Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: XGSdnecavyCOpWXqzf+DLLwWiUZyTAbij4eGCO3c3wc=
Subject key identifier: AC:D1:71:87:CE:51:49:0D:53:AA:7E:6E:57:AC:7C:0D:00:7F:07:66
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 01974666EC509232DB9F6870896B2176A11A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 157C
Signing time: Fri 06 Jun 2025 18:00:39 +0000
Manifest this update: Fri 06 Jun 2025 18:00:39 +0000
Manifest next update: Sat 07 Jun 2025 18:00:39 +0000
Files and hashes: 1: K-gQWrDorOWk95T1Ck9YnvOvyOw.roa (hash: M7ISU7dx2mACRrVyXnpQ2vx1ALS4joyLkkEwNFtNto0=)
2: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: gT5C4mbcDbzj/vDkc+XDxUATRq9xR9ssT0eNq+cvK5Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:66:ec:50:92:32:db:9f:68:70:89:6b:21:76:a1:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Jun 6 18:00:39 2025 GMT
Not After : Jun 7 18:00:39 2025 GMT
Subject: CN=acd17187ce51490d53aa7e6e57ac7c0d007f0766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ce:1a:bb:d6:95:57:52:07:3a:94:bc:f1:3b:
ae:39:99:5f:e0:b2:db:45:41:87:44:e5:b9:af:6c:
22:ef:dc:2c:97:0d:3f:b6:33:20:5d:85:f7:87:bc:
00:4e:cc:ba:ff:b9:a9:5a:65:9d:d9:c7:37:29:b9:
7a:3d:a8:ec:88:06:93:ee:85:aa:60:c9:ac:ed:c3:
2b:6c:55:94:98:ed:91:87:37:ee:06:d5:42:db:55:
a2:a2:1e:9a:78:57:30:a5:9d:59:52:c3:13:db:3c:
d3:41:71:d7:78:70:1f:30:b1:29:8c:3a:34:3a:42:
40:45:1a:02:c5:67:34:43:1f:bb:55:af:50:5c:09:
f2:ab:8a:4f:76:63:52:9a:86:90:47:23:df:3e:a7:
ec:4e:ad:94:6e:b5:ce:44:ec:04:fa:17:c3:0e:25:
17:d0:24:0e:9d:0a:4c:3c:54:fa:c1:b2:be:7d:87:
76:ad:93:14:07:5c:12:f1:68:6f:b4:e8:cb:ee:90:
3f:f9:39:86:33:c7:e8:51:46:37:e1:84:a5:46:a6:
c6:fb:4d:e3:c7:3d:dd:61:a1:aa:7a:9b:40:9b:9b:
64:1b:e5:48:4b:54:80:7c:15:7b:d3:8a:4c:2c:f9:
b3:6c:1f:65:00:63:4c:5c:bc:10:7c:a7:49:09:76:
14:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D1:71:87:CE:51:49:0D:53:AA:7E:6E:57:AC:7C:0D:00:7F:07:66
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:05:77:9a:cd:7f:03:a8:0c:b4:05:90:59:d7:df:2a:ef:ca:
d4:d5:39:5c:04:0c:78:8d:28:33:a4:46:7e:97:61:b6:86:6a:
d6:76:9d:4d:6f:06:16:8b:f4:5d:fb:7a:d1:13:68:a1:35:42:
89:d5:e2:96:b5:57:b9:41:90:c4:56:ad:33:1a:83:21:17:d1:
bd:48:a4:b2:54:37:c7:77:37:fe:9d:7d:f3:44:80:20:73:bd:
76:f3:40:f0:9f:aa:22:8e:2a:fc:c0:f7:4f:86:f0:fa:91:5e:
3d:b6:61:c2:5c:11:59:97:3d:11:5a:4d:01:33:85:13:d0:e2:
e2:5a:7d:03:57:cc:57:ea:ac:0d:a6:96:59:21:0e:77:0d:0b:
32:c4:c3:3e:47:da:f8:4a:3f:90:23:8e:4c:41:f2:1f:42:e0:
b1:a5:10:b4:74:c1:21:4b:25:37:55:93:21:94:09:6a:62:1d:
a9:d2:92:b6:cb:c5:66:51:80:69:65:00:05:49:8f:fa:69:89:
16:42:70:43:23:3b:21:13:5a:6c:86:ed:32:54:34:96:f8:81:
09:41:a8:3c:09:24:b2:a4:8d:bf:d9:9b:7c:4d:b7:77:b5:b9:
fc:78:aa:bf:1b:2a:0f:a5:13:94:fd:8b:34:85:db:bc:ab:c9:
d2:a3:62:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:05:20 2025 by rpki-client