Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
File: 9a2pAdQIv39blDWSHkgAqPgtvas.mft (raw, json)
Hash identifier: 0RppICJASl5HV16RJXz/cOINYVjg1tksi3SyD4W9A14=
Subject key identifier: 32:5B:2E:2B:0E:62:95:93:36:59:22:91:F8:4A:E7:74:CC:B5:88:23
Authority key identifier: F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
Certificate issuer: /CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Certificate serial: 01974A7A7F80D955C27A78EDAB731F197A15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 13:00:31 +0000
Manifest this update: Sat 07 Jun 2025 13:00:31 +0000
Manifest next update: Sun 08 Jun 2025 13:00:31 +0000
Files and hashes: 1: 9a2pAdQIv39blDWSHkgAqPgtvas.crl (hash: IVzKLaWwtb/1uPs8A+K6GwwiT1KcBEtZ7gcBg9qVU4g=)
2: ExJyPjo5EWZQUpwxSS0T7A3Tclg.roa (hash: n7Rzh1zK0MckYzOS9a8lwv/AGXV+Jr0CvxhzGO4UHW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:7f:80:d9:55:c2:7a:78:ed:ab:73:1f:19:7a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Validity
Not Before: Jun 7 13:00:31 2025 GMT
Not After : Jun 8 13:00:31 2025 GMT
Subject: CN=325b2e2b0e62959336592291f84ae774ccb58823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:08:f2:8a:45:85:c6:83:5c:75:21:cb:73:d0:
b4:3d:fe:e5:ae:3c:b9:13:18:4a:43:7b:e7:55:f2:
f1:9f:95:de:46:d6:0a:1f:7b:64:94:a5:89:13:ce:
2b:9b:06:6c:12:f9:61:27:c1:24:d5:05:29:1a:1c:
fb:ce:83:51:1b:5c:98:62:c2:ea:74:aa:ff:8e:d2:
01:a4:f9:04:4b:9e:12:27:fa:ac:66:cc:90:cc:09:
dd:29:70:f3:3c:ff:db:a8:3a:6a:df:d9:9e:06:13:
dd:a9:18:16:b0:a4:09:1d:4b:55:b7:58:80:5c:ea:
eb:1f:bd:88:c6:58:33:b7:da:64:22:81:28:aa:95:
d2:8a:2a:a8:03:92:5f:96:e5:38:89:6c:e0:e5:cf:
50:55:23:dc:8e:27:b2:13:90:b9:52:ef:ee:35:10:
89:ab:f3:f6:40:7a:cc:1a:a2:32:1e:b1:33:d9:57:
84:d5:fd:b6:0b:6c:33:4e:08:4f:9a:96:e8:6a:42:
35:f0:44:6e:05:61:6a:54:1c:a0:74:3e:ac:15:7e:
6e:15:48:42:9e:04:1b:23:43:98:92:d8:9b:67:0b:
eb:c3:1f:1c:e9:26:fe:d8:d6:02:b2:80:10:d4:c0:
8d:87:73:b0:37:64:f6:b7:37:42:36:f0:58:d5:74:
c5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:5B:2E:2B:0E:62:95:93:36:59:22:91:F8:4A:E7:74:CC:B5:88:23
X509v3 Authority Key Identifier:
keyid:F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:98:27:59:dc:86:6d:3e:f4:57:76:a7:96:0d:8c:df:8d:af:
d4:d2:48:93:77:52:c1:b4:5a:66:1f:28:91:61:03:96:ae:13:
15:3d:00:6e:05:2b:cd:61:8e:d6:f8:cb:92:d1:03:33:01:d9:
4a:3c:f2:e2:bd:55:6e:ae:b5:64:dc:d1:09:9b:9a:68:ac:ac:
54:66:bb:63:fc:a9:d7:bd:cf:05:39:07:ba:0a:f0:a1:7a:92:
b7:e7:15:56:82:70:a9:e7:9b:4c:dc:dd:2b:f2:0d:a5:bc:ad:
7a:5e:6e:dc:62:0e:7b:bb:4e:44:6e:a3:0c:70:00:f3:85:28:
0c:2b:3e:2a:72:71:99:8e:7b:e2:75:47:bb:bc:69:74:43:12:
87:64:89:aa:74:e6:b7:1d:b6:fb:ee:2e:ee:c1:79:9b:63:bd:
96:5e:43:35:e6:b4:c4:ce:81:80:e8:61:9d:68:7c:4b:02:85:
60:24:e6:df:f1:8a:ae:3c:c4:af:cf:78:d6:48:ee:3b:33:69:
e5:6f:f8:b8:de:e1:d0:60:3d:65:da:2e:be:73:ff:dc:d3:2a:
06:c1:d5:09:a4:1e:3a:3e:97:15:74:03:89:02:f5:92:f2:fb:
41:a5:d8:0e:0b:6c:fd:e3:a5:b7:23:8d:cd:9e:50:bf:9e:e0:
1d:fb:19:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:36:32 2025 by rpki-client