Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
File: AK_2tO_-fDY-8gD28-WIi5FbpoE.mft (raw, json)
Hash identifier: dNF3oGg9GhnNIB4M0Q6v7w7gvOjUbInKGajiKR5+EQg=
Subject key identifier: A0:00:15:31:1B:4D:88:01:02:5F:01:3E:F8:1E:55:F9:C4:D3:2F:7F
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 01975791B146F18D75A1124C3C2C4B783C23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
Manifest number: 10A4
Signing time: Tue 10 Jun 2025 02:00:55 +0000
Manifest this update: Tue 10 Jun 2025 02:00:55 +0000
Manifest next update: Wed 11 Jun 2025 02:00:55 +0000
Files and hashes: 1: 1qEPEFv1rtnBwjLrj05KhcsiGsw.roa (hash: efBys1jy+DGmejYCRhYEDwHiZZBi2kJ2HO+RtvkHBG0=)
2: AK_2tO_-fDY-8gD28-WIi5FbpoE.crl (hash: JPfJgplP2Cl3A3v8GK9GVi8hdfbMKdnbgsk4/0IXfLs=)
3: KSQbuvMpaNtmYtn-yiQgu6gs4Xg.roa (hash: rY+o5Ow6fjFdTk2as4zdZu/IZVXbQNeVsHdG3L6c1Us=)
4: ZOyHJ4Yqv0XVd9AATFKr91oKlKQ.roa (hash: UP88f3uzMOFhKaWDsZtlJomj/zgPQgChtV7gCg0+LOM=)
5: _K1pDCbBWOfBSTY7iYXwJMRFvTE.roa (hash: CNOL6bgt/D7RlzA1qOVvWQYBYhtShOyl6CF9OeXYBvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:91:b1:46:f1:8d:75:a1:12:4c:3c:2c:4b:78:3c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Jun 10 02:00:55 2025 GMT
Not After : Jun 11 02:00:55 2025 GMT
Subject: CN=a00015311b4d8801025f013ef81e55f9c4d32f7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:01:2d:8a:9b:7d:a2:c3:c4:c9:49:7a:fd:a2:
ed:72:27:8c:f3:7b:13:d5:1b:d7:64:ab:36:25:5a:
c6:35:fa:a9:2f:74:4b:20:99:14:85:54:fa:7c:47:
05:27:20:eb:68:33:05:64:69:3e:56:b3:e1:a8:65:
95:d0:ae:9f:20:5f:3b:23:e0:ed:2b:bc:d2:71:7b:
a6:b4:35:81:ee:e4:1e:17:40:0e:8d:b0:0c:47:81:
4c:68:bf:d4:fb:93:d2:b4:6a:48:b9:09:ac:82:d5:
ef:63:99:64:6e:94:04:ec:70:07:e1:70:73:6f:bc:
6d:85:bf:a0:0d:c0:33:7b:bf:a7:e8:ef:a6:36:40:
9c:2f:b9:a9:26:80:80:71:21:74:3b:4b:a2:4d:0c:
24:be:96:08:4d:63:a5:25:07:66:b9:91:09:86:5a:
c1:b1:87:00:a2:33:d4:0e:bf:72:cc:3a:05:51:a8:
77:f0:ee:f1:4c:04:b1:1a:82:f5:32:50:cc:fd:c2:
a2:45:41:af:8d:0d:b2:c1:fb:fb:d8:f9:56:be:9e:
60:02:25:dd:c2:9e:90:e7:2b:d1:98:97:07:f9:f4:
a8:cd:2b:9d:f4:b7:6b:de:53:44:7d:7c:3a:95:20:
af:58:7c:18:4f:df:43:28:04:7f:59:de:70:af:6e:
7e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:00:15:31:1B:4D:88:01:02:5F:01:3E:F8:1E:55:F9:C4:D3:2F:7F
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:75:16:92:48:76:0f:ae:7a:df:2b:72:42:e7:02:66:89:d0:
6c:a7:92:bd:cf:a8:ad:d5:aa:cb:92:d0:c3:ec:9c:23:62:49:
b6:79:1b:59:d7:7a:93:83:43:f8:58:1f:90:47:88:62:3e:bb:
df:a6:c1:5d:8a:49:44:17:aa:f8:d2:89:41:1f:fc:67:1d:d3:
98:e9:22:24:07:69:40:77:0e:be:41:40:a2:b9:45:73:27:e0:
c7:4d:a2:0c:34:dd:93:08:a7:ed:63:b0:e0:21:5a:a7:83:e6:
ab:ac:31:f8:7f:94:2f:bc:ac:f9:48:8a:c8:dd:76:48:86:68:
a5:ed:35:08:a4:59:57:6b:fa:c6:76:1f:3a:af:13:09:9c:61:
2f:d7:fd:de:dd:74:57:79:f8:bd:fc:20:b6:04:d9:8f:16:3a:
55:24:23:fb:f5:57:16:8b:2f:d3:26:3d:ee:df:6e:c9:7b:5a:
b7:e6:46:30:f5:4e:bf:01:e2:a4:ed:91:0a:d8:21:2c:51:8c:
5c:c8:fa:8f:60:31:15:15:ac:84:d2:9d:ca:a8:97:cf:6a:39:
e9:f1:e6:3c:24:f6:84:ee:a0:59:81:17:b4:9a:d5:c2:78:23:
35:d4:14:b5:31:93:69:2b:bf:21:ae:85:41:99:58:6b:3e:4d:
d9:62:74:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 08:05:35 2025 by rpki-client