Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
File: aErIoCEnBoJ2XSPvAzjzXHht2zU.mft (raw, json)
Hash identifier: qVAqIdpdv4b8meRjO/Pbs+AiFYlODkMonhZEZb7SnY4=
Subject key identifier: 33:4C:15:DD:B2:3B:1B:F8:18:61:28:2A:99:40:BA:B3:10:BB:69:5B
Authority key identifier: 68:4A:C8:A0:21:27:06:82:76:5D:23:EF:03:38:F3:5C:78:6D:DB:35
Certificate issuer: /CN=684ac8a021270682765d23ef0338f35c786ddb35
Certificate serial: 01984AE5CB191C8BEF01DF4B8EB31E3C0B8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
Manifest number: 12B0
Signing time: Sun 27 Jul 2025 08:00:30 +0000
Manifest this update: Sun 27 Jul 2025 08:00:30 +0000
Manifest next update: Mon 28 Jul 2025 08:00:30 +0000
Files and hashes: 1: aErIoCEnBoJ2XSPvAzjzXHht2zU.crl (hash: e+Ut7vypoTiV99Vybixj+FQdaHGJcuKkH/nN0JWhmYs=)
2: eEP1VypyuqVxmlLrgaA9LlVwYK4.roa (hash: 5dvQLaqP0vbYafUJXNT7sKTWbRstUgrMUzxGvHU5Rgc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:e5:cb:19:1c:8b:ef:01:df:4b:8e:b3:1e:3c:0b:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=684ac8a021270682765d23ef0338f35c786ddb35
Validity
Not Before: Jul 27 08:00:30 2025 GMT
Not After : Jul 28 08:00:30 2025 GMT
Subject: CN=334c15ddb23b1bf81861282a9940bab310bb695b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5d:45:2b:0b:dc:40:4a:69:41:64:6c:62:19:
dd:f1:32:31:bb:05:0d:dd:b4:b0:c2:d9:35:53:03:
bf:55:6b:e9:f6:72:ca:ba:02:5b:ce:35:18:d7:91:
2f:bf:83:a9:9f:db:72:07:68:c3:70:72:c7:1a:70:
d3:2f:21:88:ad:0a:7a:46:d6:e1:90:1e:a7:b3:37:
30:7d:05:a0:a4:73:d8:22:87:8f:71:f2:ea:a0:1c:
b5:34:15:f2:94:22:8d:79:28:de:64:0d:9a:80:9e:
2e:6c:01:ec:93:1f:dc:fb:d1:c8:16:f2:d7:7f:03:
ea:1b:4b:5e:2b:57:2d:20:e6:94:09:e3:d5:97:ae:
4d:fa:46:01:bf:93:1f:07:1a:2f:d1:d8:62:c7:d9:
b4:14:24:47:0e:5e:2b:05:82:de:2b:d9:08:a1:b5:
44:f7:8d:27:38:5b:70:0e:f0:25:4a:c3:a5:39:f9:
e6:3b:45:6d:07:49:7b:c1:c6:8b:19:29:0f:62:67:
14:1c:65:76:27:0b:43:3d:26:ba:d5:e6:b0:4b:52:
46:65:0b:18:d7:9a:c5:83:fe:99:ef:51:f0:d2:08:
14:5c:9d:04:69:9a:2a:e0:cb:0b:70:d5:74:ab:b4:
71:5a:8d:2b:02:e6:56:97:b7:90:0a:60:66:00:e5:
6c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4C:15:DD:B2:3B:1B:F8:18:61:28:2A:99:40:BA:B3:10:BB:69:5B
X509v3 Authority Key Identifier:
keyid:68:4A:C8:A0:21:27:06:82:76:5D:23:EF:03:38:F3:5C:78:6D:DB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aErIoCEnBoJ2XSPvAzjzXHht2zU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d30b5d-7f3b-4a5a-9897-0c011c9c927d/1/aErIoCEnBoJ2XSPvAzjzXHht2zU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:3f:64:13:2f:6e:a4:f7:27:4a:5f:b3:f1:c2:fb:0a:20:79:
f4:a3:14:3f:bf:2d:87:8c:a9:d0:93:6a:68:34:ff:8b:18:ae:
c7:b8:6f:68:3e:b4:c5:ed:4a:b7:38:ee:c5:b3:d4:86:59:d2:
6f:e4:52:0d:de:ae:20:23:75:fd:da:1d:31:44:0d:dc:5e:cd:
3e:d2:31:13:1f:4d:8e:e5:ac:2d:67:12:e1:7d:b5:1c:fa:7a:
a0:33:c9:84:68:05:f2:d3:06:20:95:95:dd:ad:1c:d0:d5:3d:
87:d8:a4:89:09:8c:47:4c:39:6f:02:d5:5d:c5:f6:99:55:d8:
7a:9b:8d:d3:f1:58:ec:d6:21:8c:84:1e:08:78:ad:6c:b3:11:
d4:a8:b2:a8:84:be:1b:cd:e3:9e:06:72:98:33:54:bc:c1:6f:
ab:cd:2d:bb:95:07:bc:4c:da:c7:66:9b:e9:37:4c:7e:34:6d:
5d:8d:5f:02:62:f4:a7:ab:40:56:f7:02:af:c7:7a:a8:3c:fd:
f6:36:17:2f:51:e8:75:a9:2e:81:7e:ad:c8:7d:ed:d0:b2:4f:
37:3e:c8:27:87:41:60:6d:76:4c:b0:63:c7:91:44:41:52:d9:
23:df:16:51:0d:0f:a9:5a:df:a8:15:e6:f6:fd:fc:f4:7e:e9:
99:02:d3:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:21:58 2025 by rpki-client