Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: VN7OP4uI1YU3if4beDjHKfEQC7iw49W7VnA3TFT5/aQ=
Subject key identifier: B3:A0:07:7D:30:AB:22:45:5F:22:D8:2B:EA:A7:1B:6B:29:30:A4:0A
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 01974BFB69AFB9D260E198CDD22449D3EA51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 20:00:57 +0000
Manifest this update: Sat 07 Jun 2025 20:00:57 +0000
Manifest next update: Sun 08 Jun 2025 20:00:57 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: R/u1zot7wdk8kgeI2HgKQgJKEU990FOR8dj/4o/cE74=)
2: nJZ2h-CE2RpObbNuUbuQAsAe9wo.roa (hash: XjXLrJ8ZAfMXOtdh84OSK02UeKqf16aa2sgmGiELBao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:69:af:b9:d2:60:e1:98:cd:d2:24:49:d3:ea:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: Jun 7 20:00:57 2025 GMT
Not After : Jun 8 20:00:57 2025 GMT
Subject: CN=b3a0077d30ab22455f22d82beaa71b6b2930a40a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:91:df:78:c6:11:b5:da:1b:1f:40:b2:ab:01:
1b:be:38:47:b2:f3:49:9a:d6:38:30:0c:f9:3b:0b:
e6:39:69:17:fe:1e:98:4c:dc:ed:ee:93:34:7f:db:
41:69:59:81:69:4c:aa:18:72:d7:5d:66:0c:35:c2:
fb:d8:de:c2:25:53:13:68:8a:7f:e9:b3:ff:f6:d4:
74:72:45:e5:01:8a:81:1b:50:b3:22:cc:1b:ad:bb:
75:c5:85:14:ec:4c:df:74:00:a2:45:8e:e0:75:51:
ef:84:a3:8d:04:63:93:9d:3b:2c:f7:3d:32:3f:9a:
6f:a3:3f:61:fb:90:cc:d9:15:3d:17:b6:ea:b0:3f:
61:ca:c9:f6:53:59:5e:a3:3f:9e:b7:77:30:73:de:
4f:84:4d:c1:a3:a8:4a:4f:f5:7d:ae:1a:12:70:e3:
b6:97:5e:7b:fb:0c:f8:22:f1:2b:f0:e9:ae:fe:dc:
ac:2c:2d:9a:aa:84:9f:d1:f6:07:07:1e:0a:c1:ec:
b3:00:cb:d6:41:83:61:dc:0a:cf:ae:96:c1:d9:5c:
fc:85:68:b8:a8:29:d9:f1:e2:2a:fc:16:57:7d:98:
66:87:10:94:f4:cd:3d:dc:78:d5:a0:70:19:51:c3:
df:1d:22:3d:59:c3:c6:4b:d6:43:a3:5c:f6:86:c5:
90:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:A0:07:7D:30:AB:22:45:5F:22:D8:2B:EA:A7:1B:6B:29:30:A4:0A
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:00:46:0d:3c:6e:c3:ee:ca:aa:74:42:8d:a5:64:5b:6d:c4:
9a:12:2d:98:f4:19:75:6c:b5:6b:7e:e5:1e:7b:2e:2f:6d:9f:
b1:8b:2a:ab:cb:f3:27:4b:6e:8e:5b:46:df:52:64:4f:cc:aa:
2f:8a:6a:44:90:25:ed:96:70:00:d5:09:97:de:62:64:0d:00:
a2:a5:6f:01:4e:7d:f8:3a:d1:13:8c:ad:31:f4:9e:19:e1:74:
65:e4:cb:bc:0f:3b:19:b1:c7:e9:8d:f7:00:f1:c7:65:71:b8:
0f:9c:bf:37:7f:1e:ca:0f:2d:ed:fe:0b:cc:7d:18:d7:c3:a5:
b7:90:d3:ee:a3:fd:c5:5c:94:89:de:46:c0:6d:b6:e6:1e:22:
2c:29:19:61:cb:f4:86:cd:f0:9c:78:06:16:f5:ef:2a:b3:fc:
94:ef:3e:ca:53:0f:b1:c8:55:84:9e:84:62:8d:d0:e2:93:4b:
18:ec:98:f9:b2:32:51:d7:9f:6c:ae:ef:16:a7:cd:49:24:29:
f1:a9:32:fe:a5:d4:99:49:4d:25:bc:cc:41:6c:87:d8:d1:85:
d2:7c:e6:11:49:90:eb:d4:99:10:1c:7b:0e:57:c4:0a:af:7a:
6c:f7:63:71:55:00:70:65:9a:8e:10:0a:3e:cc:09:0b:ce:9d:
50:c2:01:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:31:02 2025 by rpki-client