Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: yit0cQcslIX8GjODTtmHF06EGNXX4sBJRzCYgHStec4=
Subject key identifier: C9:79:77:3F:60:1F:92:92:55:C3:7F:F5:C9:79:29:04:D6:25:57:63
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 01975A92B0ED6D9FC54C68B17C0BD9B37CA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 05BE
Signing time: Tue 10 Jun 2025 16:00:52 +0000
Manifest this update: Tue 10 Jun 2025 16:00:52 +0000
Manifest next update: Wed 11 Jun 2025 16:00:52 +0000
Files and hashes: 1: WhLENsO2y4UEzkuswA1wx41c4K4.roa (hash: qqWz2hpUFCfdOvnndjkfI9tgPQ2D7KLxkWgnxyi1reI=)
2: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: vB+aBTLbMYXTlTnNzllUFgOn2qc2lCHEwVPWufR2Ptc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 14:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5a:92:b0:ed:6d:9f:c5:4c:68:b1:7c:0b:d9:b3:7c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: Jun 10 16:00:52 2025 GMT
Not After : Jun 11 16:00:52 2025 GMT
Subject: CN=c979773f601f929255c37ff5c9792904d6255763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b8:fa:d1:18:31:7e:4e:03:cd:50:fb:5e:e1:
cf:a6:fa:fc:f5:b9:7b:d2:58:d4:bd:d4:8b:ad:04:
ba:8e:65:e1:bc:13:6d:88:17:a6:8d:2f:e6:73:ab:
2a:b1:10:31:03:e6:2d:9b:ad:c6:5c:97:82:53:34:
29:b9:96:1a:c9:32:00:1d:5a:8f:b4:c4:12:34:7b:
35:31:76:f9:c6:c6:73:98:30:29:4d:5a:d3:31:7a:
4e:b0:9c:06:42:44:7d:13:6d:38:59:8c:6e:48:52:
4a:f0:81:5c:7e:d0:b9:c6:ff:2d:5f:b6:71:85:f9:
9e:34:f1:b4:b2:d1:ab:67:41:58:bb:38:87:55:75:
0f:57:58:7a:04:9f:ae:d8:89:4d:31:9a:c7:66:4b:
1f:1c:a3:db:50:b4:fb:8d:f4:ba:c0:9c:31:e6:11:
d4:73:20:91:d1:2e:85:b1:ef:34:ce:e1:ec:31:45:
59:f1:7d:3f:ba:d9:d3:56:d8:26:0c:ed:b5:06:00:
c8:bc:20:85:9f:ad:08:0c:a8:6a:96:2f:bd:a1:12:
17:12:f1:ae:b1:19:9a:ed:02:1d:bc:8c:60:ba:68:
7f:59:f0:62:b3:a3:2b:ff:65:72:f7:f7:c0:84:74:
07:2e:de:aa:24:df:b3:3b:0b:6f:d7:65:48:5e:05:
23:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:79:77:3F:60:1F:92:92:55:C3:7F:F5:C9:79:29:04:D6:25:57:63
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:8c:5e:d9:15:96:99:a7:49:48:9e:be:01:d7:11:1f:22:1d:
3f:54:1d:54:5d:ce:be:30:9b:20:78:46:0b:4a:d0:06:33:ec:
46:a7:c3:ce:54:ce:e6:24:5f:1b:f0:cc:d6:03:5e:01:9d:4d:
e8:ce:f0:45:ed:15:02:dc:b1:85:a3:46:c1:ac:92:c5:00:29:
c0:94:88:27:82:17:d0:40:fa:95:2e:b7:4f:18:19:ca:ee:ee:
35:09:c6:2b:74:ed:76:26:28:4e:a5:cc:c9:a1:40:78:b9:ce:
17:67:a8:07:a2:78:0a:3d:1e:f2:81:ea:62:6c:cb:2f:d3:1c:
4a:44:27:fd:59:98:d0:27:ef:80:8d:2a:8a:50:7c:52:f3:9a:
d7:68:b2:c0:ee:4e:7b:17:29:ee:99:3c:3d:08:0b:f7:36:03:
a3:cf:08:77:d5:85:30:7b:a2:dc:90:0b:34:e7:c1:76:cd:4c:
2e:f5:24:a2:39:9c:9b:3a:06:f2:63:62:f0:8b:a2:dd:8b:2e:
9c:c0:ff:01:ca:ae:3a:35:3b:1d:09:eb:43:60:9d:7f:a9:17:
e4:9a:8d:e5:16:a5:56:a4:fb:31:10:8b:a7:cd:f5:a4:11:9b:
df:54:a5:b1:aa:a1:10:21:9e:76:55:e6:de:94:4a:c6:7a:51:
6b:99:5d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 00:41:21 2025 by rpki-client