Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
File: aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft (raw, json)
Hash identifier: u5/Xt2Tt87SZakCIjT+5Y+QVW+tF80IAyeSl7FHeX50=
Subject key identifier: 4A:8C:8B:57:00:07:8A:06:3E:D4:40:96:EB:9E:09:F0:F3:41:D6:05
Authority key identifier: 69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
Certificate issuer: /CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Certificate serial: 019761A73D0558A12EE0BC4404FE6CCD0686
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
Manifest number: 158B
Signing time: Thu 12 Jun 2025 01:00:39 +0000
Manifest this update: Thu 12 Jun 2025 01:00:39 +0000
Manifest next update: Fri 13 Jun 2025 01:00:39 +0000
Files and hashes: 1: 1LWuminfGd450btHCMbnnbPQ_ZE.roa (hash: TISDdBpwKFkkTeSDLc72qwKWM7K/Xn5/55e5YUo0nnQ=)
2: aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl (hash: DK8XPAPZMONe/1CvTl+c5XiFH7mhNBEndhtxB2Zd0Fk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:61:a7:3d:05:58:a1:2e:e0:bc:44:04:fe:6c:cd:06:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b
Validity
Not Before: Jun 12 01:00:39 2025 GMT
Not After : Jun 13 01:00:39 2025 GMT
Subject: CN=4a8c8b5700078a063ed44096eb9e09f0f341d605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e4:54:76:6c:be:56:f3:81:1d:76:28:b5:79:
03:1c:75:73:00:8f:85:24:55:12:90:d0:24:87:22:
58:fe:cd:63:43:6f:09:13:7e:5c:71:d2:12:74:30:
9b:d0:d2:4f:a7:21:c9:dc:1a:1e:ca:ce:fe:0a:31:
e9:32:be:98:73:36:7c:a1:dd:52:8f:ab:73:af:7c:
b1:c2:6c:a7:4b:49:3d:d0:0d:cb:b4:be:db:7c:52:
a9:ce:d9:fd:52:58:d4:10:e5:1f:fb:69:e2:c1:03:
45:a8:33:7a:4a:89:79:e7:9d:a9:52:e6:de:03:93:
f5:ae:e5:ed:df:78:3d:a2:98:8c:67:ef:b6:68:02:
e9:7c:63:9b:4e:07:fa:0f:53:c9:33:8b:94:5a:57:
de:3d:49:3a:c5:1b:28:15:03:7f:4f:1b:a7:62:c3:
e1:25:b5:27:e6:a7:00:6b:8c:1f:70:82:7e:6c:6d:
f8:c8:ce:f5:91:5e:e2:25:9e:6a:82:1c:40:81:09:
f0:52:87:30:df:ae:a4:79:f9:09:53:07:ad:33:f8:
e8:23:69:81:af:ce:45:67:e5:6a:5c:30:64:ad:07:
dc:0b:c9:63:d2:59:99:3e:76:ab:72:0d:b8:b6:c5:
40:ae:90:19:72:e2:fd:d5:35:ec:bd:63:65:68:9a:
44:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:8C:8B:57:00:07:8A:06:3E:D4:40:96:EB:9E:09:F0:F3:41:D6:05
X509v3 Authority Key Identifier:
keyid:69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:18:ca:3f:61:dd:1f:c3:2d:2f:d7:78:88:43:db:3e:21:2f:
ef:67:75:6a:f6:4e:80:66:ab:d0:9d:be:71:5f:47:4a:6f:01:
83:56:f1:4f:60:83:78:2a:37:05:8b:c2:5f:34:ad:22:b9:47:
f4:da:44:1d:3f:24:81:d3:31:67:1c:31:9c:a0:05:c6:97:04:
1e:83:6f:7d:53:91:28:83:e5:78:e9:76:da:aa:37:8f:93:d2:
14:e9:85:62:af:4e:27:ec:41:b1:87:75:b4:b2:99:33:37:d7:
d3:e7:88:17:5f:93:e0:a4:68:59:07:a7:be:43:0f:f5:a9:ab:
45:88:3b:59:57:08:3c:c4:ea:b3:a9:43:eb:3f:22:9d:40:2b:
26:f4:7f:db:e5:ee:13:42:06:13:33:b6:72:89:64:a5:04:e1:
f8:37:2a:ec:22:91:e2:a1:2c:02:f9:8f:81:43:98:af:96:3e:
6e:aa:19:1c:1a:26:7c:9e:f2:3e:5d:04:8e:c6:35:fb:b9:37:
de:c5:c5:f4:a6:2f:74:cc:6f:e9:2b:6f:29:b4:e1:ed:79:35:
9a:75:05:38:ac:d0:25:c3:2d:49:e3:df:ba:dd:4d:7b:10:32:
40:54:d0:ac:00:aa:e5:8f:9f:67:46:f9:27:5b:68:2c:77:e9:
3b:01:88:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 08:27:00 2025 by rpki-client