Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
File: aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft (raw, json)
Hash identifier: AoId6v/5HPdo8xwMzMf+qcMaXQb59N+w8S0IO0l44m0=
Subject key identifier: 09:D6:70:9F:E4:C6:F9:1F:18:B6:9F:94:6E:FB:29:D7:4E:B3:2C:94
Authority key identifier: 69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
Certificate issuer: /CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Certificate serial: 01975BDC2724F043393D3F0F18CB60B5B9D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
Manifest number: 1588
Signing time: Tue 10 Jun 2025 22:00:43 +0000
Manifest this update: Tue 10 Jun 2025 22:00:43 +0000
Manifest next update: Wed 11 Jun 2025 22:00:43 +0000
Files and hashes: 1: 1LWuminfGd450btHCMbnnbPQ_ZE.roa (hash: TISDdBpwKFkkTeSDLc72qwKWM7K/Xn5/55e5YUo0nnQ=)
2: aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl (hash: +V+WRNUIRiCLInnP5fkCv/qpxePdJNgLpKgm29wiz9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:45:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:dc:27:24:f0:43:39:3d:3f:0f:18:cb:60:b5:b9:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Validity
Not Before: Jun 10 22:00:43 2025 GMT
Not After : Jun 11 22:00:43 2025 GMT
Subject: CN=09d6709fe4c6f91f18b69f946efb29d74eb32c94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:4d:56:93:bb:82:c8:c3:da:98:20:cd:8b:5b:
3b:6f:b1:17:65:63:34:1c:a8:7b:96:89:7b:5f:3d:
78:73:77:ee:5e:34:6d:6f:8f:31:84:a0:44:25:80:
da:fc:da:d1:69:ae:88:cb:e2:8a:0e:69:3d:d4:34:
18:9a:80:dc:fd:48:4f:97:e7:5e:ee:1f:6e:de:5f:
44:92:eb:f3:ab:89:be:da:df:1f:6e:64:a6:73:a9:
24:b5:12:6c:b8:a7:21:73:de:fd:09:b6:6a:06:35:
c2:f8:d2:77:31:e5:d9:70:1e:03:ee:39:52:61:69:
c2:3f:cc:64:7e:3e:01:59:50:8c:55:69:4c:9f:3d:
85:16:04:43:68:8a:72:75:99:05:d0:3c:12:f3:08:
e5:de:13:c6:42:d3:75:b3:55:9b:70:c0:ab:22:cd:
95:2c:3e:8a:b8:e9:a0:0f:35:d4:71:8a:1d:b5:60:
06:a1:08:de:70:ee:8a:c5:77:a5:6c:e0:b6:0c:38:
2e:5a:cb:39:68:1c:8f:5d:79:9c:e0:46:cc:79:9b:
06:78:b8:b9:13:37:1c:05:22:60:64:be:33:b3:c6:
60:04:f5:34:18:6b:a2:a1:ec:e8:3f:2d:12:53:9e:
9f:df:e5:47:59:59:e0:e0:9c:36:71:9e:8a:74:89:
f0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:D6:70:9F:E4:C6:F9:1F:18:B6:9F:94:6E:FB:29:D7:4E:B3:2C:94
X509v3 Authority Key Identifier:
keyid:69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:79:d2:3e:57:cd:19:0d:54:c9:60:01:fd:b7:cc:e4:d7:d9:
24:ef:7f:50:fb:51:cd:b9:54:df:fc:55:12:f6:e7:d6:e9:48:
e5:e7:20:e7:5c:6f:ad:69:3d:5a:81:f2:e6:a4:64:14:1b:a8:
14:70:ef:06:5f:25:e3:89:86:12:81:a3:f9:86:d4:09:be:fb:
0c:a8:b3:cc:74:bf:62:1e:f8:40:d5:dd:ff:16:4b:89:d2:20:
3e:e7:4d:ff:c3:6f:2e:1a:29:93:b6:3f:60:3f:53:ac:bb:03:
53:0c:40:5a:50:9f:55:45:a2:e6:28:3e:76:73:f3:82:e3:ad:
eb:2c:c5:f7:f1:86:3f:3c:fa:9f:aa:84:32:5f:00:82:9c:4e:
d5:1f:16:61:20:1b:71:9b:3a:f8:07:38:a4:a7:f4:41:44:9f:
49:62:47:76:f4:df:9e:6b:60:22:ef:21:9a:e6:c1:af:94:d1:
6a:b1:31:cd:f6:a0:18:93:30:b6:a6:1c:65:e3:2f:e1:3c:28:
4c:93:9c:c9:b6:87:68:c7:c9:7e:ae:51:8b:72:e2:ae:81:84:
b2:11:ac:1a:fa:a1:d1:2b:45:51:82:1f:dd:3c:5a:2a:c8:c1:
fd:0e:a5:53:bd:23:45:4d:ec:d0:b4:65:85:13:ad:6e:c0:17:
e0:af:f5:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 06:59:17 2025 by rpki-client