
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
File: 10AeAklBizV1RyaIJPYkSSXY2zk.mft (raw, json)
Hash identifier: LL+EgO9dw3ixtizQ/WVl5doatTaSx9KnG8AJ4znF38I=
Subject key identifier: E3:57:29:55:07:C7:69:27:9D:C0:19:C7:F5:EB:6E:4C:24:1B:61:42
Authority key identifier: D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
Certificate issuer: /CN=d7401e0249418b357547268824f6244925d8db39
Certificate serial: 01975F142A52E39F5DD0DEFF6B0360E6012E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
Manifest number: 0707
Signing time: Wed 11 Jun 2025 13:00:46 +0000
Manifest this update: Wed 11 Jun 2025 13:00:46 +0000
Manifest next update: Thu 12 Jun 2025 13:00:46 +0000
Files and hashes: 1: 10AeAklBizV1RyaIJPYkSSXY2zk.crl (hash: svqO05+q7eWeZxynm/6KT4Jp7tV6tDNGjkl9Z9k3EUw=)
2: Jj1HHZ3M2IWqEVr2BMPp4ypDwcI.roa (hash: cgzJBvOGYHM0ug0D/FFBZa1jcNvWqnCErJy8L2Lko1U=)
3: cBlGJ5bNODNILYzK1oNt3QzAw7M.roa (hash: 7wWvEWZaVuq+kybNFqA4kbf75m0LmBkO8WIx9pDUDFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 13:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:14:2a:52:e3:9f:5d:d0:de:ff:6b:03:60:e6:01:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7401e0249418b357547268824f6244925d8db39
Validity
Not Before: Jun 11 13:00:46 2025 GMT
Not After : Jun 12 13:00:46 2025 GMT
Subject: CN=e357295507c769279dc019c7f5eb6e4c241b6142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:28:29:c3:4e:22:fd:75:d6:3d:ff:d7:c7:7e:
fe:e1:38:44:56:56:09:15:9f:df:63:11:69:e4:f8:
26:8f:d1:86:53:09:13:c9:aa:dd:01:fb:6c:53:40:
2f:5f:67:d6:e3:b1:6c:91:0c:40:f1:38:66:be:60:
0f:27:9d:24:a8:ee:73:fa:7d:da:2e:d4:32:cc:b3:
8b:84:19:cd:0d:8a:30:73:72:af:44:c7:1b:d8:ef:
c0:ee:ce:7e:27:cd:6e:9a:ca:da:80:12:30:9c:1e:
f3:a5:70:06:3a:dd:90:40:80:db:ec:1f:af:b1:69:
88:34:d3:73:92:60:13:b6:f8:d0:8d:94:db:f3:43:
11:65:0c:6e:d1:1e:99:3c:81:b6:03:53:ff:42:3a:
fe:9f:82:65:a0:21:50:81:e4:4d:35:66:50:10:e6:
19:30:38:db:b6:81:0a:8d:e9:90:14:9b:46:f0:73:
f2:e7:a6:be:fc:f3:cf:a6:d3:dd:6d:4e:b4:3b:cf:
28:65:44:7f:40:86:c2:50:5c:35:96:bb:0e:06:64:
eb:67:63:d2:3b:7f:a5:64:e6:2d:8c:04:00:bb:30:
ae:48:d8:6d:08:d8:20:f0:a3:30:e4:1b:9c:23:a7:
5c:75:e5:05:eb:6b:a9:79:2b:bd:0d:20:5f:4a:14:
20:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:57:29:55:07:C7:69:27:9D:C0:19:C7:F5:EB:6E:4C:24:1B:61:42
X509v3 Authority Key Identifier:
keyid:D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:5b:3c:41:6e:0d:d8:e4:ef:9a:35:89:85:d1:c9:20:8b:f0:
c3:81:f5:f0:5f:43:d2:cc:9f:9c:31:d6:f0:58:07:25:0f:19:
75:19:6e:f1:1a:e7:04:97:f9:21:0e:cc:4a:bf:65:c1:f7:eb:
1d:6b:55:c2:83:ec:bc:6b:df:15:3f:20:78:ea:22:15:9d:de:
9c:51:32:fa:9f:13:53:3e:8a:14:32:9e:2a:82:98:f4:32:2f:
5c:c4:8f:77:d3:4d:a9:03:4c:2e:b7:0e:79:b3:36:14:20:29:
8e:5a:50:93:c2:f0:43:35:ad:ed:85:9e:02:c2:16:b2:1f:b3:
a7:87:92:4b:70:a0:85:ed:07:3a:b4:4c:a7:43:be:3f:25:58:
f8:8c:ce:d5:ae:3a:95:80:fe:09:e5:3e:58:2a:05:b8:87:e0:
c3:e8:67:37:ab:9c:0e:80:c9:7b:e4:0f:80:da:04:7d:08:e7:
55:81:67:ee:5c:21:00:47:ec:4f:a2:90:54:7e:55:0c:62:bc:
bb:14:01:3e:92:e3:a7:a3:8b:46:7c:72:f1:37:25:16:ee:0d:
36:09:4c:7c:03:8e:f7:7d:d4:87:21:ab:ed:09:bf:75:df:39:
2b:24:ba:c7:01:af:14:a6:7a:8f:39:bf:6b:62:f0:2f:2c:5f:
80:aa:47:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 20:41:21 2025 by rpki-client