Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
File: aOlYF0Bglex8tceyhrETM0l7lFE.mft (raw, json)
Hash identifier: MbGRJC1Q423AttcW1LonQIIh8LSKkZOfWiPviyf6Tmk=
Subject key identifier: BD:D0:23:55:82:E9:B1:35:93:3D:E7:D8:3B:4A:F1:BA:14:31:3A:80
Authority key identifier: 68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
Certificate issuer: /CN=68e95817406095ec7cb5c7b286b11333497b9451
Certificate serial: 019745F977D65510DA3961306A51066D6CD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
Manifest number: 0786
Signing time: Fri 06 Jun 2025 16:01:04 +0000
Manifest this update: Fri 06 Jun 2025 16:01:04 +0000
Manifest next update: Sat 07 Jun 2025 16:01:04 +0000
Files and hashes: 1: ExEAGmrTaGZYkgcoaaGfFiacDZM.roa (hash: vfQhBpcBjSjG95UQaSsBC3edgr1xXnN4hhJBHCKa+Vc=)
2: aOlYF0Bglex8tceyhrETM0l7lFE.crl (hash: KyzOOd+i5B+V0EXLi3BkbxiqY2/645JQpT9W7VXcRdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 16:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:f9:77:d6:55:10:da:39:61:30:6a:51:06:6d:6c:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e95817406095ec7cb5c7b286b11333497b9451
Validity
Not Before: Jun 6 16:01:04 2025 GMT
Not After : Jun 7 16:01:04 2025 GMT
Subject: CN=bdd0235582e9b135933de7d83b4af1ba14313a80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6c:f6:2b:39:71:87:b6:af:2d:42:e4:0b:d9:
a9:07:0d:47:74:67:95:31:9a:e4:9f:29:89:84:7d:
1d:6d:e6:07:72:f2:3e:0c:d9:4e:a2:5d:0a:2b:7a:
16:70:2f:10:e2:bb:20:4f:5d:53:7d:f5:d1:53:f8:
a2:f3:26:7e:51:38:4d:d5:1a:e9:71:27:26:12:b9:
e7:86:ac:3f:32:84:86:e5:47:43:65:df:14:5e:66:
48:fc:7f:3c:6b:09:4a:73:2e:0c:1b:a9:ea:6a:d5:
0b:83:32:dd:23:12:0f:23:a7:2d:90:1c:af:68:8d:
73:45:6b:83:8d:68:1c:40:17:2a:d0:b3:c1:b3:49:
ea:b5:90:1c:00:ec:11:e2:8f:a3:39:03:92:ee:df:
83:d5:9e:5f:c3:57:a7:fb:21:63:18:e8:c8:00:25:
cb:c9:88:74:69:f4:48:00:a1:ed:e0:24:11:5b:c7:
57:f4:56:0d:77:86:59:cc:06:ca:50:e0:c6:45:5e:
b6:4f:13:e1:f5:f8:88:73:38:21:b2:27:a7:4b:16:
12:8b:a9:ee:c3:c5:e4:87:33:65:0c:21:41:92:f9:
f8:e1:c2:67:a8:b9:69:2e:f9:11:5e:fa:5d:e0:09:
40:00:be:e1:69:00:6a:b2:58:f0:a4:27:6b:1b:d4:
59:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D0:23:55:82:E9:B1:35:93:3D:E7:D8:3B:4A:F1:BA:14:31:3A:80
X509v3 Authority Key Identifier:
keyid:68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:c9:67:68:31:48:c2:03:17:3f:4e:7a:8d:f3:dd:e0:f1:16:
ee:43:ed:f8:70:9f:5a:ff:c0:69:64:2b:e7:55:e3:42:c9:97:
b0:de:3f:08:f2:b6:73:84:d4:99:60:fa:7d:3f:f9:e9:d8:78:
7b:68:a8:31:99:3a:a8:5b:29:36:a6:aa:c1:e7:94:98:68:02:
7b:ef:0f:77:57:da:04:08:bf:17:36:76:db:5a:b6:d5:2f:2e:
f9:d9:44:c6:21:37:60:b3:85:cf:e0:13:2b:0f:b2:33:8b:9a:
b3:2c:ad:62:46:ef:98:38:e6:cc:e6:a0:0c:41:d2:10:e8:9f:
a3:5f:0b:e0:0f:62:42:02:47:6a:ca:fc:c8:16:bf:08:c5:24:
45:96:9b:af:c9:23:28:7c:b8:11:4f:ed:ce:42:98:1b:08:56:
d5:c3:55:05:4c:be:f9:be:b1:b8:67:40:4b:9d:27:14:ae:81:
97:93:d2:33:09:87:66:8a:97:88:66:ad:a5:89:46:61:9f:92:
1d:16:97:7f:30:d5:07:06:db:be:bd:0d:06:90:be:31:42:da:
87:9a:95:97:19:fd:0e:f3:27:06:79:01:2e:f0:8b:26:bf:01:
4d:3b:94:4c:8a:c0:60:80:3f:8d:0c:8b:08:0a:68:04:bb:ac:
82:27:2e:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:05:04 2025 by rpki-client