
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
File: 10AeAklBizV1RyaIJPYkSSXY2zk.mft (raw, json)
Hash identifier: ZSsxP1rUoIl7mZM+zA070bfKiPrScW8BOrNHRTYOLjc=
Subject key identifier: 54:C1:F0:57:00:98:09:5B:38:E5:94:E0:5C:C5:E0:89:CE:F9:37:97
Authority key identifier: D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
Certificate issuer: /CN=d7401e0249418b357547268824f6244925d8db39
Certificate serial: 01976E871C2892ADD8833FC1C92431B80B54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
Manifest number: 070F
Signing time: Sat 14 Jun 2025 13:00:37 +0000
Manifest this update: Sat 14 Jun 2025 13:00:37 +0000
Manifest next update: Sun 15 Jun 2025 13:00:37 +0000
Files and hashes: 1: 10AeAklBizV1RyaIJPYkSSXY2zk.crl (hash: klFdM9+KG/eBF8F4nXv+Ye35lgdtuYtk1hWBpFMy64s=)
2: Jj1HHZ3M2IWqEVr2BMPp4ypDwcI.roa (hash: cgzJBvOGYHM0ug0D/FFBZa1jcNvWqnCErJy8L2Lko1U=)
3: cBlGJ5bNODNILYzK1oNt3QzAw7M.roa (hash: 7wWvEWZaVuq+kybNFqA4kbf75m0LmBkO8WIx9pDUDFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 13:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:87:1c:28:92:ad:d8:83:3f:c1:c9:24:31:b8:0b:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7401e0249418b357547268824f6244925d8db39
Validity
Not Before: Jun 14 13:00:37 2025 GMT
Not After : Jun 15 13:00:37 2025 GMT
Subject: CN=54c1f0570098095b38e594e05cc5e089cef93797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f0:d1:a1:ae:dc:e1:a9:e4:0f:3f:1b:7c:e7:
0d:30:db:91:b5:ee:35:4c:ee:f0:b1:95:f7:e1:aa:
08:28:60:b6:ac:c8:76:92:58:af:37:ee:74:b5:b2:
55:55:01:43:c6:c4:7b:ef:9f:34:ef:c4:b6:8c:10:
7a:dd:62:ed:cd:75:a3:f5:07:57:c7:17:4e:f1:d5:
91:94:c8:7d:45:69:70:b5:25:00:d4:70:57:16:0d:
75:17:66:5b:0e:17:a3:1f:88:d7:71:64:8d:e5:76:
de:13:32:53:08:de:27:ce:06:2b:83:b0:8b:e5:bd:
91:17:86:44:71:af:a7:75:33:05:6b:5d:17:fc:50:
46:d5:fd:75:8e:d6:b3:96:e6:56:48:4f:71:47:0b:
5e:30:d8:3b:fb:33:74:90:7d:6b:a5:b7:e5:e5:29:
b5:9c:78:47:58:62:b4:21:d4:73:a5:05:90:93:88:
20:a8:db:07:5b:6d:09:59:66:8c:a5:4e:a9:37:ca:
79:b2:62:52:30:96:03:6a:18:84:cf:25:e9:92:29:
a9:c1:3e:3a:bd:69:fb:57:ec:4e:db:74:93:3e:00:
cf:a7:ae:f3:11:3e:3c:ed:53:b0:a2:c3:7f:b1:c5:
1c:21:55:e7:be:bb:30:e5:17:ed:f4:c6:f0:52:07:
43:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C1:F0:57:00:98:09:5B:38:E5:94:E0:5C:C5:E0:89:CE:F9:37:97
X509v3 Authority Key Identifier:
keyid:D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:85:c6:4a:7d:0b:af:82:6c:02:43:f5:46:cb:a2:6f:ca:2b:
c0:23:3f:f7:a0:a4:27:9d:d2:49:f1:27:43:6e:c6:7d:0e:7f:
db:46:44:9b:49:ed:8b:4d:c1:0e:53:98:c9:c9:9e:11:bf:c2:
3a:d0:de:24:31:59:fe:1a:fc:c4:b7:b6:bf:8b:ce:8e:80:67:
e4:d4:86:55:91:d0:30:23:07:9b:16:92:99:3a:a0:7d:f2:c2:
b1:af:45:6a:bf:0d:e0:64:d7:b9:b5:7a:2c:cf:c4:e6:43:96:
50:96:57:93:67:a0:06:57:5c:bd:d1:01:8b:ea:27:36:09:82:
d1:74:84:6f:1c:ec:b5:9b:66:88:24:dc:de:2a:ea:16:df:3f:
55:f6:88:85:95:0f:59:9b:5b:dc:1d:f1:1e:c1:32:87:86:64:
23:7c:c2:e2:fd:5a:bf:f9:bd:f2:cd:70:e0:ec:d7:bb:04:42:
5b:f2:72:e8:fd:3e:23:74:f3:93:c6:e4:5f:d9:7f:47:65:21:
7d:7a:6c:62:ee:18:21:e4:63:24:74:88:7e:a7:d4:16:7f:53:
3b:55:b8:e6:fc:4b:f4:ed:d6:dc:13:2d:5d:47:d0:56:3c:97:
cb:39:6d:23:ab:9b:14:49:b7:59:ea:46:b0:66:08:76:8c:dd:
8d:c0:65:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:59:19 2025 by rpki-client