Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: AaESWLtxbYogoRGQWp/rDmWyyw9wTqvARUNNip3kjYU=
Subject key identifier: F9:99:29:C2:32:F0:B7:8F:D9:9D:F9:5A:34:46:9D:00:ED:E0:40:B1
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 01975D936B2E4CB17267518DB5F95B7ECE48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 1586
Signing time: Wed 11 Jun 2025 06:00:31 +0000
Manifest this update: Wed 11 Jun 2025 06:00:31 +0000
Manifest next update: Thu 12 Jun 2025 06:00:31 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: 4qcQu638dsVjjPyWKqja2P/tBkovGiOGUExAeHAwWkc=)
2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 06:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:93:6b:2e:4c:b1:72:67:51:8d:b5:f9:5b:7e:ce:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Jun 11 06:00:31 2025 GMT
Not After : Jun 12 06:00:31 2025 GMT
Subject: CN=f99929c232f0b78fd99df95a34469d00ede040b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:59:2d:5d:9d:81:89:d5:88:bf:9b:46:19:aa:
91:15:c5:eb:c3:6d:0c:d7:4d:21:fd:27:82:69:1c:
98:79:28:f7:b4:0d:d7:44:83:73:21:cc:51:00:2b:
e9:c6:86:28:1f:cb:30:75:0e:44:df:2f:fd:7f:8d:
94:15:b4:ba:59:93:b1:99:f5:db:2f:3c:7f:12:d0:
04:34:46:44:79:dc:e1:20:9a:47:34:04:11:bf:da:
84:8e:77:a2:32:41:6c:0f:1e:79:1e:8a:80:8c:cd:
e7:33:cb:73:16:44:b6:25:81:46:17:70:16:78:47:
ae:1e:63:55:f7:8a:fd:8e:58:5a:1c:fd:e4:32:e8:
2a:da:81:02:11:8a:47:a6:88:05:f0:32:60:63:a1:
40:fc:d8:19:da:23:7d:7e:bd:60:9a:a8:a3:35:fc:
58:25:cd:24:10:cd:34:ad:bf:47:bc:44:a5:76:e2:
1d:92:16:e0:eb:01:e9:e2:94:9d:cf:6a:18:33:fd:
5e:85:70:d6:af:dc:46:e9:ee:55:9f:78:fd:42:28:
d4:4f:e6:cf:89:16:73:bf:11:4c:82:d4:0f:3b:2f:
4b:41:b8:00:36:29:1f:18:72:34:13:59:67:33:44:
8f:39:98:96:68:68:45:5b:84:f1:65:15:fc:f5:77:
94:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:99:29:C2:32:F0:B7:8F:D9:9D:F9:5A:34:46:9D:00:ED:E0:40:B1
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:7d:26:37:72:fc:dc:72:82:2e:5b:c1:73:0f:73:40:99:85:
d1:7f:90:3e:36:d6:80:3d:b9:c4:da:ee:fe:2e:5c:92:85:3b:
9a:11:6f:ed:ba:92:77:5d:ac:1a:e4:12:86:af:49:00:2e:99:
7e:01:2f:a5:bc:3b:7e:62:4d:3f:cb:88:5d:5a:65:2b:65:55:
24:af:d0:5f:ea:5b:5c:7e:a1:f6:5e:bf:fe:5d:3b:1b:e5:6b:
b1:6b:1c:fe:9c:60:79:f3:c7:81:8e:79:fb:5c:bb:76:ce:9e:
c5:c7:d0:0a:dd:ea:75:bc:83:de:06:1f:19:a2:03:99:92:6f:
19:35:90:e1:3e:30:f8:37:84:4c:b7:ed:1e:ec:ba:3f:2e:13:
ee:1d:1a:a9:1d:54:42:66:c0:30:1e:a6:13:18:15:75:8f:1f:
43:7b:85:8c:58:75:21:ca:89:9e:c7:64:46:51:62:30:4b:e7:
de:c7:0b:d8:f0:a9:01:9c:62:fb:f2:db:cb:d9:78:7f:cc:5c:
e4:bb:a5:1f:11:0a:c6:21:ab:78:e1:b6:c7:7a:9d:bd:4c:69:
c6:d0:25:10:c9:3d:70:63:c4:03:1d:f7:a6:59:e5:6d:6b:0a:
4c:9e:50:ed:2b:6e:4d:3b:53:29:b5:c5:82:c9:6e:60:02:e4:
45:bb:84:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 13:20:31 2025 by rpki-client