Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json)
Hash identifier: hti6ejqrVrk2OxqpA5dybj/16YHcdqOr3TFXk4rjAHg=
Subject key identifier: 1A:0D:B4:45:4F:25:D5:22:7F:DE:BC:3E:F9:D0:06:7C:E5:B7:4B:F2
Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69
Certificate serial: 01974630099E843F77B24C9D5CA95E32E873
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
Manifest number: 05B8
Signing time: Fri 06 Jun 2025 17:00:42 +0000
Manifest this update: Fri 06 Jun 2025 17:00:42 +0000
Manifest next update: Sat 07 Jun 2025 17:00:42 +0000
Files and hashes: 1: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: XcrexX2f15e3JdpK3ALDcBgSY3zceZCAUez9Cy2WD+A=)
2: hnTM8e9DDp88O_jCAHz8InVW_vE.roa (hash: 8skhoEZiI2jfYQ4DDQgvqEaBRoMspiQzmuxF61YcMEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:09:9e:84:3f:77:b2:4c:9d:5c:a9:5e:32:e8:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69
Validity
Not Before: Jun 6 17:00:42 2025 GMT
Not After : Jun 7 17:00:42 2025 GMT
Subject: CN=1a0db4454f25d5227fdebc3ef9d0067ce5b74bf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4b:bd:e7:22:02:90:97:60:66:09:a7:ce:49:
63:f9:57:bf:86:e1:e4:cc:0d:bd:11:e5:ec:55:3d:
b1:5a:53:84:c2:57:8b:04:27:fb:9b:97:55:38:d2:
1f:02:6a:d8:e5:da:26:c6:49:f0:f8:7d:e5:84:c6:
f7:ef:d5:6c:e1:4d:94:97:96:d0:23:b5:51:e0:f7:
11:f8:6a:6a:71:21:85:7d:44:6f:e5:6a:66:f7:4d:
67:8a:51:d7:2c:02:33:3d:84:ac:79:d6:3c:9d:63:
e6:72:87:e2:68:01:a4:ce:3c:c0:51:a1:5a:2e:ef:
39:d8:e0:8c:7f:dd:fa:c2:be:4e:bb:ea:cb:23:19:
c6:f6:f0:73:72:4c:6c:6a:e8:96:0b:0e:63:43:af:
cb:b2:ff:43:da:fe:ab:77:6b:75:21:77:9e:89:a3:
59:a7:dc:55:2f:ba:b3:80:76:2a:34:b7:0f:bb:5f:
e6:0a:7d:6f:b8:47:89:de:63:77:8b:a2:13:cb:0c:
7d:95:7c:d5:22:48:05:83:20:c9:39:4f:7b:93:0b:
d3:36:26:b0:79:77:9f:5d:f3:6b:2a:a1:4f:50:f3:
fa:55:c8:31:a2:ad:16:86:81:e4:7b:f8:8b:88:77:
16:28:0b:29:fc:04:55:3c:5f:80:8d:77:42:55:87:
ec:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:0D:B4:45:4F:25:D5:22:7F:DE:BC:3E:F9:D0:06:7C:E5:B7:4B:F2
X509v3 Authority Key Identifier:
keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:57:f1:9a:6a:13:b1:0d:95:4a:9b:3b:5b:94:0c:ee:ff:ac:
05:dc:63:12:db:30:a1:7b:f4:c4:62:b1:1c:e1:43:e0:2d:9d:
8e:d8:74:fc:7a:4a:15:18:2c:18:45:db:dc:34:44:3e:f7:c4:
92:a2:7c:e3:43:35:f6:05:3f:00:3f:c4:f8:36:f9:e8:f2:83:
a7:bb:9b:f4:42:d7:9c:49:f0:6a:b4:9c:8c:91:39:35:f4:43:
61:46:69:5f:3e:e0:db:a8:47:f4:d8:8b:45:d5:89:a8:6b:c7:
dd:c0:be:66:be:a9:8e:62:a9:e7:fb:fb:ee:99:16:90:af:1d:
96:e3:a7:3e:bb:0b:71:7b:50:5a:33:f0:ef:ad:6c:20:86:7a:
f6:a0:d1:c6:ce:24:f4:0c:55:41:3e:59:b9:82:64:7e:c6:ab:
54:fb:37:45:4f:35:5e:ef:d7:ff:64:09:41:f9:32:b0:0b:b6:
c1:22:16:02:b2:34:ce:0a:b0:8d:bb:08:04:fd:3f:00:09:e6:
ae:13:b9:d2:c4:44:36:6b:05:8d:3a:6c:92:c4:b7:49:16:9b:
8b:82:de:63:85:77:f9:87:d8:ee:00:b5:ae:fb:3e:23:22:c5:
6d:f6:a3:72:d3:50:2d:3e:31:d5:ef:7b:76:3c:4a:44:6a:e7:
38:10:81:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:08:30 2025 by rpki-client