Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
File: aFeXIsOgywwzUcWV36PX6tgfFr8.mft (raw, json)
Hash identifier: NQesLtzRZiTIwyYGj7io7kAQv/y2gLdtDNR8JFXb6Nk=
Subject key identifier: 1A:E4:17:99:F4:E5:E7:5F:16:46:43:02:FA:C1:D0:FA:44:48:53:40
Authority key identifier: 68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
Certificate issuer: /CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Certificate serial: 019749317B9673757ED5D71C440731134972
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
Manifest number: 1583
Signing time: Sat 07 Jun 2025 07:01:09 +0000
Manifest this update: Sat 07 Jun 2025 07:01:09 +0000
Manifest next update: Sun 08 Jun 2025 07:01:09 +0000
Files and hashes: 1: 5kpPrp0PsQaLwN-0f4M5ORyJaIo.roa (hash: sRLtBcmB7NMgyGt87xrsnTDd/kvjgxEDyhMytt8u1mY=)
2: TEQ2s_TPddXgs2TBHawu_QRXdAY.roa (hash: v8GdY3sNaK+PD8iTL9fBBYBUT72JOPHFN0JrePdltX0=)
3: aFeXIsOgywwzUcWV36PX6tgfFr8.crl (hash: Kqk/7fBDCuz98dZV4Z2ESa/YgqjSoSoKXNgUKenTaF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:7b:96:73:75:7e:d5:d7:1c:44:07:31:13:49:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68579722c3a0cb0c3351c595dfa3d7ead81f16bf
Validity
Not Before: Jun 7 07:01:09 2025 GMT
Not After : Jun 8 07:01:09 2025 GMT
Subject: CN=1ae41799f4e5e75f16464302fac1d0fa44485340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f5:8a:55:48:e9:6c:0b:f8:73:11:38:f1:6f:
cd:60:c6:91:94:eb:0d:3a:bb:b3:36:86:98:40:d2:
db:6c:79:58:f0:be:50:32:c4:b7:4b:6d:db:9d:71:
e8:aa:58:6c:f2:83:12:34:81:c2:70:99:11:ff:b6:
c0:d6:1d:61:59:f1:f1:74:43:86:11:f1:a9:f2:95:
54:f1:5a:19:d7:10:f8:50:ce:4c:24:16:d0:5c:4e:
63:14:67:58:db:4f:34:ef:c9:f7:89:2d:0b:a9:17:
64:fe:0b:85:32:55:44:21:5a:0a:c7:e8:f3:3a:c0:
64:21:ee:e8:8a:13:88:e7:71:46:a3:8f:7d:cb:ac:
e6:48:f9:e3:9f:91:e7:5e:e0:0c:10:49:10:78:91:
e7:25:14:e2:7d:a5:6c:a8:cd:c8:a3:0b:a2:51:fe:
26:e8:72:90:7f:f6:ce:52:d4:98:25:10:11:0b:4d:
ff:e7:86:7e:ed:98:8b:08:44:ea:d3:07:67:09:f0:
0d:e2:bd:e3:5f:69:6f:48:f4:f6:cb:a0:d7:20:40:
c0:24:79:8c:a4:c9:97:62:0e:e5:c2:1f:1e:c7:f6:
9c:4f:1f:41:be:42:f3:9c:df:e4:5f:f1:72:1a:61:
4d:07:36:78:56:11:0c:d5:a5:88:7b:3b:0f:e2:bb:
24:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E4:17:99:F4:E5:E7:5F:16:46:43:02:FA:C1:D0:FA:44:48:53:40
X509v3 Authority Key Identifier:
keyid:68:57:97:22:C3:A0:CB:0C:33:51:C5:95:DF:A3:D7:EA:D8:1F:16:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aFeXIsOgywwzUcWV36PX6tgfFr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/fa836c-1cd3-4ba7-b598-9f5597b56b76/1/aFeXIsOgywwzUcWV36PX6tgfFr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:f4:86:b9:6c:2f:7d:5b:f4:89:81:8c:11:39:aa:49:c2:5f:
fc:df:75:74:52:50:27:a2:cb:2e:7d:18:c6:61:63:b7:87:8f:
8f:3b:97:47:5b:07:c8:7f:ee:f8:a9:bb:d5:d8:a5:95:da:0b:
68:2a:2e:ac:62:a7:5e:fb:33:27:5a:10:30:b9:5b:5b:7f:dc:
3d:fa:94:b2:ea:62:a9:d2:42:3c:2f:4c:8c:12:c6:40:96:42:
af:44:a7:44:86:21:3f:e0:02:67:c4:d2:11:0e:e7:1e:71:35:
eb:c8:d6:a5:5a:e9:12:fe:9d:2a:de:63:8d:c6:e6:3f:9f:72:
26:a2:51:a4:01:d1:cf:8c:aa:e8:00:94:3a:0d:ac:7b:e0:a1:
b3:1e:bf:9f:cb:55:f5:f9:87:e5:9f:22:5a:d4:8b:fd:83:a9:
49:fb:5c:58:93:c3:ae:4a:00:3b:93:eb:e7:75:94:a7:61:10:
8d:13:2f:b2:86:e9:ad:cb:9b:12:34:68:41:93:cc:e5:5e:b6:
10:c5:b4:3d:14:df:d4:53:11:00:7c:31:a6:f4:0b:ad:db:e8:
65:5e:14:f0:07:20:51:9c:a2:fd:26:13:ad:5d:7a:d9:75:3c:
76:39:df:3b:fb:48:1b:ae:48:ce:8b:b0:7b:9c:22:3a:b0:a0:
eb:4e:f7:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:42:03 2025 by rpki-client