Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft
File: AFetCa6aGpgBInWFGqvmnk4VovQ.mft (raw, json)
Hash identifier: asiFwnYmXRFFy4d5kS6vlRsmKXyOGY+pM1O+lblsq6E=
Subject key identifier: 37:BD:BD:77:75:6E:F5:AB:A8:4B:55:FE:ED:8D:97:28:7E:A0:62:AF
Authority key identifier: 00:57:AD:09:AE:9A:1A:98:01:22:75:85:1A:AB:E6:9E:4E:15:A2:F4
Certificate issuer: /CN=0057ad09ae9a1a98012275851aabe69e4e15a2f4
Certificate serial: 01974A7B31425B44DABA611E8419FFA85473
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFetCa6aGpgBInWFGqvmnk4VovQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft
Manifest number: 0E65
Signing time: Sat 07 Jun 2025 13:01:16 +0000
Manifest this update: Sat 07 Jun 2025 13:01:16 +0000
Manifest next update: Sun 08 Jun 2025 13:01:16 +0000
Files and hashes: 1: AFetCa6aGpgBInWFGqvmnk4VovQ.crl (hash: mYnb6eqhaPhfYfjFhN6RZCEYfjLPnQfQUftSVRIABa0=)
2: uxPm2jgrGB9aUpoVSqtxOrk6oLc.roa (hash: jnz+6TEphg6WeFVMNjeLnKwOXT2+7WslFFXVeACqJbs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/AFetCa6aGpgBInWFGqvmnk4VovQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:31:42:5b:44:da:ba:61:1e:84:19:ff:a8:54:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0057ad09ae9a1a98012275851aabe69e4e15a2f4
Validity
Not Before: Jun 7 13:01:16 2025 GMT
Not After : Jun 8 13:01:16 2025 GMT
Subject: CN=37bdbd77756ef5aba84b55feed8d97287ea062af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0d:d1:67:e0:b0:50:98:90:58:d9:c4:96:38:
3c:09:81:fc:74:2b:03:3c:8a:ab:b9:0c:dc:0b:cd:
57:e2:3e:43:42:2f:64:3f:88:ed:89:97:9b:ed:07:
23:4b:7f:c9:5f:2b:ef:a5:cc:d3:98:96:ae:eb:79:
3a:29:79:bd:83:dc:ba:18:27:ad:ad:a9:fc:8c:d0:
f5:2c:af:e4:4f:63:1e:b3:74:d1:e9:48:4d:78:d6:
9f:10:db:78:a7:c1:f8:91:db:0c:2a:75:b2:c5:02:
c0:29:ac:e3:eb:5a:62:15:06:c7:e5:6d:c2:68:c2:
37:6f:80:ea:cd:1a:ae:44:3b:70:65:45:db:32:0b:
26:d6:0e:59:9e:2f:d1:6f:68:b2:73:a8:25:40:ac:
59:a4:fd:dc:4e:0c:95:40:85:15:64:75:d5:65:d8:
cc:e3:00:f4:5f:4f:85:d1:a8:59:2d:8e:e3:a8:0c:
02:81:ab:af:c4:fa:4e:e0:ee:b5:34:53:a4:9a:b9:
ca:4e:80:2d:a7:61:b0:e3:e6:3e:f0:17:61:64:84:
56:65:73:33:63:dd:bc:d7:a2:8f:47:28:a7:9d:76:
95:cd:35:59:4f:8f:92:00:ca:12:85:38:93:ea:f9:
98:89:ce:b1:ff:06:cd:69:42:8d:0f:31:2a:1a:98:
57:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:BD:BD:77:75:6E:F5:AB:A8:4B:55:FE:ED:8D:97:28:7E:A0:62:AF
X509v3 Authority Key Identifier:
keyid:00:57:AD:09:AE:9A:1A:98:01:22:75:85:1A:AB:E6:9E:4E:15:A2:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFetCa6aGpgBInWFGqvmnk4VovQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c32b9-f775-4868-923d-dca38d59a158/1/AFetCa6aGpgBInWFGqvmnk4VovQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:79:c1:fc:6e:cc:cc:da:ca:76:51:34:83:2d:52:03:29:ed:
96:03:a2:8a:59:c4:f2:68:dd:11:39:7b:0a:3b:fb:8b:aa:b2:
de:94:7e:ea:b1:44:92:ef:0b:bb:16:f1:27:72:c4:61:03:7e:
ff:bc:cb:a6:c7:ba:9f:79:4e:53:8b:3b:ef:af:01:56:7a:52:
69:8e:62:ff:42:31:cf:cc:72:e2:97:12:44:10:1a:5b:c6:64:
de:8d:89:24:e2:4c:60:0d:a2:89:4b:ce:02:dd:bc:ed:17:00:
b7:c6:ad:d9:ad:f4:7c:5c:e0:15:fd:23:4f:9a:97:a4:0c:2f:
06:c7:5a:ad:a3:4c:18:7b:25:28:89:48:22:ca:80:d3:e2:fa:
89:0a:20:c3:d5:cf:f7:db:fa:49:f5:a5:2c:8d:f4:f7:cb:e8:
85:58:e5:41:58:19:67:f9:39:d0:d0:bd:ba:8b:80:b9:29:d5:
14:76:19:e7:de:03:7c:d5:18:4c:b0:3e:1b:dc:78:55:de:f7:
2d:83:2e:05:b6:47:43:ff:71:c0:fe:65:04:99:14:c4:af:e2:
b9:88:cf:d5:01:11:39:4b:fe:ce:f8:b5:8a:25:8c:cf:5d:87:
0d:25:50:b8:fd:c4:cb:5d:e8:0b:c3:34:38:ea:20:c2:c0:ce:
cb:0d:ef:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:30:38 2025 by rpki-client