
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: PCuJpc9mN1n7HgLhbGg8VekdpGu9pYV5Lve8WOh8rZ4=
Subject key identifier: 07:17:00:30:E9:72:32:24:77:F7:82:04:B9:82:A4:CA:DE:74:AF:98
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 01975F822E3384446DE61CE35C0143C82FE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 1587
Signing time: Wed 11 Jun 2025 15:00:56 +0000
Manifest this update: Wed 11 Jun 2025 15:00:56 +0000
Manifest next update: Thu 12 Jun 2025 15:00:56 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: yC7jPwmDskRFuCopKDLxOQmh85XIRaqrIYXemv5y+k4=)
2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:82:2e:33:84:44:6d:e6:1c:e3:5c:01:43:c8:2f:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Jun 11 15:00:56 2025 GMT
Not After : Jun 12 15:00:56 2025 GMT
Subject: CN=07170030e972322477f78204b982a4cade74af98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d8:d3:08:50:e0:38:40:00:6b:8d:1a:15:6b:
ff:5e:7a:fb:2d:e5:a8:82:f1:a7:2d:13:90:fe:fe:
b9:57:30:c2:3d:bb:1b:1f:2f:57:3e:0a:4a:9c:f9:
92:d1:52:31:d8:76:f6:30:e0:33:5c:2c:80:4d:a9:
64:45:6d:40:c6:1c:0c:dc:cf:eb:3c:ec:7d:90:df:
f3:19:e1:4a:4c:a3:4c:41:93:39:f4:45:c5:03:31:
eb:43:96:cf:50:99:28:30:45:fe:93:6b:8e:10:a6:
8c:c2:70:5e:78:81:ea:52:e2:81:7f:92:f6:26:8c:
c6:6e:af:43:5a:61:c0:7e:4a:21:9f:a4:a3:ee:f9:
d6:d4:e2:f5:9b:b7:ba:f9:c4:5e:83:37:6b:28:12:
5a:ee:a9:25:a1:3f:03:b3:72:85:58:60:11:8d:08:
e6:4f:b2:89:df:ab:63:2f:17:65:c6:ea:78:bb:6a:
7a:d4:73:8d:5a:ad:7e:91:b7:65:96:64:7f:e7:62:
f7:40:24:af:6c:f0:ca:26:a4:2d:c6:46:c4:b4:db:
6f:54:87:c9:1b:00:95:fe:cb:c8:cc:a0:0f:03:ca:
26:56:19:a4:9c:95:4d:c6:63:60:de:72:18:a5:22:
9c:d6:3a:3a:2f:4d:0c:3a:c9:49:2e:b8:87:49:12:
52:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:17:00:30:E9:72:32:24:77:F7:82:04:B9:82:A4:CA:DE:74:AF:98
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:fe:63:9b:a5:2b:1f:a4:98:1d:44:87:ad:5b:a0:1e:3d:bc:
b6:a2:ae:e5:e1:82:9b:c5:3b:c2:55:65:89:dc:b2:76:83:cc:
94:fd:d2:20:37:5b:48:d9:f9:fa:5c:e5:a8:34:b0:c2:1a:dc:
f0:23:54:c7:06:f1:8a:b1:e7:c4:3f:cb:45:b9:31:6f:1a:a3:
b8:95:ce:2e:bb:31:ef:08:87:9e:9d:1e:79:73:ed:a4:18:9a:
45:dd:c6:e1:95:07:64:cf:85:77:ca:0a:3f:2c:f6:d0:84:15:
86:f5:40:2e:a5:46:80:64:b2:73:72:b0:18:bc:d9:12:07:55:
25:6d:c2:76:36:c1:a9:4b:7d:b3:0a:c8:7a:d3:1f:25:e4:e8:
06:cf:76:e5:d9:47:e8:be:e2:c6:15:c6:e9:04:21:fb:0b:12:
60:e7:99:2d:20:57:1b:8b:ab:0c:8a:b8:68:57:60:45:c6:16:
2c:22:63:69:e5:39:a2:10:a7:09:79:91:18:ed:5a:ed:2e:c9:
07:ef:66:28:b5:10:24:37:29:d9:04:15:9c:62:70:4a:6b:f9:
66:a4:02:ab:ae:52:24:78:33:3e:d7:ad:e7:ca:04:28:2f:e9:
77:15:76:21:52:ef:43:57:52:e5:66:35:34:17:b9:e0:aa:76:
fe:c2:a8:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 20:27:30 2025 by rpki-client