Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
File: AK_2tO_-fDY-8gD28-WIi5FbpoE.mft (raw, json)
Hash identifier: mmeVqMgKVZ6Q+XyXoicg0M0dYVY9Qee1+DRxeTuvJxg=
Subject key identifier: D1:F8:5F:5A:2A:8A:15:27:34:12:94:DE:6B:1E:2F:6D:BC:5E:22:9B
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 019768F2AD7E23D2EAF8D0811CEE5EE03B71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
Manifest number: 10AD
Signing time: Fri 13 Jun 2025 11:00:23 +0000
Manifest this update: Fri 13 Jun 2025 11:00:23 +0000
Manifest next update: Sat 14 Jun 2025 11:00:23 +0000
Files and hashes: 1: 1qEPEFv1rtnBwjLrj05KhcsiGsw.roa (hash: efBys1jy+DGmejYCRhYEDwHiZZBi2kJ2HO+RtvkHBG0=)
2: AK_2tO_-fDY-8gD28-WIi5FbpoE.crl (hash: CIFyCBm4U2iGHwUTgg9mDoxE3/y48QaID705fSFTlys=)
3: KSQbuvMpaNtmYtn-yiQgu6gs4Xg.roa (hash: rY+o5Ow6fjFdTk2as4zdZu/IZVXbQNeVsHdG3L6c1Us=)
4: ZOyHJ4Yqv0XVd9AATFKr91oKlKQ.roa (hash: UP88f3uzMOFhKaWDsZtlJomj/zgPQgChtV7gCg0+LOM=)
5: _K1pDCbBWOfBSTY7iYXwJMRFvTE.roa (hash: CNOL6bgt/D7RlzA1qOVvWQYBYhtShOyl6CF9OeXYBvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 11:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f2:ad:7e:23:d2:ea:f8:d0:81:1c:ee:5e:e0:3b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Jun 13 11:00:23 2025 GMT
Not After : Jun 14 11:00:23 2025 GMT
Subject: CN=d1f85f5a2a8a1527341294de6b1e2f6dbc5e229b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b8:21:0a:5f:da:f0:27:7e:ac:e7:5e:c1:2b:
03:15:c2:1b:a3:68:c4:61:46:f4:61:20:bc:04:db:
12:92:55:7c:a4:1e:5e:58:da:b0:b7:f6:95:31:c5:
bd:a0:5d:0c:79:60:ec:d8:bf:95:0b:91:e1:83:01:
06:10:10:33:be:52:dc:fb:67:d3:6b:16:a6:34:c4:
56:f1:a8:b4:ce:b5:59:20:8f:99:0a:ba:35:31:95:
15:26:6d:f6:f1:10:5b:80:a7:bf:9e:c7:2e:fc:5a:
5e:7b:c9:c2:11:9b:68:9d:44:7b:38:d1:55:64:64:
34:f4:09:71:c8:91:67:02:fb:0a:8a:db:a1:9d:63:
e0:ad:67:bf:01:c7:44:41:be:fd:ea:72:b6:09:26:
10:de:7c:13:9f:bf:8a:6f:69:54:69:00:e5:c4:a3:
69:30:f8:63:0d:94:3d:96:3e:b4:d3:7a:70:30:a7:
cf:30:6a:52:88:3f:8b:f1:48:b3:96:4b:c0:4a:b7:
e0:77:46:0a:de:2c:9a:ee:c3:e2:39:65:af:1a:a3:
f2:40:b2:eb:7d:ad:bc:c1:23:5f:34:34:16:fe:62:
09:2c:6f:10:39:fa:7c:2b:db:50:a4:9b:d3:82:c6:
67:a2:ed:17:9d:0b:d0:b4:3d:b2:cd:04:8e:c5:82:
9c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F8:5F:5A:2A:8A:15:27:34:12:94:DE:6B:1E:2F:6D:BC:5E:22:9B
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:1b:f9:71:27:b4:40:f4:3b:06:d3:28:2b:f3:67:7a:32:dc:
bf:e1:84:71:bb:6e:72:6e:5e:f0:0f:f8:51:a8:48:d6:8f:17:
59:1d:71:26:0a:3e:65:af:31:0d:18:4f:01:fb:7e:d9:cc:5d:
e9:3c:2a:eb:4f:6b:81:64:32:86:5c:3b:0e:dd:ec:1e:c3:34:
e1:47:ff:81:39:21:94:c1:5a:3d:4a:2b:b5:43:4f:0b:23:93:
36:3c:fe:52:df:b2:83:1b:3e:2e:75:ad:61:58:6c:99:57:3d:
0b:2d:6e:e1:32:bb:62:a3:c0:4e:fd:6c:14:4e:db:21:4e:f7:
c0:9d:6c:c3:2c:af:c4:9e:7f:ea:34:0b:99:4e:f2:a2:77:8a:
1f:9a:76:78:8e:e7:4a:3c:1a:5a:fc:95:5c:b8:61:ca:6c:07:
2c:8c:22:e4:d9:e9:f6:2e:10:a2:b4:5d:03:67:a0:d9:22:8b:
6f:2d:28:72:aa:37:53:6d:7f:59:fd:67:0d:c7:ab:cb:39:ef:
12:40:15:10:82:d0:13:41:77:48:47:f1:3b:68:55:61:f3:df:
10:24:7c:08:18:b3:c1:49:48:a8:88:91:00:fc:56:d0:4a:9c:
d6:e3:86:2e:3e:07:4d:66:21:1e:e4:ef:51:a5:c4:fe:bc:48:
48:c6:fa:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 21:57:01 2025 by rpki-client