Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
File: aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft (raw, json)
Hash identifier: omB/nxQOqpYuethuL06gaz5x6fKB9OgCrW9lga81W+o=
Subject key identifier: 76:FA:01:E9:EA:DA:C6:D5:D4:5C:02:C4:CD:0D:A1:3F:38:00:7E:6A
Authority key identifier: 69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
Certificate issuer: /CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Certificate serial: 01976D3D9AB9FD9D5CE5E9F58BB1A08EADBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 07:00:43 +0000
Manifest this update: Sat 14 Jun 2025 07:00:43 +0000
Manifest next update: Sun 15 Jun 2025 07:00:43 +0000
Files and hashes: 1: 1LWuminfGd450btHCMbnnbPQ_ZE.roa (hash: TISDdBpwKFkkTeSDLc72qwKWM7K/Xn5/55e5YUo0nnQ=)
2: aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl (hash: qjMCew9GChHVv0y4Xx9nepdB1lpo8DrGf+97gRtgpCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:9a:b9:fd:9d:5c:e5:e9:f5:8b:b1:a0:8e:ad:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Validity
Not Before: Jun 14 07:00:43 2025 GMT
Not After : Jun 15 07:00:43 2025 GMT
Subject: CN=76fa01e9eadac6d5d45c02c4cd0da13f38007e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:41:c2:ad:ae:8e:81:53:3b:62:7d:71:bb:aa:
b6:9a:7a:11:02:d3:a8:e3:bc:4b:13:13:01:53:7f:
10:72:da:88:80:0c:6a:4d:a5:2d:98:f1:32:29:22:
9a:b0:90:3d:29:be:8d:a6:a9:1e:1b:f3:ae:78:e6:
ca:dc:91:c8:0a:f4:44:9e:b3:42:99:59:b6:3d:b0:
c6:17:60:36:8f:6e:10:d4:fc:25:3c:60:3d:66:a9:
31:c0:65:fc:7f:26:1c:7d:c5:01:49:76:47:29:ab:
87:c2:f2:1a:20:88:9e:41:51:9d:3d:3a:03:20:39:
fd:05:11:ac:62:de:f0:f5:b6:4c:a1:54:a0:6b:c9:
44:e6:e8:38:98:90:2c:33:8e:55:3f:94:4c:90:d1:
3a:ca:05:13:a9:b4:ca:a1:d0:48:06:a1:88:c0:64:
c6:1a:18:ab:28:48:71:d9:3d:69:a5:40:f0:6c:1a:
4b:82:8d:a6:1e:7c:56:8f:43:bf:ba:b5:38:bd:53:
d2:fe:62:20:63:e7:94:6c:71:05:26:61:21:95:e8:
bc:18:a0:57:db:6b:64:25:46:9d:b2:5b:cc:c9:61:
44:04:bd:58:70:30:e6:6a:0e:ca:91:8a:fe:99:95:
b6:40:15:ab:f2:5c:96:b8:f5:ac:f9:b9:aa:95:b6:
52:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FA:01:E9:EA:DA:C6:D5:D4:5C:02:C4:CD:0D:A1:3F:38:00:7E:6A
X509v3 Authority Key Identifier:
keyid:69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:33:cb:53:4d:f7:42:5b:f0:ed:93:bb:94:43:6f:f5:61:01:
59:92:bb:35:4e:39:cf:45:d4:36:ed:ef:d7:e9:fc:08:2f:f9:
9c:07:4b:d0:13:87:f8:74:fc:87:62:2b:4f:e0:cb:8c:16:7d:
d5:57:df:9d:eb:52:f9:dc:92:15:05:de:59:69:0e:5f:a9:a1:
24:e0:1b:f4:1a:c9:2b:8d:3d:1d:59:df:b8:46:72:de:60:c8:
ba:db:a7:0d:f4:05:a0:58:d6:9c:a0:2d:ca:17:56:ef:72:74:
be:e1:f4:c7:a9:08:b9:74:ce:e7:12:f5:be:97:78:7d:34:de:
cb:eb:9a:02:80:bb:b9:43:09:a5:35:72:db:64:0d:65:76:9c:
d1:4f:2b:80:2a:df:1d:91:1e:35:f9:36:b0:59:60:3f:bb:51:
66:a9:35:60:79:b8:0a:33:c1:4b:70:79:a7:ba:9d:4b:6d:e4:
ef:e0:12:91:00:3b:bd:af:fc:9a:5f:c6:59:15:e6:e5:5d:6a:
81:c0:6a:5b:ce:83:66:77:80:fb:ef:40:9a:53:81:4c:6f:f0:
e7:c1:dd:20:eb:c7:70:3b:3d:8f:15:8d:04:7f:d2:23:bf:c8:
3c:07:a6:a6:a8:da:89:42:41:f8:0f:df:cb:6c:94:4d:7f:ed:
be:79:7b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:09:28 2025 by rpki-client