Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json)
Hash identifier: jwBJkuJHAyofp8P2wZitTJPGz2RWb8D4oaOdLSO7SPs=
Subject key identifier: 77:98:E9:A6:0A:F3:CF:8A:2B:8B:D9:86:74:91:80:B8:0F:B7:62:16
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 01973A6317B35013AEAD93DEB9532169D26F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
Manifest number: 1574
Signing time: Wed 04 Jun 2025 10:01:02 +0000
Manifest this update: Wed 04 Jun 2025 10:01:02 +0000
Manifest next update: Thu 05 Jun 2025 10:01:02 +0000
Files and hashes: 1: G3jkppDUZ7UShIbg3wj67wwITjQ.roa (hash: IM9aMDCOjn2pDhh5r2plZvteAbzhdwZ0L/lTf4RJayk=)
2: Tz1CIM1JoghruWTN6nGpazj8zTs.roa (hash: VV/wpFoAA0PEYjeaECSEYgoe19Q1uDYWZTbwDnhLY+0=)
3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: xKDMwUdFeDq0yOY9S28bhDCPzkMReaixaEziHFdCQvY=)
4: qOyspdHf0vEJQuyvIz0XkgRHk_0.roa (hash: yR7LTFxNYmFcq/nxWYOH7mZupl2rRRW8SrPwUWcJB0k=)
5: uiGdfZv36ngdlEPtH0Dctu5_0kI.roa (hash: kwlBzu/ziaLKG7neS7FV84L3FCZ7YdUCR1fgHvPBMoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:3a:63:17:b3:50:13:ae:ad:93:de:b9:53:21:69:d2:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: Jun 4 10:01:02 2025 GMT
Not After : Jun 5 10:01:02 2025 GMT
Subject: CN=7798e9a60af3cf8a2b8bd986749180b80fb76216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:46:67:33:86:0b:6e:c0:d3:ad:31:05:b7:66:
a6:cd:4b:82:cf:0f:6c:6a:40:29:14:76:4e:dd:a2:
f7:75:96:90:f3:1e:56:86:8d:87:8c:91:c7:77:93:
1c:bc:ee:bd:06:ce:c2:e7:e1:e1:c9:de:88:c2:91:
30:79:cf:ab:e9:81:a2:81:8b:02:33:a5:63:08:20:
3e:85:51:6c:80:28:27:b4:b7:13:a2:70:08:0f:9e:
bd:8e:1f:d1:d2:b1:61:26:55:70:c7:5d:4d:1c:05:
59:49:95:3f:23:d0:47:59:04:19:b5:d6:95:df:2a:
89:d4:2a:53:46:bd:0b:4c:18:79:c0:4f:7a:ec:79:
16:05:e7:d3:cf:ab:5d:17:20:d2:6f:b5:57:39:6a:
a8:20:4c:52:f2:45:69:3d:52:d5:18:c5:0f:c1:a7:
9c:02:8b:25:5c:9e:2b:74:b1:5a:89:ab:02:21:62:
0a:00:f0:5e:26:23:16:9e:55:90:bd:fe:95:67:99:
ca:3a:26:3b:0b:02:6f:7f:53:76:0c:a6:4b:c9:75:
68:d5:86:3d:6a:74:26:81:e0:f4:65:35:b9:04:e5:
1f:00:57:46:90:27:b6:27:fd:6f:e9:41:82:74:cb:
d0:d9:69:9a:13:06:b9:70:99:09:1f:e8:03:18:e8:
cb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:98:E9:A6:0A:F3:CF:8A:2B:8B:D9:86:74:91:80:B8:0F:B7:62:16
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:4d:0f:11:2e:c3:bf:02:ca:ff:49:22:ea:2b:77:34:65:6d:
6a:6f:3e:a0:9b:4a:39:6b:7c:ce:8d:8f:89:e5:d9:96:02:20:
0b:e0:a5:ca:39:7c:a7:88:f7:b7:59:46:34:ad:44:f0:45:02:
c6:93:c8:c7:34:81:3b:42:fe:41:7e:7d:7f:71:bb:d0:dd:b0:
01:27:e3:33:ca:61:f0:1b:56:1b:0f:f6:37:96:12:ac:bd:c0:
15:a3:fa:bd:84:e8:43:3b:c1:5d:e7:81:b2:7b:a1:fe:bd:14:
25:f2:7a:df:31:44:f7:1b:69:7c:7c:5e:f5:fa:ef:f7:60:43:
9d:2e:c8:fd:99:4b:80:6b:df:13:6d:14:44:61:1d:59:c3:3f:
83:73:29:e1:7e:c3:9a:63:25:bc:e8:20:14:0c:01:79:a7:e6:
e0:00:71:aa:bd:ef:bc:c4:34:52:ef:09:cb:46:89:42:c0:65:
3b:7e:d8:73:5b:47:05:4f:11:d6:7d:4c:25:28:33:44:72:e8:
d4:ae:10:35:5f:eb:39:dc:d4:db:ce:fc:c2:6a:20:82:3f:17:
a7:44:fb:4e:cd:d4:5e:7e:87:fd:a1:0d:18:7c:4e:77:c6:5c:
f3:93:03:29:e8:85:a7:32:70:f3:b2:f3:3f:52:d8:13:bb:d2:
20:f1:b4:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 12:19:46 2025 by rpki-client