Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
File: ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft (raw, json)
Hash identifier: ZQAK/E+c6hX5RAQr83DoQcLBCrsKle5wdaGrj0XUd5c=
Subject key identifier: A4:08:1C:40:47:6E:E4:B5:8E:F8:2E:D8:BA:F9:A5:D0:DF:1F:D3:D0
Authority key identifier: 6A:10:B7:C5:4E:6F:95:B1:D9:B8:4A:AC:3D:9D:A7:42:A0:E0:2A:6C
Certificate issuer: /CN=6a10b7c54e6f95b1d9b84aac3d9da742a0e02a6c
Certificate serial: 0197469E32D2184962BEAED480E12E04D50A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
Manifest number: 113A
Signing time: Fri 06 Jun 2025 19:01:02 +0000
Manifest this update: Fri 06 Jun 2025 19:01:02 +0000
Manifest next update: Sat 07 Jun 2025 19:01:02 +0000
Files and hashes: 1: ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl (hash: bIdBoeCB1VlwlhnBOBx15aYSXWbVbZpVPlOhnxTsSwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:32:d2:18:49:62:be:ae:d4:80:e1:2e:04:d5:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a10b7c54e6f95b1d9b84aac3d9da742a0e02a6c
Validity
Not Before: Jun 6 19:01:02 2025 GMT
Not After : Jun 7 19:01:02 2025 GMT
Subject: CN=a4081c40476ee4b58ef82ed8baf9a5d0df1fd3d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4a:04:9a:ce:d3:f5:11:0b:83:de:41:9e:92:
0c:71:ff:27:fe:9b:64:3b:66:00:f9:b0:84:c4:0e:
6d:c1:14:ae:88:fb:54:f5:05:ea:ef:05:aa:f8:40:
78:f4:9b:63:03:3d:1a:91:e5:a2:4f:f0:a6:ce:1c:
e0:34:17:80:2d:48:41:4e:f0:67:fe:b2:f7:2f:00:
89:1c:c5:90:ce:4a:59:81:c0:aa:9e:2c:fe:0f:ba:
6c:8e:ca:b0:1c:4a:ea:a5:47:c9:0e:78:b1:b4:e9:
8e:ca:db:60:1b:5d:5f:33:7c:5f:7b:25:fa:f4:59:
dd:13:96:b2:99:8e:b8:21:37:d4:ba:79:57:06:fd:
6b:60:f8:5e:50:40:bb:16:54:b9:04:d7:ee:d6:36:
ca:52:ad:db:5f:db:61:5e:8c:6f:42:fd:a6:e6:80:
99:6e:13:68:2e:5f:ef:d3:bc:bc:61:7c:d9:6c:0b:
75:4e:0e:63:42:45:59:84:ea:5d:f8:fa:49:8d:67:
a7:60:7d:fe:a5:ee:ec:3c:6d:82:e8:33:4d:27:10:
e8:14:51:15:bc:80:2c:13:9a:b1:0e:a8:79:20:64:
a1:2c:3d:83:84:21:9b:0e:ba:5f:74:26:86:8c:30:
cd:5b:6d:db:df:91:e9:7b:f0:03:c7:f5:97:36:5d:
2b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:08:1C:40:47:6E:E4:B5:8E:F8:2E:D8:BA:F9:A5:D0:DF:1F:D3:D0
X509v3 Authority Key Identifier:
keyid:6A:10:B7:C5:4E:6F:95:B1:D9:B8:4A:AC:3D:9D:A7:42:A0:E0:2A:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:61:cf:79:ad:be:4b:69:50:cd:5d:3f:df:c7:ad:b0:8c:e1:
67:5f:57:ec:6a:61:6e:86:44:ae:8a:88:8b:b5:f7:df:52:c9:
91:c9:39:24:3a:13:4d:64:26:d1:5a:a3:39:12:e8:3f:1f:4c:
90:d0:79:3b:df:07:82:d6:c6:d8:e2:6d:03:96:00:f9:57:34:
10:31:12:f8:7f:96:6b:79:97:b2:ee:5d:21:59:81:da:ea:ce:
cd:ca:ce:db:78:6f:fb:13:20:8d:85:e4:8c:8f:d3:28:2b:7b:
cd:9e:33:8e:b5:ab:b7:fc:3b:61:c7:80:cc:e6:0f:f2:b4:a5:
1c:a0:07:a7:82:59:4a:3b:ad:ff:10:48:c8:9c:a0:06:39:71:
07:a4:a4:bb:8a:69:2f:e7:9a:56:3e:03:3b:3a:a6:2b:12:c0:
4e:84:b8:ef:a7:56:95:d0:7e:8b:63:40:b9:db:f9:28:c6:d9:
1a:53:b5:30:3d:2a:d8:88:09:9d:d9:6d:e6:76:3d:9c:9b:ed:
97:c2:da:e2:6c:a7:ad:0b:c3:86:e5:b2:58:8d:bb:22:66:10:
66:18:21:54:71:9f:80:99:d6:96:e8:11:da:0a:fa:43:58:57:
07:80:63:cb:82:9f:b6:28:16:6c:71:cb:41:3c:75:7f:37:98:
b1:19:ef:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:37:26 2025 by rpki-client