Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
File: aajmjRKuKTryNpBDzVmgINrCQGI.mft (raw, json)
Hash identifier: MgkhUYPNkRNkpYwR5D+ZEtu7lWBPXTdKlC2Ety4srPs=
Subject key identifier: D7:5A:40:F0:12:A5:DD:67:40:84:1A:19:CA:1C:18:C6:59:D5:1B:81
Authority key identifier: 69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
Certificate issuer: /CN=69a8e68d12ae293af2369043cd59a020dac24062
Certificate serial: 019844086840FF724225A87D1FCD43FD8FEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
Manifest number: 0AF0
Signing time: Sat 26 Jul 2025 00:00:58 +0000
Manifest this update: Sat 26 Jul 2025 00:00:58 +0000
Manifest next update: Sun 27 Jul 2025 00:00:58 +0000
Files and hashes: 1: aajmjRKuKTryNpBDzVmgINrCQGI.crl (hash: lxUKh22rkgxpkjm73/HkqGw09ZzmADwVGBjl3HVPLYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 17:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:44:08:68:40:ff:72:42:25:a8:7d:1f:cd:43:fd:8f:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a8e68d12ae293af2369043cd59a020dac24062
Validity
Not Before: Jul 26 00:00:58 2025 GMT
Not After : Jul 27 00:00:58 2025 GMT
Subject: CN=d75a40f012a5dd6740841a19ca1c18c659d51b81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7e:33:92:72:49:ed:20:f7:99:fe:53:81:33:
d0:e8:7a:51:12:b9:bb:52:60:45:f8:e9:20:8f:38:
3e:cd:95:4c:8e:15:ae:ad:3c:a2:45:0d:b5:a2:c6:
08:27:ef:28:64:06:68:d1:6a:7f:94:79:6a:d6:4b:
1c:85:0a:b6:7f:a8:8a:00:fd:c9:51:da:9a:0d:a7:
ec:5b:5a:9a:14:4b:43:86:78:13:2d:87:cf:58:35:
e9:6f:92:35:00:5f:84:98:c3:33:aa:a2:a1:c0:41:
24:ac:37:f9:4e:d9:21:3d:53:21:e7:ee:61:64:93:
d7:c7:f7:2c:47:4c:54:34:10:7a:f8:c7:80:90:60:
20:74:10:d2:06:d5:1a:13:0f:34:d6:a3:e6:a8:de:
cc:b6:04:d8:ae:2e:55:33:6f:a8:12:8b:9f:48:d8:
29:fc:8a:25:50:80:a3:ae:f3:20:7c:20:33:88:8f:
20:30:40:88:c7:e2:a0:89:00:d5:74:ff:7c:25:f3:
2a:10:b5:80:52:42:b4:47:02:a3:37:fc:88:81:db:
84:2e:76:d6:4e:ed:b3:99:f5:06:a2:50:cc:36:a9:
e9:86:a6:be:4e:9f:28:d8:3f:aa:d8:df:14:5c:31:
5a:67:5e:a1:62:3c:96:be:cd:fd:66:11:cb:67:5d:
ef:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:5A:40:F0:12:A5:DD:67:40:84:1A:19:CA:1C:18:C6:59:D5:1B:81
X509v3 Authority Key Identifier:
keyid:69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:74:fe:ca:27:ba:c0:47:30:24:b9:a3:c8:51:db:e8:8c:dc:
3f:bc:47:62:49:bd:2e:12:91:c2:34:04:0e:0a:90:93:b3:45:
90:8d:68:0c:85:37:a3:5d:08:75:11:a1:88:ed:a8:06:69:0a:
87:77:8e:98:01:42:50:34:41:d5:94:5f:67:80:34:d7:67:6d:
74:dd:18:4c:e3:20:52:b5:f0:04:54:d6:9e:bb:5d:69:34:0a:
3a:e3:98:bc:ee:c7:f8:2f:42:6c:65:6f:cd:93:90:d1:7a:66:
e3:4d:15:24:82:e3:e7:2d:f7:4b:61:91:4e:66:f1:70:7c:8c:
93:a6:3c:8f:2f:44:92:cd:db:b4:95:e5:7f:1f:f3:77:af:e2:
33:f5:5b:ba:87:e9:9c:e0:0b:08:57:37:57:de:3c:72:7e:50:
e6:5d:82:97:99:65:60:19:50:32:d4:47:0d:11:f8:bf:6f:ea:
3c:e8:4f:68:23:01:90:fd:d6:8e:78:26:8f:4e:39:99:ba:b1:
ab:4c:e9:03:86:71:a0:43:2c:52:2c:cd:2e:65:1b:e5:b2:74:
81:27:b3:4e:32:17:9b:58:bd:86:b1:c6:87:bb:b9:43:80:8d:
4a:9f:bb:31:f1:bb:9c:2f:31:9f:f5:93:6f:c8:1d:2d:84:15:
05:db:60:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 01:17:32 2025 by rpki-client