
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
File: 10AeAklBizV1RyaIJPYkSSXY2zk.mft (raw, json)
Hash identifier: CC/7A8LNnCo4jO+Sn/V2GlFfl2scnXU6MJrWyg1ywa4=
Subject key identifier: 91:D8:5D:3B:D2:EF:92:A4:54:5F:FB:40:13:DD:70:7F:8D:25:50:55
Authority key identifier: D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
Certificate issuer: /CN=d7401e0249418b357547268824f6244925d8db39
Certificate serial: 01975B375EBFB6F3699BF7B2106024493852
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
Manifest number: 0705
Signing time: Tue 10 Jun 2025 19:00:44 +0000
Manifest this update: Tue 10 Jun 2025 19:00:44 +0000
Manifest next update: Wed 11 Jun 2025 19:00:44 +0000
Files and hashes: 1: 10AeAklBizV1RyaIJPYkSSXY2zk.crl (hash: 0Rjry9yGxnkvDTUAih1i4bgPKz9f1UwM07k+K8IHI0M=)
2: Jj1HHZ3M2IWqEVr2BMPp4ypDwcI.roa (hash: cgzJBvOGYHM0ug0D/FFBZa1jcNvWqnCErJy8L2Lko1U=)
3: cBlGJ5bNODNILYzK1oNt3QzAw7M.roa (hash: 7wWvEWZaVuq+kybNFqA4kbf75m0LmBkO8WIx9pDUDFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 14:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:37:5e:bf:b6:f3:69:9b:f7:b2:10:60:24:49:38:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7401e0249418b357547268824f6244925d8db39
Validity
Not Before: Jun 10 19:00:44 2025 GMT
Not After : Jun 11 19:00:44 2025 GMT
Subject: CN=91d85d3bd2ef92a4545ffb4013dd707f8d255055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:79:d7:22:4c:c5:98:b9:6d:0b:43:d6:55:29:
28:92:b8:50:71:1b:f6:cd:81:51:ec:05:3f:c0:79:
64:96:4c:94:09:74:52:44:bc:36:9f:38:0b:17:8b:
37:45:d9:a1:49:63:32:0c:1e:75:14:1d:54:ac:5b:
76:00:fc:c4:26:65:8c:83:22:cf:59:c9:27:95:58:
05:e1:7d:16:2d:4e:cf:a9:fd:40:2c:f6:19:2b:8b:
a0:9a:cd:e4:38:50:3f:20:22:17:ce:02:67:42:16:
a3:69:0f:e2:06:72:f4:9b:9e:a8:91:19:c9:d3:eb:
de:4e:22:67:a5:31:b2:81:2e:ee:aa:b4:5a:a3:5e:
e1:62:84:b1:1e:f2:ec:76:05:24:c5:3c:2e:11:0a:
2f:7a:c9:ea:28:5c:0c:52:df:4a:ee:02:4c:55:38:
1e:77:97:ed:36:41:bd:68:32:c1:ab:61:b7:2b:39:
23:f5:70:ee:80:71:9a:f2:00:cf:eb:24:3f:79:d7:
8e:60:a6:b4:cf:38:0e:a3:d3:20:27:f3:fc:02:03:
e9:ef:c0:26:ef:3a:a6:5a:ab:88:2f:4b:40:8b:2c:
3b:5b:aa:71:2d:87:df:e8:d1:0a:35:b5:70:cf:cb:
f7:f8:b7:3b:b6:ef:15:66:78:2a:64:03:40:f5:1e:
75:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:D8:5D:3B:D2:EF:92:A4:54:5F:FB:40:13:DD:70:7F:8D:25:50:55
X509v3 Authority Key Identifier:
keyid:D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:b4:2d:e4:11:5b:2f:d6:d2:67:b3:c2:8f:73:e9:5b:7b:94:
c6:20:ea:89:74:1d:59:90:76:d9:cd:b3:8f:83:25:5d:ba:09:
2a:4b:f6:56:56:43:0f:22:43:a0:07:32:68:54:2e:64:df:ac:
02:b8:9b:68:c7:89:cf:66:4c:65:50:d3:c2:12:38:7c:fe:c2:
81:c4:1f:53:be:1c:b1:c9:78:67:f3:d1:27:fd:99:bf:f1:d7:
6b:11:d3:ac:d3:c1:2b:17:61:36:ba:68:5e:a3:d8:bd:43:8a:
30:c7:9b:24:5a:f6:8d:da:00:93:87:fc:a8:81:1f:ba:5f:0c:
d9:89:63:48:18:3d:8e:ac:42:ef:80:6e:b5:72:ea:fb:22:27:
52:80:f8:43:44:51:e5:c5:63:54:d0:1a:43:8e:c5:39:a9:e5:
e4:de:84:75:af:7d:16:c6:bc:11:e5:56:d6:75:c5:64:87:0e:
92:8f:c4:2c:cc:ac:7b:e5:bb:e8:1d:d9:1b:90:e1:46:d1:10:
5c:23:05:70:0f:25:62:e7:36:46:be:57:ee:90:43:4d:e5:7d:
30:0e:91:9b:d8:4e:49:41:b3:35:63:84:6f:84:8f:9c:e6:d5:
53:ba:c5:15:6f:23:09:42:c6:4c:5f:08:53:9e:40:52:0a:75:
8d:5c:ee:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 20:57:21 2025 by rpki-client