Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
File: ajqLdK1O1nN5ep9rd0nCI0VpedA.mft (raw, json)
Hash identifier: f7zEkda1AoCmZNvUU52ioaJLJfvzcSsv69AtweBMT9Y=
Subject key identifier: 46:4E:3A:1E:48:CC:22:6E:43:2E:26:CB:C0:51:E1:2A:3C:5B:D4:58
Authority key identifier: 6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
Certificate issuer: /CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Certificate serial: 01974C31C636AF5F08B9D6900118834C03FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
Manifest number: 1441
Signing time: Sat 07 Jun 2025 21:00:19 +0000
Manifest this update: Sat 07 Jun 2025 21:00:19 +0000
Manifest next update: Sun 08 Jun 2025 21:00:19 +0000
Files and hashes: 1: ajqLdK1O1nN5ep9rd0nCI0VpedA.crl (hash: hPt5f7U2cffAOiLPrelEEGTzQOR0g457CeK/ZcoegHI=)
2: jkQdp6EX7jHh6f31YxZYZhR0C8U.roa (hash: FmayEZ/+k7yvcImZRXEurVZdNlGpk+kZM2DFLPiqTu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:31:c6:36:af:5f:08:b9:d6:90:01:18:83:4c:03:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Validity
Not Before: Jun 7 21:00:19 2025 GMT
Not After : Jun 8 21:00:19 2025 GMT
Subject: CN=464e3a1e48cc226e432e26cbc051e12a3c5bd458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f3:c6:21:2c:c3:af:2f:78:9f:46:58:f7:e4:
c9:96:93:f0:ea:76:4e:e9:07:60:f4:91:ab:34:38:
d6:4e:7b:11:48:0c:76:58:63:f5:36:43:1c:cd:a3:
37:ca:69:57:e5:66:11:8b:91:09:8f:9d:93:2b:69:
d8:fe:e6:ec:3a:b0:cf:36:95:df:0e:3d:af:50:12:
dd:11:bb:73:3f:19:93:0d:27:e4:86:8b:b6:68:20:
ab:37:c6:34:56:d2:fd:7b:33:25:d5:92:0c:a4:e9:
0f:eb:75:0a:5d:41:89:50:8b:ff:fc:52:14:c5:58:
a9:ce:81:ee:52:fc:a1:64:9d:9a:0a:06:af:f2:1a:
4b:29:31:b5:a5:75:9c:3e:37:72:a0:6c:8f:b8:f0:
fb:f3:b3:1c:27:2a:30:81:9b:68:8e:20:3e:c2:1d:
b9:3f:47:bd:b1:02:19:7c:60:68:67:a0:20:3c:4f:
45:e7:de:90:9d:96:7f:53:05:88:9c:99:28:68:26:
de:70:31:34:b6:63:a5:d3:2c:55:b6:23:4d:dd:5a:
7b:8e:f0:00:80:90:71:90:dc:80:9b:95:0b:e7:41:
cc:94:94:33:b0:4f:0b:97:33:b9:ee:eb:55:fe:0a:
36:0f:d2:fb:89:35:cc:f1:b8:a3:e2:91:77:f4:84:
27:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:4E:3A:1E:48:CC:22:6E:43:2E:26:CB:C0:51:E1:2A:3C:5B:D4:58
X509v3 Authority Key Identifier:
keyid:6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:72:86:6c:c2:30:46:ff:fe:12:2f:b8:7b:8a:3e:26:59:fb:
a3:3c:7f:8c:58:11:f4:e9:4e:74:13:ad:2b:b5:f8:11:e0:6b:
65:bc:d8:ad:f1:96:99:03:2c:07:c8:46:c9:29:84:f3:a2:96:
0f:7a:d2:5a:d3:33:98:81:e4:f7:c4:e2:78:53:d6:fb:c6:0b:
39:c3:27:cb:0d:81:27:c7:a4:30:ab:09:a9:b9:dd:74:75:51:
bf:ba:e5:a1:cc:a5:96:2c:06:75:2a:e1:3e:c5:ce:db:78:63:
03:63:86:cf:96:83:6b:96:0c:4b:73:99:a6:6c:f7:84:86:69:
ac:d4:2a:8f:1a:4f:64:0e:2a:63:8b:51:55:43:34:a3:e9:13:
7f:c5:a2:70:59:a6:86:0e:b6:5d:ef:24:0f:5b:4b:d3:d0:60:
f7:0f:dd:ed:06:62:6e:ed:df:00:eb:ef:4b:3b:84:d0:d4:90:
00:ef:65:b5:5c:1a:44:fc:ab:1c:f9:fd:8b:22:43:eb:77:de:
2d:c9:f7:87:6d:18:4d:22:cb:52:1e:f6:a9:a5:f0:c8:36:ee:
fa:3d:d2:b1:5c:da:e4:7e:6f:77:ec:89:b6:e4:96:8c:4e:63:
79:6a:b9:e8:72:b8:0e:52:95:40:6a:b7:61:92:f8:60:1e:c7:
bf:4c:a8:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:56:23 2025 by rpki-client