Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
File: aCMaUAoKgQjcekNYsQArH9vweZU.mft (raw, json)
Hash identifier: h0zo2jW0x7NY0ww3WdZdcsJWzuAxqGklI/VBJvEpPPs=
Subject key identifier: 03:A2:69:48:08:02:70:73:72:DB:D5:C2:6F:50:15:08:50:B9:7F:E0
Authority key identifier: 68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
Certificate issuer: /CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Certificate serial: 01974CA02502549EBC29506933452F8BF285
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 23:00:52 +0000
Manifest this update: Sat 07 Jun 2025 23:00:52 +0000
Manifest next update: Sun 08 Jun 2025 23:00:52 +0000
Files and hashes: 1: XSGE2n2dKWY3M_jq3MngIc3i_t8.roa (hash: pwMRSRLzn3jyPbMLShLv8HDNQd5Gm8ws1AjCFBEAHaU=)
2: aCMaUAoKgQjcekNYsQArH9vweZU.crl (hash: s1dLxC39csmiMwa65HpnxdxiGMoyM65jwR2/BhGIe0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:a0:25:02:54:9e:bc:29:50:69:33:45:2f:8b:f2:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Validity
Not Before: Jun 7 23:00:52 2025 GMT
Not After : Jun 8 23:00:52 2025 GMT
Subject: CN=03a269480802707372dbd5c26f50150850b97fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:24:7c:79:e3:0f:ad:5c:00:44:11:96:7a:04:
30:66:05:43:73:c7:21:fb:02:38:60:9a:c4:36:15:
f0:c0:f0:2e:c6:6d:9b:dd:d2:d1:3d:8f:52:d9:5e:
ff:3a:7c:42:43:53:4b:e3:26:f3:6d:23:60:92:4b:
32:1c:ae:91:49:db:b3:76:4c:06:dc:81:83:d4:e5:
fc:b5:d6:83:88:23:1a:b6:83:92:29:ab:ca:4a:f2:
db:0f:08:a9:76:54:c7:5b:46:11:3a:a2:b8:2b:66:
80:92:67:98:83:55:e2:17:5c:ef:46:e7:3c:af:3e:
c9:ba:2d:0f:05:7e:2e:e1:a5:bf:53:d9:a1:68:a2:
30:39:39:17:b8:82:97:e0:20:83:c5:f8:a8:7b:d6:
33:98:9c:fe:6e:c9:10:32:7e:8f:9b:12:89:19:76:
fc:58:6b:5d:53:89:ea:13:05:76:fa:92:a5:79:cc:
9f:8c:a8:a9:eb:8c:37:a9:a2:67:d4:d7:45:0d:00:
00:8b:8f:00:76:7d:f7:99:70:86:4c:6d:c3:45:a1:
8b:24:95:d8:1c:e3:ae:c8:e8:f6:1c:62:8a:3b:73:
b4:a6:a6:32:33:7d:16:02:a0:ea:1d:0c:2b:54:72:
64:50:d5:4b:ca:42:7e:b0:5a:4d:d9:69:ea:f2:a2:
16:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A2:69:48:08:02:70:73:72:DB:D5:C2:6F:50:15:08:50:B9:7F:E0
X509v3 Authority Key Identifier:
keyid:68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:bd:c9:04:f9:03:83:bb:44:f3:e0:2a:7d:d5:05:3e:f4:b3:
2e:f8:a8:2d:0e:9f:5b:e5:c3:2a:02:f8:73:e5:58:03:c9:50:
81:0d:28:8f:9e:6b:b3:11:40:ad:a9:97:12:11:9f:4b:cb:e4:
ee:8a:8a:2c:11:32:2d:d4:14:69:2f:df:36:da:8a:69:c2:c6:
eb:ed:e8:09:c6:1d:85:37:5b:a8:72:d5:0b:49:3b:5a:da:9f:
51:1d:f4:8b:85:03:73:6d:d9:7b:3d:86:5a:a0:37:97:d1:f9:
99:0e:d0:8f:02:79:87:ae:03:b8:cf:bf:22:c4:c1:82:b1:1c:
e1:08:db:ed:73:b4:c4:53:09:95:72:3d:1f:74:f8:1e:51:ea:
b6:1c:3e:fa:49:e6:c6:f7:57:1f:45:9b:af:46:96:c7:31:e1:
cb:4a:2e:75:9c:b1:4d:4e:f5:38:10:21:05:68:8c:b6:4a:06:
ec:8d:9c:f6:92:75:e6:29:2b:63:e8:ae:d4:bc:b4:ee:03:7c:
e9:e3:41:da:e0:14:5b:9d:6a:7c:32:a6:e1:b8:7e:4b:63:52:
aa:25:2f:9d:da:c3:d0:7e:24:db:9b:e9:d1:c9:37:03:db:f2:
1c:80:ef:e0:73:91:ec:70:a9:32:d9:02:7b:29:47:e4:b9:65:
95:17:31:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:10:21 2025 by rpki-client