Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
File: aaKML4THXo0DiGlDVRUt0rcx8kk.mft (raw, json)
Hash identifier: 4WR5gNzm9UcR5X89yYb2UmyaSaHTfQwoL+xJpjJrEso=
Subject key identifier: 7B:F3:7F:51:0C:96:61:A9:70:CF:A1:7E:52:3F:53:DD:C2:68:4B:A5
Authority key identifier: 69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49
Certificate issuer: /CN=69a28c2f84c75e8d0388694355152dd2b731f249
Certificate serial: 01974BC3FF6612E2E6EAD39F8549CB92F586
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 19:00:25 +0000
Manifest this update: Sat 07 Jun 2025 19:00:25 +0000
Manifest next update: Sun 08 Jun 2025 19:00:25 +0000
Files and hashes: 1: WdYc6wSLVkfUe7irxf4uyXxEIsM.roa (hash: dpYwLA3RR3eH0lZ7/JtVVQoaXF1Y2bKy7GfyH86APlE=)
2: aaKML4THXo0DiGlDVRUt0rcx8kk.crl (hash: wb+c++M9yX1CkP6Urk8SKqN5d0suRRXhhrCbkIHcb+k=)
3: tUMiGCgmsKV0vxqojlEA4oJxpRM.roa (hash: UydNeJbpnz/tc0fGV+RmvBf+BwmLoVjaXgDPrRLbpVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c3:ff:66:12:e2:e6:ea:d3:9f:85:49:cb:92:f5:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a28c2f84c75e8d0388694355152dd2b731f249
Validity
Not Before: Jun 7 19:00:25 2025 GMT
Not After : Jun 8 19:00:25 2025 GMT
Subject: CN=7bf37f510c9661a970cfa17e523f53ddc2684ba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d0:fa:20:1c:66:32:4d:94:d1:4e:b6:74:c4:
44:8a:48:05:91:dc:71:4d:af:6d:02:b5:64:4a:4c:
08:27:83:29:cc:2c:db:83:15:66:4c:c2:1b:d8:4c:
a9:e1:9d:20:c4:15:44:8b:4a:8c:86:f8:66:8d:5b:
10:e4:2b:af:2e:75:bd:41:4a:fe:87:4a:b7:32:bd:
25:dc:73:8c:9a:32:89:fe:67:45:9e:4c:a5:b9:6e:
5b:41:f4:15:82:7f:1c:02:d7:9c:2f:41:e9:54:e6:
33:e2:7f:be:dc:68:73:86:5d:dd:a4:30:c1:fe:0c:
4b:2c:a1:bb:0d:f4:62:0e:50:d8:8b:c5:1a:dd:e1:
39:56:6b:e3:d1:65:04:22:c2:16:d5:88:0d:4f:24:
c5:cb:4b:98:72:fa:3d:1c:b0:ad:49:ed:7f:7f:ec:
f8:32:e7:d5:28:03:ff:92:4b:fe:29:a8:96:93:2b:
b5:b2:c7:81:80:4f:d5:52:bb:d0:4e:93:5e:0a:df:
90:3b:6c:b0:53:2e:80:4a:8a:e6:68:1c:07:46:9d:
e8:19:99:5b:bb:ad:58:3e:30:f9:75:13:be:a0:aa:
14:c0:c0:79:13:66:0c:f7:80:b0:45:29:8c:4d:f7:
0d:41:d5:5b:1e:2c:a2:d6:aa:a7:48:9b:3c:16:a1:
76:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F3:7F:51:0C:96:61:A9:70:CF:A1:7E:52:3F:53:DD:C2:68:4B:A5
X509v3 Authority Key Identifier:
keyid:69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:2e:23:0d:ba:d4:15:ac:f8:9b:b1:4e:81:9f:e4:d3:f8:7e:
c7:7d:20:1f:c2:7d:0e:d4:cb:5d:e2:a4:1a:b8:83:e8:fc:16:
2b:fe:9a:4b:d8:12:e5:01:9d:8a:a2:c9:d8:85:07:bb:9f:a0:
20:7d:d9:52:97:82:cf:be:1d:c9:5a:68:4f:91:c9:26:d0:c4:
b4:c3:73:49:7b:e6:0a:47:8a:9b:10:b2:a8:f4:0f:c8:11:91:
cc:d4:a4:40:30:3e:57:dc:2f:26:89:b4:cd:87:c1:c8:52:1f:
0d:2c:47:d9:02:ea:12:06:52:86:0f:66:15:77:10:df:78:a8:
81:f5:f8:d1:94:d9:c9:f7:9b:c5:a2:a0:d8:15:95:f2:30:1d:
9a:ec:a7:50:b7:a3:d0:36:51:4a:6a:d7:49:d7:00:8b:30:33:
cb:04:fa:6b:f0:d3:97:42:6c:d7:bc:68:db:18:b2:9f:10:5f:
4e:99:3a:03:af:10:a8:74:14:1b:cb:63:0a:d1:6b:b6:20:c9:
2e:33:a6:89:e1:99:23:46:58:17:53:86:5d:f3:cb:cf:b0:b8:
32:a7:5f:ed:27:47:ca:f4:23:5a:c9:71:a9:8d:3c:ff:34:4e:
50:c6:b7:3e:e6:8c:84:07:1f:42:93:97:61:33:0c:6c:b5:a2:
fb:44:d3:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:39:21 2025 by rpki-client