Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
File: aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft (raw, json)
Hash identifier: 1a1cwKM5Loy3Qd8/651FgYjLqee40l3Nf2rMUzdLyXw=
Subject key identifier: C8:E0:8C:A6:55:DD:55:00:A7:38:8D:7B:65:F3:92:7A:2C:46:BD:B2
Authority key identifier: 68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
Certificate issuer: /CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Certificate serial: 01974E8E465B233AC467E375A6CBAF3E42CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
Manifest number: 147D
Signing time: Sun 08 Jun 2025 08:00:36 +0000
Manifest this update: Sun 08 Jun 2025 08:00:36 +0000
Manifest next update: Mon 09 Jun 2025 08:00:36 +0000
Files and hashes: 1: aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl (hash: zx17nwKlZ1QNVWVA3a5B8URQ6qCePyddwSAGrPvnOuU=)
2: cMnqdtCxCnyUSWOfUxTVBWPspak.roa (hash: OOJ4v4cc4LujDvo5fdL7b0ZauPjg9CekPa/sj+wo+LE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:8e:46:5b:23:3a:c4:67:e3:75:a6:cb:af:3e:42:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Validity
Not Before: Jun 8 08:00:36 2025 GMT
Not After : Jun 9 08:00:36 2025 GMT
Subject: CN=c8e08ca655dd5500a7388d7b65f3927a2c46bdb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7b:fe:85:a7:8c:78:3a:01:b5:6c:25:0b:1a:
9e:51:76:da:11:84:66:91:22:3b:4e:34:33:5f:a6:
04:49:4b:02:fa:dc:0b:98:46:4d:d7:7f:95:0c:ac:
ed:aa:8d:ce:a7:73:c6:e3:74:18:12:e7:67:c7:29:
1d:fc:40:b6:87:4c:e6:8b:57:5f:a4:a0:1e:de:11:
4a:1c:6c:4b:dc:c2:fa:4e:7e:dd:eb:19:93:f9:ca:
e4:14:02:99:4b:b7:5e:65:0c:3b:29:7f:87:0d:18:
ed:88:71:eb:f7:54:35:b9:96:8b:ba:41:53:b1:b7:
e1:02:7b:a9:04:e5:e8:ce:d6:f3:a6:4d:07:b7:16:
1e:f8:e7:bb:4b:2c:71:d8:35:63:3b:f2:9a:63:7c:
4e:45:c5:87:88:5e:31:bf:ce:02:a5:81:8a:3c:44:
1a:20:35:fd:21:08:19:ef:74:45:e6:04:35:a1:7b:
8f:34:f2:54:71:99:89:d6:79:82:9f:34:72:8e:3c:
58:b0:7b:b9:3d:56:81:91:7f:ae:1c:fc:93:ba:9e:
f0:98:c1:f9:d0:44:96:a5:15:cf:3e:16:d6:d5:df:
93:84:e5:ff:80:08:73:61:08:95:16:11:2b:48:1c:
c6:cd:df:eb:d5:57:e3:f5:99:ea:22:14:2a:70:68:
b4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E0:8C:A6:55:DD:55:00:A7:38:8D:7B:65:F3:92:7A:2C:46:BD:B2
X509v3 Authority Key Identifier:
keyid:68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:d5:41:51:b2:7a:1c:e6:9f:1b:18:8c:c7:5f:25:a8:41:14:
59:69:c0:80:dc:7f:ce:9b:31:d3:d1:8a:85:04:55:e4:45:18:
22:41:e9:37:b6:0e:6a:b1:4a:56:de:2b:f3:a9:58:a7:be:e0:
b7:4b:a2:34:5c:5c:61:2f:93:05:c1:b2:46:4c:ce:01:ea:69:
ed:04:2b:5a:fa:60:e4:62:fe:18:02:65:08:b2:ed:1d:2e:d8:
84:94:61:f4:e7:04:e0:97:90:8b:bf:15:e9:25:67:a9:8d:e4:
7e:d8:a9:b8:7c:c9:2a:ea:99:62:72:39:2f:7a:8b:da:23:45:
6e:b3:a2:f2:b8:af:d2:df:1a:63:6e:ae:e6:8b:93:35:85:3a:
7f:a8:df:91:8d:86:45:56:2a:ca:d2:c6:b4:c6:98:09:70:d4:
9b:d7:14:c7:28:b3:b4:ad:ed:5f:29:ec:94:94:a5:8b:7e:7c:
ff:88:a7:a7:ec:59:9f:46:b5:1e:b1:4f:55:98:0f:0f:7f:32:
05:ef:fd:02:c9:49:35:8d:1f:1a:b3:7d:ad:f4:54:99:42:77:
b1:64:9f:40:d5:9c:57:63:cb:e3:b1:fb:18:49:7c:51:a3:b4:
14:fd:f0:74:52:7a:fe:3e:16:61:08:ba:71:0e:6c:de:3e:e8:
d5:06:a5:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:31:18 2025 by rpki-client