Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft
File: AH5rWqQ302kxUVAqIRSW431K4sU.mft (raw, json)
Hash identifier: pp9qBc9H4/0g/t9KFlK7rj+ZB+3KRmdvR+e2DpYolSk=
Subject key identifier: B9:E4:45:4C:49:B5:EF:33:4D:8A:AA:16:D9:DE:E9:3C:05:99:95:15
Authority key identifier: 00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5
Certificate issuer: /CN=007e6b5aa437d3693151502a211496e37d4ae2c5
Certificate serial: 0197463003FAC012A986443A42A314ACCA90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft
Manifest number: 12F8
Signing time: Fri 06 Jun 2025 17:00:41 +0000
Manifest this update: Fri 06 Jun 2025 17:00:41 +0000
Manifest next update: Sat 07 Jun 2025 17:00:41 +0000
Files and hashes: 1: 6F_Q4XpRKgEexZcCv84M_kGGwx8.roa (hash: jzUe5knYI2NZSGwBtOwn1dJh+2wMTZvaI6KEnoCDN6M=)
2: AH5rWqQ302kxUVAqIRSW431K4sU.crl (hash: KS2JDU46rmYParXeO+DLrnb/4JLDolt3aJWIUJxHGw0=)
3: Ry-o6BvHlNuOD_d14wdLVmhDsgM.roa (hash: S/jHrYJPbAAtdA+RZZOotd+GpMfWfmGdhS0b8Kc0V30=)
4: VFSqRzcGMZ3Y2JFZb1Fsblb27nQ.roa (hash: UUfcXkF0GWrqVSNu+3z9VDCb/uLRbXj4ZsTEe5POQ7M=)
5: W_b0Ax5Mpx_fhvv-92F8GttV04I.roa (hash: y/SVVGY3IuSmMubg1JbInzxD9q8qop1Ol37UDvpp3pE=)
6: gZrmTs3ukQIINjYb9akCKLL_iZM.roa (hash: WbSg2tywBgMqpLgEuUZPOKgd7CPp10c7QuJJvyuvaco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 17:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:03:fa:c0:12:a9:86:44:3a:42:a3:14:ac:ca:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=007e6b5aa437d3693151502a211496e37d4ae2c5
Validity
Not Before: Jun 6 17:00:41 2025 GMT
Not After : Jun 7 17:00:41 2025 GMT
Subject: CN=b9e4454c49b5ef334d8aaa16d9dee93c05999515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fa:04:d3:94:39:e1:a4:f7:a8:43:82:db:45:
e4:ff:04:92:30:b7:81:d3:ed:b9:93:6a:97:50:d3:
3c:45:f7:a2:1c:4f:1f:88:9a:a9:8a:5d:7b:c9:13:
e8:bf:80:a1:fb:c0:b5:9a:b3:4a:02:f9:ba:bc:9a:
43:4b:77:bf:fb:cb:5b:b4:73:3f:1b:27:2c:d1:9d:
04:1b:2d:20:d0:fb:39:ad:e8:89:a0:49:d1:7b:c5:
98:1b:2f:d5:01:17:69:48:3a:bd:98:c8:ff:6d:22:
52:a2:19:81:70:9c:f0:cc:61:da:2e:1c:27:ec:09:
8d:90:f0:11:7e:3d:5f:70:3c:a8:c7:4a:5f:a3:05:
31:e3:5f:3b:1d:9e:df:ff:61:39:36:2b:2c:b4:a3:
60:df:ac:dd:a9:33:72:19:ec:88:e4:2a:a6:b5:90:
7b:26:3b:43:c6:e2:27:2a:3c:d7:f5:5c:47:b2:e3:
29:cf:4d:ed:54:76:2e:93:aa:3a:45:9c:14:1d:49:
3d:0a:48:06:e3:a3:a8:e4:98:be:4e:6a:a4:71:19:
8a:49:2a:33:b5:02:be:8c:77:be:eb:31:13:f5:c8:
98:98:60:52:9e:24:9b:99:1d:c4:e1:bf:eb:d3:bb:
33:11:72:ed:61:f3:43:d0:8c:c2:76:82:4a:01:aa:
84:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E4:45:4C:49:B5:EF:33:4D:8A:AA:16:D9:DE:E9:3C:05:99:95:15
X509v3 Authority Key Identifier:
keyid:00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:f7:f5:66:42:88:33:d1:81:b1:df:0b:51:a5:8d:bd:a6:d4:
a3:cb:fa:24:12:17:aa:5e:f2:40:24:64:b7:af:72:19:38:a1:
24:5b:2f:43:c1:c4:81:2d:56:7d:36:49:41:12:dd:9b:c0:57:
82:61:23:79:bd:3b:2b:ae:bc:d7:45:28:6c:90:58:db:db:47:
70:d5:43:9f:a7:95:11:0a:53:8a:1d:44:44:6c:ab:26:a1:32:
b9:18:2b:ea:e0:ca:be:35:ca:77:da:c6:2f:b2:ee:d8:db:23:
dc:63:4d:22:29:a9:c0:c8:33:05:bb:cb:2a:bf:48:af:ab:c7:
94:20:18:38:bc:4e:0e:a5:41:98:60:66:11:e8:84:72:88:fa:
f8:cd:77:8e:aa:fe:a0:28:7e:4f:3e:54:ab:8e:e6:ce:8a:ef:
31:b7:05:e6:7e:36:31:c7:a5:5e:6e:2d:b9:30:1e:d2:0d:80:
31:94:77:df:d7:94:2d:a7:c5:82:52:17:34:46:9e:77:a1:7a:
2a:85:d3:99:a3:c0:2c:31:fd:ed:48:53:04:93:5c:02:02:7a:
a2:80:4d:39:fb:e1:29:36:4f:ea:8b:40:2c:fc:f2:58:78:a5:
e3:22:3c:e6:38:b5:e2:1c:3b:a5:44:80:40:41:bd:94:43:0c:
75:4f:86:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:47:23 2025 by rpki-client