Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json)
Hash identifier: 6wz+jw6jsJimntN8k8Swqwq8K0XEZxM2YWt2DxBiOpk=
Subject key identifier: 59:6B:82:C2:AF:A1:1E:8B:FF:5A:7A:B1:7C:98:3E:C2:C8:32:04:AE
Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Certificate serial: 0197488C18D517265F338EACA84322924437
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
Manifest number: 0821
Signing time: Sat 07 Jun 2025 04:00:30 +0000
Manifest this update: Sat 07 Jun 2025 04:00:30 +0000
Manifest next update: Sun 08 Jun 2025 04:00:30 +0000
Files and hashes: 1: 1YtqoFQLtfGDiVmHDelz4DRg3EU.roa (hash: IK9E4boh47Pzwtuw3Las8hTZNUl+rwA5t6hlkkr2bx4=)
2: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: /FuP6hNh/yhWDsGf4hTL5NjGJMYLlKyeYez2gSaNdKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:18:d5:17:26:5f:33:8e:ac:a8:43:22:92:44:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Validity
Not Before: Jun 7 04:00:30 2025 GMT
Not After : Jun 8 04:00:30 2025 GMT
Subject: CN=596b82c2afa11e8bff5a7ab17c983ec2c83204ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:37:bd:b8:a3:97:8c:22:83:8c:43:f9:1e:24:
50:cc:03:a4:24:ce:20:11:54:9a:bc:39:f3:98:33:
a2:3b:0e:cd:a4:20:d0:70:2c:a6:34:4d:35:e9:d5:
e5:26:c3:19:af:83:74:14:33:56:17:5c:45:5d:8c:
47:6f:ec:0d:72:f1:ac:0e:00:a8:e6:d5:a0:a2:58:
15:43:60:4c:db:4e:77:17:6d:fc:6d:83:71:86:42:
07:da:31:12:16:78:de:69:4a:25:b9:5e:79:6e:62:
bc:7a:b0:dc:4e:af:b9:92:f6:bd:26:7a:f6:31:7d:
16:3c:d1:64:2a:7b:46:f6:73:fb:5e:57:d7:db:bf:
58:69:06:7e:b1:5e:07:bf:3a:5f:44:02:a8:fa:0a:
86:dd:7f:b0:c7:99:ad:a3:9a:e1:59:30:92:5d:b3:
f8:32:ef:b2:9a:03:38:b3:45:8a:32:29:32:00:17:
62:95:0b:8c:b2:4a:72:c8:49:14:8a:25:cf:28:f5:
d3:7b:ef:d0:c0:b3:08:a8:dd:df:b4:be:16:c6:d0:
3a:71:19:52:bc:49:fe:84:01:59:ff:53:4a:d9:79:
14:6c:11:48:c0:5e:a6:18:69:99:e5:85:4f:e4:3d:
35:0c:4e:50:73:c6:91:5c:a9:06:6a:08:09:1a:2e:
8f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:6B:82:C2:AF:A1:1E:8B:FF:5A:7A:B1:7C:98:3E:C2:C8:32:04:AE
X509v3 Authority Key Identifier:
keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:b3:bd:7f:a4:a5:bb:c7:ca:e3:39:1d:31:9f:f2:79:df:9e:
b3:7f:4c:28:22:51:8e:3b:24:87:cc:90:c8:d7:b3:8f:50:9b:
f3:7e:8c:32:f0:69:70:27:4e:d8:28:28:7a:0f:ca:73:0a:cf:
13:72:f5:34:b1:d4:48:20:45:0a:9c:76:53:75:9e:e1:8c:6b:
f2:cd:59:19:d0:41:28:46:fd:05:1f:22:49:83:f9:f2:fb:38:
2b:e1:5e:87:48:e2:b9:a9:ba:a2:f4:e5:ec:84:42:a1:10:89:
bc:30:1e:61:39:ec:66:8f:f7:70:dc:10:ee:d3:c7:e5:ab:6d:
97:a7:0a:44:9b:ff:89:99:64:0c:50:d9:86:92:48:10:f5:6f:
19:bc:4e:64:da:b3:a9:3c:08:02:31:af:46:69:5b:9f:7d:ad:
4f:87:cb:b7:15:89:49:fd:70:c6:b3:76:aa:27:18:54:e1:89:
63:ee:0c:06:08:58:09:ee:99:61:04:1e:d9:3b:59:73:3b:d6:
17:a9:b7:41:1f:ca:90:6e:bf:81:4d:51:78:9c:ca:3d:22:20:
31:f6:f2:a9:34:e5:e1:4e:c1:24:f8:73:a6:1f:b4:50:26:14:
c3:3f:8d:36:02:91:02:9b:87:18:49:0f:81:1e:59:a7:a2:77:
39:c5:9b:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:50:29 2025 by rpki-client