Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
File: aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft (raw, json)
Hash identifier: VTARqyhE8gjQwBl8lFjmeKO5fxZxEQxSR3dllawOccg=
Subject key identifier: 5B:FF:F8:AF:5F:09:92:23:C8:AF:CD:E7:5C:5A:C5:37:ED:ED:4A:C2
Authority key identifier: 69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
Certificate issuer: /CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Certificate serial: 0197469E4C695271B2323ECC415E56EB461D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
Manifest number: 0A02
Signing time: Fri 06 Jun 2025 19:01:08 +0000
Manifest this update: Fri 06 Jun 2025 19:01:08 +0000
Manifest next update: Sat 07 Jun 2025 19:01:08 +0000
Files and hashes: 1: aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl (hash: h2f1GgwVEvSYgSIoEIum8i4iCNknQtdM2ErzMtm3Q9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:4c:69:52:71:b2:32:3e:cc:41:5e:56:eb:46:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Validity
Not Before: Jun 6 19:01:08 2025 GMT
Not After : Jun 7 19:01:08 2025 GMT
Subject: CN=5bfff8af5f099223c8afcde75c5ac537eded4ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:94:24:d8:ee:16:23:a6:4f:e7:65:a0:0c:7b:
0a:96:8c:80:ef:ca:47:10:b5:b8:a4:2a:9a:f8:9c:
88:2e:6f:a1:60:f1:10:d2:1b:91:a2:8d:21:c3:89:
f3:b5:0e:06:0c:b6:d6:cb:88:66:d8:1a:73:15:1b:
9f:9c:80:77:ba:0a:c4:33:65:8e:9c:ac:85:52:6b:
ec:dc:5b:06:ea:d3:38:dd:bb:38:77:4c:30:c2:0e:
4d:6a:26:51:2c:c2:40:0e:4d:6c:81:56:c1:9f:c4:
62:95:1d:2c:52:bd:c8:f4:85:1f:e7:0c:25:6d:fe:
ac:ab:8e:63:2f:db:26:a4:8e:40:ff:b9:00:d7:03:
80:c4:29:44:c6:26:a0:28:c2:2a:6f:ee:6e:02:10:
04:80:84:da:38:0e:ef:3f:18:93:e3:0f:d3:c0:b8:
ae:f8:d5:3f:6c:8a:70:93:96:6a:5f:46:4c:17:e4:
dc:98:95:b4:ea:8c:eb:7b:7c:0e:61:64:a6:e2:3f:
8a:8c:32:98:07:8f:a9:d6:4a:c9:41:71:f4:c5:89:
7e:01:84:38:26:29:ca:69:f4:13:24:73:be:b9:21:
3c:bc:4f:38:31:4e:0e:b3:b4:1a:28:dc:df:8e:09:
aa:e6:c7:43:71:41:8d:5a:e3:0b:a7:9b:9e:5b:df:
33:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:FF:F8:AF:5F:09:92:23:C8:AF:CD:E7:5C:5A:C5:37:ED:ED:4A:C2
X509v3 Authority Key Identifier:
keyid:69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:a4:06:fc:67:df:66:1f:3c:22:36:d3:b9:50:a4:ab:b3:33:
f7:58:50:e4:44:47:f5:c2:e9:bc:2f:ba:8b:57:af:70:48:a0:
4e:f2:84:89:88:e3:f7:c9:e0:66:4a:fc:dc:c7:41:d9:eb:16:
24:04:c2:35:88:95:97:1f:e0:1e:ff:c6:73:3d:3d:ad:4b:87:
f3:3e:7a:84:da:4e:57:71:b9:15:fe:0c:17:21:62:df:61:1a:
49:a4:11:3d:d0:7e:22:d2:99:37:ca:e1:d5:a4:c7:10:5d:cd:
5b:a3:4c:83:a9:30:86:b7:63:e4:9a:c0:1b:f9:ef:f4:5d:01:
a1:bd:e6:f1:15:68:e7:b6:14:d1:f9:ae:16:8d:90:b5:f3:8e:
6f:f5:81:3c:49:86:d2:68:4a:36:c4:46:0a:ea:30:1f:11:d8:
f1:ba:0c:1b:a8:a9:39:d6:93:58:41:1e:d9:33:0e:6a:6e:7a:
42:24:47:68:ce:55:fd:e5:31:32:e3:0b:79:dc:10:59:82:b4:
2f:09:28:f4:02:b7:48:57:0d:84:e6:8e:22:4a:7f:85:fd:c9:
6f:d4:d7:f5:92:5f:18:ad:de:3b:0e:63:73:ec:a8:b6:c8:26:
9e:e1:29:c0:41:21:c3:41:b2:ed:ab:ca:4d:ab:26:cf:bd:be:
17:c5:d5:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:16:19 2025 by rpki-client