc9aEEgU2nJ3zYCBLfw68tk2FHBz8AyUnq7cY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/917d50-fc64-4b3e-91e9-a31893b0eafc/1/cAiszpDUdaD6oR0oVIakU1ILgfA.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/917d50-fc64-4b3e-91e9-a31893b0eafc/1/cAiszpDUdaD6oR0oVIakU1ILgfA.mft
rsync://rpki.ripe.net/repository/DEFAULT/cAiszpDUdaD6oR0oVIakU1ILgfA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 10:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:27:47:b4:4b:ad:c2:2c:8e:6e:7e:dd:1a:91:4a:83:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7008acce90d475a0faa11d285486a453520b81f0
Validity
Not Before: Jul 20 10:01:07 2025 GMT
Not After : Jul 21 10:01:07 2025 GMT
Subject: CN=72b307fbbb2522db49c87433092785a3eb5bd80d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:44:4b:3e:91:a3:0f:be:39:71:e7:93:f9:6c:
95:bb:ff:86:f5:e6:56:e8:cf:59:eb:d0:f7:b4:40:
83:3d:6d:a7:21:cc:74:ed:89:80:ff:3c:04:ee:73:
77:78:33:9c:d7:24:38:b7:16:c7:82:a7:20:5a:6c:
7b:1e:b4:86:47:47:16:01:ee:1c:d4:ba:e9:d9:96:
16:e8:8c:3b:2a:32:d2:f1:ac:05:50:1f:51:21:36:
09:ad:f1:88:66:5f:e7:ab:f7:95:05:99:f4:94:57:
38:2a:78:62:1e:6a:4f:62:78:7f:43:c9:ed:39:08:
11:bb:b3:2d:9e:b5:a7:0c:55:30:84:9b:bd:55:d9:
76:8c:e4:96:72:77:4f:d7:26:e2:b6:78:ad:f4:c4:
68:96:f1:b7:81:62:33:00:a0:93:b9:a8:fa:af:b7:
b9:18:2d:78:50:23:97:b1:99:8c:8c:d1:03:08:84:
d6:a6:53:ad:2d:97:9d:c7:93:4f:50:31:5b:66:14:
37:f1:b2:52:ac:71:8d:ea:dc:20:5a:70:97:dd:fb:
d5:49:c6:20:ba:7f:f3:ae:06:4e:91:57:9c:9a:63:
ba:d6:5c:f9:b5:5b:42:43:38:6a:ea:0b:41:76:e3:
02:13:82:58:50:bd:1f:ea:00:dd:e1:00:31:7a:01:
33:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B3:07:FB:BB:25:22:DB:49:C8:74:33:09:27:85:A3:EB:5B:D8:0D
X509v3 Authority Key Identifier:
keyid:70:08:AC:CE:90:D4:75:A0:FA:A1:1D:28:54:86:A4:53:52:0B:81:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cAiszpDUdaD6oR0oVIakU1ILgfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/917d50-fc64-4b3e-91e9-a31893b0eafc/1/cAiszpDUdaD6oR0oVIakU1ILgfA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/917d50-fc64-4b3e-91e9-a31893b0eafc/1/cAiszpDUdaD6oR0oVIakU1ILgfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:32:8e:de:14:34:06:c0:1d:18:10:38:1c:a2:56:f9:ce:25:
25:a2:38:9a:4f:56:65:bf:b5:04:31:21:5c:51:cf:08:fb:e7:
bf:bb:e6:da:28:b9:03:c9:8f:e3:7b:86:c2:ba:16:84:a4:21:
31:f0:d5:75:0f:7e:19:22:28:c2:ed:9a:1e:1d:97:ef:ae:2e:
52:ef:81:e0:d3:6e:69:94:4c:ee:21:6a:17:65:70:6e:3f:b0:
23:d7:8a:4c:83:dc:64:0f:75:77:e4:30:30:c5:01:85:1e:68:
14:ff:50:ab:21:74:d3:61:10:ba:de:99:2e:0d:11:e8:3f:f3:
6e:85:98:16:36:bb:5a:bc:b0:53:19:44:03:b8:08:81:85:da:
6f:8d:40:07:ae:e2:ac:0c:1b:3e:d1:52:05:d1:7e:b8:95:7a:
59:5b:35:90:04:a2:47:41:37:33:84:53:94:fb:21:cb:43:20:
8f:1d:75:d0:38:d1:54:b7:78:7e:99:16:a3:df:1a:ec:c8:59:
40:5d:4a:d8:f9:d0:e8:e9:e9:ac:d9:eb:89:cb:7f:60:ae:a1:
d4:a4:5c:f4:7d:f4:e0:8e:21:8d:45:dc:29:91:f7:c5:1b:72:
8a:d3:04:a5:99:82:01:4f:7c:6c:17:fc:bc:ba:ad:8c:d4:9b:
99:0f:b6:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 16:24:47 2025 by rpki-client