Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
File: aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft (raw, json)
Hash identifier: ls771kvxDR2iNb5pu9Ms5W4kbhPkm75SevlC9ix+pZA=
Subject key identifier: 47:19:29:56:FA:FC:5B:9F:DF:39:D5:AE:39:A2:EA:B7:E7:03:28:D2
Authority key identifier: 69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
Certificate issuer: /CN=6987d0047fb1d8912c63f911305a714f438b1e71
Certificate serial: 0197CA5EA011AB8A2F0D4EEEC3E10CCEA183
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
Manifest number: 15BE
Signing time: Wed 02 Jul 2025 09:01:28 +0000
Manifest this update: Wed 02 Jul 2025 09:01:28 +0000
Manifest next update: Thu 03 Jul 2025 09:01:28 +0000
Files and hashes: 1: Atkr4h8_-iWKS-lQ1C-yvRl84ME.roa (hash: 2T7HRH5eHvmAemXfiDHO7EMODqi7SWlhFBBbiZ8y44c=)
2: aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl (hash: oNobdytvrHPl1uz0bvE9ctSGpfiFEzECwacZELG05fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:5e:a0:11:ab:8a:2f:0d:4e:ee:c3:e1:0c:ce:a1:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d0047fb1d8912c63f911305a714f438b1e71
Validity
Not Before: Jul 2 09:01:28 2025 GMT
Not After : Jul 3 09:01:28 2025 GMT
Subject: CN=47192956fafc5b9fdf39d5ae39a2eab7e70328d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:28:77:b8:0a:74:42:4a:1f:4a:8b:79:49:06:
cf:11:c0:46:40:40:0c:24:cd:e2:24:38:f7:29:62:
7c:08:f1:0a:47:63:28:1c:0d:e5:a2:8e:24:b8:2e:
ac:50:8a:7f:60:8f:cf:e4:ea:11:f4:ff:be:fe:16:
79:90:b3:ac:29:3a:6e:c8:d3:b6:aa:36:1f:2d:1f:
92:36:bb:69:55:47:6d:04:62:77:95:28:63:36:4b:
e0:c3:7f:0d:94:8c:82:c9:67:7e:fa:16:ea:c9:72:
33:3b:3a:db:53:eb:e5:5c:44:66:89:39:19:ef:ed:
1b:66:dc:79:27:c1:a7:ee:09:b7:12:9d:65:0d:c9:
1e:37:58:4e:ae:e7:8f:5e:0e:cb:b9:74:17:5a:e8:
8d:86:10:b6:8f:a6:57:da:9e:77:86:39:0e:91:8a:
f9:30:a9:d7:92:dc:40:2b:c7:e0:32:48:a6:78:17:
8d:4a:cf:e0:2c:f2:a4:92:67:40:a5:2c:55:58:72:
6d:91:d5:f2:32:ee:63:aa:49:e0:6a:34:05:25:0e:
79:56:d5:b2:5a:66:30:ea:1c:b4:fb:be:f6:51:a8:
3c:3e:3a:2b:14:6f:75:c1:92:b4:7b:ee:2f:85:87:
d1:a6:0b:07:07:11:73:f7:d6:e7:a8:8b:c2:cf:de:
79:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:19:29:56:FA:FC:5B:9F:DF:39:D5:AE:39:A2:EA:B7:E7:03:28:D2
X509v3 Authority Key Identifier:
keyid:69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:3a:aa:89:a4:13:cb:3a:a3:d9:3c:44:60:fc:9e:54:28:d0:
a7:35:81:b6:50:e4:03:71:27:41:d8:53:b9:bc:b3:48:61:01:
2b:d3:50:85:26:d9:9d:cb:ee:fb:a0:8a:49:b8:40:d4:92:f0:
bb:11:80:7c:d6:eb:5a:b5:09:f1:42:29:9d:da:8f:68:5b:31:
be:c9:58:ab:bc:7f:0f:cb:62:2f:64:3e:24:88:41:6f:8c:21:
93:d3:08:3f:38:23:4c:7b:3d:7b:ed:53:0f:06:d6:cb:0e:99:
1d:ca:40:ce:c3:94:84:2b:11:01:4b:be:8b:ee:7e:e1:4d:59:
c3:3b:43:3b:f9:2d:35:7b:14:dc:9d:d8:28:dd:c2:67:a7:81:
52:49:28:85:6f:cf:9f:7d:f6:ec:be:93:ad:53:9b:ec:da:71:
48:52:c6:92:c1:03:e9:a1:a0:81:5a:de:18:c2:7f:0c:aa:4e:
9a:95:a7:af:8a:2d:f1:f7:7d:bd:fb:37:a9:e9:8f:19:6c:2d:
fa:22:f0:df:51:9d:77:67:60:f6:2f:b6:7f:e3:7c:30:38:af:
d3:5e:52:40:39:3b:f5:77:b2:40:d2:ab:34:c7:f4:cd:44:e6:
8b:14:9e:06:1b:46:7f:8c:0e:bc:ba:be:42:0d:7c:ca:64:bf:
41:07:40:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 11:41:45 2025 by rpki-client