Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json)
Hash identifier: zC1yJSp27cYo5GB/kD81QOUqke5Z+qQeuCcHOwu+Xuc=
Subject key identifier: 90:D2:E8:62:BD:F1:A0:2D:87:8A:26:AA:BA:87:96:53:3A:2C:0E:D9
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 01974DB2A80A33B433CDCC381058AF51118E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
Manifest number: 157F
Signing time: Sun 08 Jun 2025 04:00:43 +0000
Manifest this update: Sun 08 Jun 2025 04:00:43 +0000
Manifest next update: Mon 09 Jun 2025 04:00:43 +0000
Files and hashes: 1: Q01X85MGyHMF5rr2gbqyxSbVGJU.roa (hash: 3pLndBzBIS9IcjtzdUX4XacaMZCMolKRG+4KwxWHWEU=)
2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: X+P5RAPtbUrDvYOSJypzK4LXeFQRnFjXqLtkT1SdjVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:a8:0a:33:b4:33:cd:cc:38:10:58:af:51:11:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: Jun 8 04:00:43 2025 GMT
Not After : Jun 9 04:00:43 2025 GMT
Subject: CN=90d2e862bdf1a02d878a26aaba8796533a2c0ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0a:54:13:30:ef:e8:67:5a:00:ec:05:1e:88:
68:6e:ce:23:7f:cd:22:2e:33:ad:dc:1d:0c:fd:8e:
2f:c6:20:4b:f1:4c:a0:18:dc:a1:a7:ba:51:ae:34:
41:21:af:38:fc:7b:3e:02:c9:c3:97:98:e9:26:3d:
6a:c9:20:76:fe:4b:e9:12:31:b4:18:62:5b:e0:60:
64:61:44:cf:80:ff:6b:6d:50:87:79:2e:af:38:89:
af:6a:0b:a0:a4:bd:8d:06:2d:07:22:38:72:c8:f2:
4b:fd:e3:2a:94:e9:c8:e9:0a:d2:75:48:b3:4e:09:
0e:6a:0c:10:0c:bf:14:26:be:f2:0f:95:d8:1e:9a:
5f:e6:0d:61:62:0b:0d:ae:ea:a9:13:ec:9b:fb:36:
0e:00:95:74:93:da:f2:14:c3:77:e0:66:e8:08:56:
18:54:6d:4e:0f:80:dc:03:05:b2:db:06:b8:8f:0f:
f4:2c:a1:64:4d:9b:ed:cd:d1:80:59:ea:63:27:b4:
cd:65:94:20:f4:44:f7:1c:8c:2f:58:c7:f8:3e:29:
99:28:65:69:02:22:f9:aa:40:a1:b9:22:6f:84:4b:
5a:4a:0d:cf:df:ab:a2:00:a7:88:e6:69:0f:4a:f7:
74:41:2f:4e:d2:a2:17:00:25:f2:e0:9e:df:79:0e:
b3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D2:E8:62:BD:F1:A0:2D:87:8A:26:AA:BA:87:96:53:3A:2C:0E:D9
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:8d:c4:76:0e:a0:fd:b5:88:8a:1c:6d:49:33:a1:d4:9c:22:
91:a1:07:ee:11:54:de:c0:e8:9b:c3:f0:45:30:dd:f0:1f:8e:
57:10:bd:ea:a3:5a:cd:77:9e:e9:3e:d0:de:14:f8:9f:f8:be:
4c:94:45:71:6a:7f:b4:e4:40:06:1b:20:c3:f0:12:72:d0:58:
a4:9b:e3:4f:73:81:24:53:2d:9e:42:c1:ca:3f:ff:cb:cd:4e:
df:65:3b:d8:d3:55:48:4a:d1:a8:c6:c6:d6:77:68:03:61:6b:
be:7a:ea:1d:5e:3a:32:d0:71:23:99:f2:1d:08:fb:73:52:62:
1f:94:04:a2:ec:44:3f:62:e4:db:e3:98:c9:50:2f:1c:f8:d0:
5e:d0:14:84:e1:be:c2:95:23:cf:1b:71:9f:1a:47:d4:96:4a:
41:a5:96:31:86:8e:5e:59:fb:50:eb:c0:35:0d:73:e3:66:84:
bc:1d:a9:81:bd:a6:5f:8d:46:3f:59:8c:6b:c3:cd:6d:df:7c:
ff:77:87:23:3a:4b:c6:b5:7b:27:02:3d:37:be:01:00:60:ab:
96:d3:a8:75:49:fc:0c:83:f2:79:56:bf:5e:56:8c:79:ac:be:
9b:b3:86:ff:50:59:90:8d:6f:5b:56:9f:79:89:2a:37:cf:61:
f6:3b:2b:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:30:35 2025 by rpki-client