Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
File: aKUCPY4CESaZfXkmpHcBYIqs48c.mft (raw, json)
Hash identifier: LvZbGirdRavWTf5+XV4adOeOK935DUtw8qB+AELnzos=
Subject key identifier: 2F:62:BE:F4:7F:D4:FE:24:B9:F5:4C:C7:33:21:59:86:55:CC:34:EF
Authority key identifier: 68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
Certificate issuer: /CN=68a5023d8e021126997d7926a47701608aace3c7
Certificate serial: 0197470BD5A604271057F1A4AD9809F6A044
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
Manifest number: 06EC
Signing time: Fri 06 Jun 2025 21:00:47 +0000
Manifest this update: Fri 06 Jun 2025 21:00:47 +0000
Manifest next update: Sat 07 Jun 2025 21:00:47 +0000
Files and hashes: 1: aKUCPY4CESaZfXkmpHcBYIqs48c.crl (hash: 2171LzV9rJFoovX7xZivXW5E0z7Lv6/gfrEVSHc6CMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:d5:a6:04:27:10:57:f1:a4:ad:98:09:f6:a0:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a5023d8e021126997d7926a47701608aace3c7
Validity
Not Before: Jun 6 21:00:47 2025 GMT
Not After : Jun 7 21:00:47 2025 GMT
Subject: CN=2f62bef47fd4fe24b9f54cc73321598655cc34ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b5:90:d4:02:22:50:81:a5:64:10:05:7c:5d:
2b:c9:97:96:dd:35:d6:dd:a8:ba:05:af:da:68:92:
9f:23:0f:2c:a4:1c:db:a4:aa:da:7f:4d:37:75:ac:
d9:e2:f5:73:da:93:58:76:6d:45:45:83:5a:9c:8f:
39:fe:5b:0f:01:7a:40:4b:f7:07:76:6a:5e:40:18:
a0:12:16:83:7c:e7:f4:63:a0:34:c7:26:88:b9:84:
db:90:4d:46:30:87:82:3f:d5:fa:52:4d:a2:b0:57:
1f:58:63:ea:1a:d0:a5:c9:fc:47:59:13:60:14:0b:
aa:b1:02:d3:be:a9:d4:1c:f2:5b:fa:94:b0:58:07:
06:9b:ca:0a:ed:76:2c:b6:90:f2:40:bf:9a:b7:93:
cd:9b:58:ad:58:96:e7:a5:67:1d:df:75:ef:ed:5f:
76:69:a9:54:f6:6f:8e:33:c1:f0:3b:72:28:cd:fb:
17:4f:f8:e5:29:e7:4d:0a:6d:65:6f:14:3f:77:ac:
8f:a7:1c:8a:3f:7b:5d:02:43:b6:f6:20:7e:24:91:
c9:0f:fd:df:17:1e:24:c8:f1:b3:6c:0b:aa:78:6c:
fa:b7:82:39:0d:5c:b9:99:cd:c6:b4:8c:a3:c5:49:
ac:fa:8c:fc:1d:6e:14:a8:12:98:05:28:a1:6a:d9:
12:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:62:BE:F4:7F:D4:FE:24:B9:F5:4C:C7:33:21:59:86:55:CC:34:EF
X509v3 Authority Key Identifier:
keyid:68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:d0:01:95:69:e9:e9:85:ad:73:3f:1b:6c:2c:5b:55:d6:a4:
41:e3:71:51:7c:05:55:62:33:73:52:bb:91:df:90:54:38:ba:
21:5c:c5:3e:c4:67:0b:18:68:c0:af:d6:ed:c7:74:75:30:65:
92:c8:d8:75:05:60:c2:93:59:cd:d3:e4:a5:71:6b:c1:8f:6b:
96:96:fa:98:65:b1:38:e3:b9:aa:22:c4:cb:01:88:8e:95:c4:
42:68:ae:73:0a:9f:1a:34:36:50:18:a7:6d:c2:a9:c5:3b:f5:
95:c9:03:cf:ee:d8:53:c9:76:19:8b:52:5e:49:6d:6b:5d:b6:
86:fd:bb:83:06:37:f5:0a:c0:38:43:53:d5:3e:23:d4:8d:ed:
4d:6b:31:7f:18:b9:d0:a3:04:de:d4:cf:7e:84:9c:71:fd:6a:
8b:6b:08:a2:48:2f:a4:1d:20:eb:c8:73:56:9a:fa:b5:4d:31:
e4:58:c7:b9:8d:34:02:c0:ef:a5:a1:81:dc:32:07:46:c2:94:
0e:80:eb:3c:0c:0c:44:38:67:cd:41:55:83:6d:7a:c0:02:d7:
f5:2f:25:1e:09:56:3f:8d:2a:6b:07:2b:42:30:4e:8b:fe:fc:
d2:e4:c0:a8:57:ad:51:f3:81:07:55:ec:d3:b7:e4:b1:bf:f8:
29:0e:61:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:05:31 2025 by rpki-client