Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
File: ao33d2sW0oLgTGluJYqk-fnOnJg.mft (raw, json)
Hash identifier: gomxxkXE6/gYw3Jmx0u7wEzoNItxjJmUM+ynvD5ejPQ=
Subject key identifier: EC:06:DA:39:6B:93:D2:92:DC:0A:F2:1C:06:1D:20:31:CD:C9:2F:38
Authority key identifier: 6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
Certificate issuer: /CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Certificate serial: 019747B0AC003D383F1A38E39B249C451184
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
Manifest number: 096C
Signing time: Sat 07 Jun 2025 00:00:49 +0000
Manifest this update: Sat 07 Jun 2025 00:00:49 +0000
Manifest next update: Sun 08 Jun 2025 00:00:49 +0000
Files and hashes: 1: ao33d2sW0oLgTGluJYqk-fnOnJg.crl (hash: AL2O/144PjEk1mqiXnTQnCaXFlvpEui7rlUV6nd1Ciw=)
2: zkFI0q7jFUcpvcC1_CEihR1YV24.roa (hash: 783T5wgYEpPQMcRoCX4E0P3B8Y6FUugL0p43iJWmXrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:ac:00:3d:38:3f:1a:38:e3:9b:24:9c:45:11:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Validity
Not Before: Jun 7 00:00:49 2025 GMT
Not After : Jun 8 00:00:49 2025 GMT
Subject: CN=ec06da396b93d292dc0af21c061d2031cdc92f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1a:b4:f6:8c:47:c1:87:b5:d3:64:37:3b:93:
63:8f:23:33:bd:1f:17:e6:d1:84:86:b9:33:53:82:
56:18:05:bd:65:dc:26:35:39:8a:ad:a1:4e:27:13:
dd:c9:f5:0b:05:44:89:28:7e:4a:cf:2f:c4:91:1d:
89:5a:75:36:13:ca:fe:d0:4d:67:f4:ba:32:1f:34:
5d:5e:18:52:53:22:c6:6c:a0:84:6b:6d:27:94:08:
79:bc:c5:ba:27:3d:39:e2:1c:50:58:a3:b2:14:18:
3a:3f:56:00:f5:77:2f:08:e6:61:d0:c2:d5:69:58:
ce:80:62:0d:29:3d:ba:b6:11:6c:1a:88:d1:12:1b:
71:da:5f:f0:ff:9b:fc:73:80:50:ec:f6:0c:cd:4d:
a7:70:fa:e8:c7:3f:ea:30:09:0b:04:e7:f4:0e:90:
8c:64:ba:30:59:ca:07:61:c0:9a:1a:16:5d:f7:97:
e0:5b:40:af:45:c6:45:5f:eb:72:de:b9:16:04:0c:
a1:c8:b9:35:4b:35:b7:44:51:9d:02:d7:78:e8:25:
2e:0e:82:7d:4f:24:65:e5:cf:4b:5e:af:07:68:0b:
10:57:ff:fd:20:0e:12:a4:1f:77:95:4e:9d:e7:70:
15:41:1a:de:3d:bd:f3:37:0a:29:04:da:82:cd:c3:
ff:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:06:DA:39:6B:93:D2:92:DC:0A:F2:1C:06:1D:20:31:CD:C9:2F:38
X509v3 Authority Key Identifier:
keyid:6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:66:b4:a7:87:8c:e0:6e:a9:a2:72:9f:40:86:c9:b8:ef:92:
70:57:fe:42:6e:ef:c5:6f:12:c0:32:19:17:75:36:6c:74:5d:
c2:35:3a:22:30:79:93:0f:d7:75:79:9d:c7:e2:59:ac:7f:75:
ed:c9:8f:4e:c4:ec:3f:b3:92:c8:e7:64:4c:6b:3e:c2:1f:14:
af:aa:3b:be:db:3b:21:1e:fd:d7:6f:74:3e:5c:9c:8f:55:29:
97:2f:b6:fa:19:c7:c5:f3:5f:54:50:28:03:08:9f:8f:ca:34:
cc:0b:7e:f3:5b:1e:41:90:3e:d6:b3:68:94:2e:b4:dc:37:29:
bf:f9:7b:e6:2c:88:42:89:1c:8b:f4:f1:15:b9:58:fb:79:74:
04:27:56:da:9e:93:5f:1e:50:13:e8:a9:8a:72:09:b9:79:15:
a9:8b:2a:3d:45:60:84:01:2f:a8:3b:fc:3f:2e:59:c1:ec:b1:
8e:fc:e8:f1:cc:84:d6:47:7b:43:e7:f9:b7:44:f3:b7:e5:12:
f1:9a:e9:16:4b:3a:61:b6:63:fa:27:39:ad:6c:8e:69:87:f5:
40:20:67:e8:3c:41:11:4e:e4:8f:84:71:d2:07:b0:d0:46:55:
64:18:b7:3b:bc:2a:fc:07:f3:40:2a:6a:5b:6a:99:ab:e6:1c:
a9:ab:6f:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:16:40 2025 by rpki-client