Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
File: aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft (raw, json)
Hash identifier: OUoVEe1YQIFqszRu6hPmtS6SZ13hGrio6D4NFY0UZFM=
Subject key identifier: B3:68:64:8C:43:5F:06:B8:6A:E7:19:EE:15:0F:30:B5:4F:38:B8:AD
Authority key identifier: 69:8D:47:BE:DF:84:89:AA:02:D3:DB:46:F9:8B:4F:7A:26:4B:48:0A
Certificate issuer: /CN=698d47bedf8489aa02d3db46f98b4f7a264b480a
Certificate serial: 019754FE076638AD229E6561D70C1CC5359D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
Manifest number: 1511
Signing time: Mon 09 Jun 2025 14:00:23 +0000
Manifest this update: Mon 09 Jun 2025 14:00:23 +0000
Manifest next update: Tue 10 Jun 2025 14:00:23 +0000
Files and hashes: 1: aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl (hash: 5ekjPL2fvXthzw6HLK6JkbSXPDfMrkSUaC2pT35Z8Fg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 14:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:fe:07:66:38:ad:22:9e:65:61:d7:0c:1c:c5:35:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=698d47bedf8489aa02d3db46f98b4f7a264b480a
Validity
Not Before: Jun 9 14:00:23 2025 GMT
Not After : Jun 10 14:00:23 2025 GMT
Subject: CN=b368648c435f06b86ae719ee150f30b54f38b8ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:53:b9:d9:48:e7:aa:48:76:25:92:85:df:2d:
97:44:bb:ba:88:f0:fd:d1:92:59:ee:46:ef:dc:9f:
a5:7f:4e:59:6a:e3:e3:33:01:3d:16:d4:6a:00:a3:
ac:05:91:b3:31:f8:f3:3b:b9:10:3e:64:6a:6d:7c:
5f:14:33:43:b5:0a:4f:f2:35:6b:9c:1d:ae:1e:ab:
ec:24:a9:dc:49:5b:29:e8:2c:25:79:28:87:a6:dd:
4c:12:12:81:67:12:7d:4f:89:ca:2d:c0:fc:c2:94:
9d:55:fe:c9:77:1d:a2:94:47:8a:d1:c4:12:8e:00:
42:35:b3:dd:cd:46:70:db:d0:60:57:9d:9e:cf:79:
a3:a0:3a:ed:b9:57:46:df:42:78:d6:08:6d:1b:75:
c3:2c:76:8f:bf:8b:c4:06:9c:96:fd:f4:de:fe:1c:
41:df:18:02:2c:4c:01:ec:56:32:66:ac:4d:f6:a9:
8d:08:92:98:83:64:a9:a9:0a:1f:25:2d:57:5d:d6:
cb:fd:c8:f2:b5:0d:66:4b:f8:b3:4a:ff:91:80:7c:
f0:a6:3a:0b:6e:68:83:a7:76:64:e5:31:05:ca:b3:
44:dc:b6:42:c7:f1:6e:3a:35:33:55:b3:07:6d:62:
4d:e3:c6:3f:cb:02:b6:3a:6e:d8:5b:77:66:10:a5:
c5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:68:64:8C:43:5F:06:B8:6A:E7:19:EE:15:0F:30:B5:4F:38:B8:AD
X509v3 Authority Key Identifier:
keyid:69:8D:47:BE:DF:84:89:AA:02:D3:DB:46:F9:8B:4F:7A:26:4B:48:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:0c:75:80:54:68:8b:77:ca:65:7c:54:1f:8c:94:e6:a3:d7:
a4:68:d1:2d:a2:1d:f5:f3:cc:7a:f3:44:e1:7e:5b:69:27:5c:
a8:b4:18:db:72:04:2b:c1:2b:3b:3e:10:30:6e:47:69:cd:e7:
a8:00:02:16:52:28:85:b8:e8:7f:06:81:4c:7c:bb:0c:f5:7b:
eb:db:1e:5e:4b:2c:50:71:4e:38:6b:65:22:45:d8:51:50:94:
2d:8d:45:06:6d:20:d3:49:64:bb:88:44:87:8c:31:40:3a:54:
09:06:13:8f:d0:fd:42:81:6f:8e:00:41:d2:50:a9:bb:32:ee:
2b:2c:d3:42:49:fe:35:5c:0a:a5:c2:f0:3d:c4:33:47:4b:01:
10:74:f2:7c:fb:08:ff:04:49:e8:c1:89:d2:80:62:3b:8e:0f:
8d:4a:14:65:6f:d8:39:21:c2:20:f0:15:f2:54:ef:a2:bf:d0:
53:61:05:f7:b4:60:cc:fb:7f:13:cd:0a:25:bc:df:f7:b6:60:
65:2c:e7:c0:38:bc:49:40:fa:17:ef:18:92:3b:15:df:89:ec:
13:2f:32:27:50:7d:4c:87:12:7b:66:7f:a4:03:b5:ad:a6:39:
f7:5c:04:5f:62:a0:7d:a4:ff:94:e9:41:ad:d7:06:95:49:c4:
1b:09:2f:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 23:40:54 2025 by rpki-client