Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
File: aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft (raw, json)
Hash identifier: jqFJ4WqMS40LL/oMyNR8xWG65OpnNUAmpEU7oIbtScE=
Subject key identifier: B1:91:FC:26:40:43:01:FE:D0:59:E5:7B:E5:12:B0:1E:A9:31:D9:F7
Authority key identifier: 68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
Certificate issuer: /CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Certificate serial: 019749314A4784B8C1310643A8FA7127C487
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
Manifest number: 053F
Signing time: Sat 07 Jun 2025 07:00:56 +0000
Manifest this update: Sat 07 Jun 2025 07:00:56 +0000
Manifest next update: Sun 08 Jun 2025 07:00:56 +0000
Files and hashes: 1: VftZMAe-HTAVpMfwxes2FDGztqs.roa (hash: KKajIYpdkVhXrGRISoXddoe+7uEBtFz7JC2M/TbIWjs=)
2: aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl (hash: 6rp6IeiNch8UNHwK2GlsqEY1xTlwt8ampkfJWqfBHJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:4a:47:84:b8:c1:31:06:43:a8:fa:71:27:c4:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Validity
Not Before: Jun 7 07:00:56 2025 GMT
Not After : Jun 8 07:00:56 2025 GMT
Subject: CN=b191fc26404301fed059e57be512b01ea931d9f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:78:d1:0e:93:f8:76:ee:b2:63:8b:95:5d:e6:
d1:9b:8d:31:d0:75:2a:7f:1a:98:d9:26:0b:3e:c2:
ee:db:52:47:88:aa:fb:99:76:43:b9:af:c0:ac:9b:
82:60:32:39:b4:f3:96:90:b5:65:01:cc:e2:f3:a9:
13:70:99:ef:f5:6b:2c:d9:9b:85:29:10:55:32:0b:
9d:20:b7:c6:5b:9e:48:9a:ff:87:d6:2f:f1:7d:42:
f0:60:85:7c:2e:ac:01:d1:b1:1a:3a:26:6a:b9:8d:
9c:44:ed:97:51:44:1c:a3:42:87:2b:9a:e0:3b:21:
5d:95:b7:f3:43:64:4e:64:65:dc:74:55:f6:40:c3:
c2:a0:ce:00:b7:1d:3f:a9:83:07:c4:4c:56:ef:15:
8d:f5:cd:d0:7a:6f:63:8a:6c:69:77:9e:5d:fe:b8:
17:a3:8b:a4:7b:5a:85:97:49:56:e3:0e:d2:c1:bb:
2a:53:77:84:6e:4a:7f:65:88:0c:d9:e0:88:56:e6:
63:5f:fa:c9:05:00:51:6f:6a:0b:62:ba:46:b2:0d:
59:4b:ae:b3:9c:66:b1:a1:f7:69:f0:67:fa:57:7a:
e0:c1:0a:28:bc:fc:09:11:36:c9:e1:82:8f:63:cc:
69:18:1c:ba:67:ce:62:36:b3:1a:24:86:66:3e:49:
97:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:91:FC:26:40:43:01:FE:D0:59:E5:7B:E5:12:B0:1E:A9:31:D9:F7
X509v3 Authority Key Identifier:
keyid:68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:4c:47:48:69:07:6a:50:54:57:60:c9:8f:cf:7c:fc:80:eb:
09:69:2b:fe:cf:3e:61:eb:93:9b:3f:c7:d3:7e:43:31:f3:ae:
ff:31:6f:49:32:4b:0c:89:7c:69:34:55:27:7e:15:c1:bf:ee:
b7:46:c1:75:3b:37:a1:5a:1c:df:49:2e:8b:5d:45:7d:81:93:
ad:08:17:e7:2a:26:72:5c:46:92:ef:22:a7:20:f9:8c:33:dc:
ec:82:51:f0:ee:8d:30:c5:85:66:43:24:d7:d2:20:35:42:eb:
12:0a:b1:bb:30:27:37:db:e0:23:92:fe:f2:33:0a:42:61:74:
01:4d:df:7e:14:88:09:66:e6:0d:99:59:31:a8:2a:eb:4f:ae:
db:9b:95:cd:68:62:27:c9:ad:cc:91:93:e1:e1:37:c6:c7:e1:
50:f2:cc:92:9e:94:32:07:6f:41:88:9c:a3:e7:78:3a:ee:9d:
d2:a7:c5:dc:b1:2d:11:ab:af:5e:fd:7e:43:cc:4a:22:d4:f5:
ba:f9:ce:aa:06:1e:70:f3:11:ef:e8:b8:fa:da:c6:e8:cc:87:
d4:66:21:dd:5d:88:90:84:52:40:02:0b:8a:d5:13:1a:f5:18:
2a:c1:fb:a6:95:92:7a:0f:53:b1:f6:ab:3d:66:7c:bc:94:ee:
55:5c:cb:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:43:36 2025 by rpki-client