Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.mft
File: aP4jOevgl_9pirMOW2PswhoqI6s.mft (raw, json)
Hash identifier: 5I83hokEgBq73Lih/gmclpxm6NfaJscsfjHCNCQo6+4=
Subject key identifier: 59:F8:66:51:56:4E:F5:C4:CA:AF:58:3D:89:87:A9:F7:B1:FD:7E:E8
Authority key identifier: 68:FE:23:39:EB:E0:97:FF:69:8A:B3:0E:5B:63:EC:C2:1A:2A:23:AB
Certificate issuer: /CN=68fe2339ebe097ff698ab30e5b63ecc21a2a23ab
Certificate serial: 0197469DC1D74EA00E478E17D7FF655A457C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aP4jOevgl_9pirMOW2PswhoqI6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.mft
Manifest number: 0443
Signing time: Fri 06 Jun 2025 19:00:33 +0000
Manifest this update: Fri 06 Jun 2025 19:00:33 +0000
Manifest next update: Sat 07 Jun 2025 19:00:33 +0000
Files and hashes: 1: 9V1tND3zl52dvTGUP5zkoYgjSzk.roa (hash: ZFwBT8PQBALn0UQygkKFbmysfnKpnWDyHSFsXkqI3os=)
2: aP4jOevgl_9pirMOW2PswhoqI6s.crl (hash: fH8WtYLnxfL0mBhrnxR7YdmcqSVee0wcjd0DnyCefA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/aP4jOevgl_9pirMOW2PswhoqI6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9d:c1:d7:4e:a0:0e:47:8e:17:d7:ff:65:5a:45:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68fe2339ebe097ff698ab30e5b63ecc21a2a23ab
Validity
Not Before: Jun 6 19:00:33 2025 GMT
Not After : Jun 7 19:00:33 2025 GMT
Subject: CN=59f86651564ef5c4caaf583d8987a9f7b1fd7ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:50:7f:7f:86:17:c2:90:77:5f:ff:60:f2:b1:
2a:4c:ee:d0:e1:03:09:96:2a:9d:00:77:00:21:b7:
f5:02:df:ba:98:23:61:83:0e:d9:cb:c7:23:a5:d9:
bf:9a:46:e4:64:ac:2c:ea:ed:1c:00:d0:6c:cf:86:
e1:a6:57:c9:c4:a5:97:db:d7:53:40:2f:1d:0e:21:
13:9e:3f:71:0f:68:2d:cd:da:c8:ee:e8:0e:aa:bb:
01:20:76:2d:bb:5e:a7:ad:c4:09:d5:c7:2d:de:4a:
7d:9a:3a:4d:d4:87:68:5d:2f:f6:95:bf:22:c8:27:
f8:0c:c5:e9:6f:8d:4f:b2:8a:fc:3f:5b:35:1a:f0:
13:09:15:46:0a:26:db:72:d6:e1:b2:7d:75:47:cd:
44:23:c3:e3:1c:68:61:c3:92:63:de:04:23:c4:7f:
8c:d3:8e:68:aa:71:0a:4d:90:e6:9d:15:58:99:a7:
4f:90:39:d9:e4:b9:0b:d2:25:de:ee:ef:32:11:51:
f6:ec:5e:fa:5c:0d:43:56:83:f8:64:15:9b:f1:79:
bf:05:85:42:7d:a7:c0:17:2c:a2:6f:a7:e3:98:e4:
f7:9c:89:0c:78:55:33:67:c9:2f:33:d7:7f:c0:9c:
80:70:b3:0a:47:26:4a:63:92:02:ce:06:c1:ed:42:
d3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F8:66:51:56:4E:F5:C4:CA:AF:58:3D:89:87:A9:F7:B1:FD:7E:E8
X509v3 Authority Key Identifier:
keyid:68:FE:23:39:EB:E0:97:FF:69:8A:B3:0E:5B:63:EC:C2:1A:2A:23:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aP4jOevgl_9pirMOW2PswhoqI6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e7e0d8-cf2b-4e15-af27-eea8af1434d9/1/aP4jOevgl_9pirMOW2PswhoqI6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:ed:52:22:a6:bb:8e:6c:10:b1:b4:dc:43:44:94:ec:fb:c1:
ae:86:db:60:7e:01:65:8d:11:75:fe:c9:eb:9a:77:c7:cd:6c:
6c:ba:a1:48:a6:65:25:f8:6b:ad:75:02:44:d1:2a:77:c7:31:
cc:bd:fd:91:34:c0:11:f8:0a:ac:cc:d7:72:76:3b:68:a9:7c:
bd:9b:1b:9f:1b:c5:04:23:83:fb:29:09:9c:cd:f7:e4:54:5c:
01:6a:73:6a:4a:a1:36:09:92:58:a2:59:b5:af:fc:ba:9e:6f:
c2:55:04:12:62:82:4c:fb:02:c3:bc:65:64:08:6d:f2:1d:a4:
cb:07:44:99:5c:ef:7f:ce:f2:df:8f:8d:55:5f:8c:13:17:7d:
94:7c:32:07:c4:ae:02:cc:16:c3:41:74:b9:69:0c:90:89:3f:
a6:bc:86:fc:d2:70:1e:7a:43:c2:82:48:5a:94:5e:2e:48:64:
e4:0d:a5:4b:7a:5d:5a:f1:f3:56:d5:99:82:a9:d2:2f:f6:51:
5c:41:c5:9d:c3:2e:a8:c7:c4:ff:82:5f:2e:f6:34:c7:fc:3c:
4e:cc:9e:84:b2:d9:ae:08:c8:1e:33:89:b5:ca:b6:36:34:22:
b8:93:d4:7e:55:fd:f4:ad:dd:e0:30:f6:1c:43:9f:b1:1d:12:
9d:ac:f0:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 04:00:45 2025 by rpki-client