Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
File: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft (raw, json)
Hash identifier: XP2oHU/SthKEm17peYpIhyu8O393kE9hdTR8RgTj8CQ=
Subject key identifier: 96:F3:13:62:83:8C:86:AF:80:96:5C:9C:14:61:5A:C3:D6:46:6D:93
Authority key identifier: A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
Certificate issuer: /CN=a4068c6655c333fc712832c113f67f1fd688aec4
Certificate serial: 0197469E9AC78D9628F2126E41887D5B4A58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
Manifest number: 1278
Signing time: Fri 06 Jun 2025 19:01:28 +0000
Manifest this update: Fri 06 Jun 2025 19:01:28 +0000
Manifest next update: Sat 07 Jun 2025 19:01:28 +0000
Files and hashes: 1: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl (hash: 9Bd19YiGaavMDM72c1obRnZTNiuK33H1pIMjfiBUrxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:9a:c7:8d:96:28:f2:12:6e:41:88:7d:5b:4a:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4068c6655c333fc712832c113f67f1fd688aec4
Validity
Not Before: Jun 6 19:01:28 2025 GMT
Not After : Jun 7 19:01:28 2025 GMT
Subject: CN=96f31362838c86af80965c9c14615ac3d6466d93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:3b:77:db:c8:81:6c:1a:b4:a2:a2:df:d2:59:
4f:fb:1c:1b:4a:b9:49:85:97:31:c9:0b:7f:53:5e:
10:13:96:cc:78:fb:a2:15:8e:5e:1c:8e:b7:b7:2f:
c7:aa:77:28:9e:75:cb:ba:e6:90:83:0c:34:eb:75:
17:8d:c7:9d:56:6d:9c:63:bd:b0:ad:cc:5e:2e:96:
c4:01:d4:aa:ae:84:ff:35:bd:52:b5:a8:ba:46:ce:
c2:c5:d8:f9:cb:ff:90:3a:01:e8:e2:e5:ad:04:84:
98:f3:c9:f9:af:1a:56:91:da:41:e8:bf:32:9a:41:
12:d2:ce:54:8d:ef:96:29:22:39:52:62:76:7c:87:
4d:ee:d2:b0:dd:b7:96:54:8c:a7:61:40:15:39:50:
dc:6d:35:b8:23:5d:68:d0:3e:1c:01:d3:51:19:39:
e2:25:9a:f5:b1:27:80:15:ad:96:68:aa:8f:33:4e:
17:41:fa:f4:99:d9:62:d3:0f:e5:a9:c2:9b:57:cc:
62:42:02:3a:8c:37:3e:ec:99:f5:b8:2e:53:41:b3:
03:fa:24:2f:db:d9:9c:00:9b:0f:de:7e:20:e5:7d:
6d:a6:fb:b1:35:43:d3:6b:56:a4:29:62:c0:2f:c1:
42:fd:8a:71:1f:69:d5:2b:d6:be:e3:fd:e2:96:51:
ae:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:F3:13:62:83:8C:86:AF:80:96:5C:9C:14:61:5A:C3:D6:46:6D:93
X509v3 Authority Key Identifier:
keyid:A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:f4:88:2d:65:e4:9b:a3:ca:a9:84:a9:e4:b3:20:1c:46:af:
9a:9e:ab:e4:70:ce:42:42:e7:f8:3a:1e:57:f9:44:f9:88:1e:
d8:43:93:9e:a3:92:1d:13:f8:bc:63:ff:19:3d:6c:7d:22:20:
2e:7b:88:35:df:e6:e3:d4:b9:27:3f:81:8e:65:92:b3:a7:64:
36:2a:a8:26:6b:fa:43:41:64:1e:41:47:14:44:44:b9:72:74:
d5:04:81:c2:cf:e5:01:dc:3b:45:1b:0b:5e:42:2a:d6:52:41:
ea:e9:dd:6c:0a:31:46:db:aa:ec:1f:87:01:44:62:ad:26:d9:
4b:43:0e:af:15:84:7a:0e:fa:c4:88:fc:bd:e7:6e:32:87:cb:
d2:31:6f:fc:2d:0b:0b:a1:4e:54:e0:e1:a4:81:fd:3e:4b:73:
63:ed:e4:7e:62:0d:ba:f7:83:a8:24:e6:a0:85:94:24:50:47:
9b:2b:fb:90:b3:3d:8c:ff:ac:9b:81:22:c4:43:7c:26:bc:e5:
a5:fe:c3:d5:02:8e:13:16:9e:f5:16:ba:91:1e:3f:56:18:d5:
d3:f7:ea:52:c2:3d:1a:ed:64:ac:76:f0:e7:4e:62:70:d5:45:
d1:e9:32:78:ac:5f:c4:b8:b7:20:8e:4a:ac:8a:df:30:3c:48:
9d:21:01:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:05:29 2025 by rpki-client