
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: tEqntK1r2z7As98Gk8AXYvcMUmTiMN4PP3M6mrwBz0o=
Subject key identifier: 0A:B8:EF:0C:8E:13:46:54:3D:9B:3C:50:EC:A2:A1:36:21:81:5B:CC
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 01976628FAFD70CD79CAFC90BF1BC7DEE8A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 05C4
Signing time: Thu 12 Jun 2025 22:00:51 +0000
Manifest this update: Thu 12 Jun 2025 22:00:51 +0000
Manifest next update: Fri 13 Jun 2025 22:00:51 +0000
Files and hashes: 1: WhLENsO2y4UEzkuswA1wx41c4K4.roa (hash: qqWz2hpUFCfdOvnndjkfI9tgPQ2D7KLxkWgnxyi1reI=)
2: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: o49Q0xIVK8IRz6Z1xBp1v+fgRXdUTUIy9al7SDCPqu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:28:fa:fd:70:cd:79:ca:fc:90:bf:1b:c7:de:e8:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: Jun 12 22:00:51 2025 GMT
Not After : Jun 13 22:00:51 2025 GMT
Subject: CN=0ab8ef0c8e1346543d9b3c50eca2a13621815bcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d5:21:d3:cf:81:40:05:07:74:ed:fd:29:2d:
35:09:52:b2:67:56:28:3b:4c:76:e2:66:71:6e:98:
dc:83:39:27:57:38:7a:2d:cc:ee:0d:2f:c8:d3:b9:
84:56:5e:6a:25:f0:ed:96:5d:43:0b:b2:ba:7e:4f:
05:85:58:0a:05:d5:57:4e:a6:60:8e:25:8b:5d:a6:
2e:0b:e3:e0:ac:ac:89:c3:b8:eb:66:96:b8:86:5f:
84:58:36:37:c8:ef:74:a5:a4:48:fa:c9:a1:1f:7d:
ce:69:ec:32:27:a4:99:c2:b0:56:1a:00:8d:ab:85:
3f:d8:90:f0:e3:ae:3d:1b:83:d3:b9:e8:ec:75:63:
22:c6:ce:d2:3a:8c:6d:57:70:b6:79:a5:ba:3d:29:
6a:f4:ee:f1:7b:74:19:59:64:0e:1c:ec:d6:fe:2b:
df:af:6f:30:a7:34:0f:a2:24:41:4b:cc:38:6c:4e:
f8:f0:b4:09:cf:27:58:bf:5a:21:bc:ff:a2:1a:5d:
8b:08:24:d1:16:5a:a2:4f:49:28:2c:26:1e:8c:31:
5f:e0:8d:b7:1b:2f:18:45:b9:9f:51:24:f8:2f:60:
31:e9:10:68:72:f0:61:c6:88:cc:80:36:3b:0a:70:
0c:af:ae:f7:18:74:3a:67:74:f1:cc:73:fb:fe:ed:
71:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B8:EF:0C:8E:13:46:54:3D:9B:3C:50:EC:A2:A1:36:21:81:5B:CC
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:56:0a:e5:af:12:ce:7f:c9:60:57:71:bd:d8:f7:fd:b8:04:
4a:ec:4d:bc:af:dd:b2:b0:11:3b:cc:63:8a:99:3b:00:f0:85:
ee:13:dd:1d:a4:d8:32:e4:a4:f6:17:dc:f8:b1:4a:50:cc:f9:
cb:a9:3c:26:bb:3f:92:86:2b:3d:5a:d3:57:f3:39:d6:35:88:
ba:48:cb:6b:de:e3:12:43:48:6d:e1:0b:ad:cb:e2:18:57:b5:
2f:82:6b:17:5b:09:3b:fb:38:5f:ae:e4:1b:35:93:e7:bf:a4:
d5:e5:da:28:ad:cb:a9:6d:85:15:e4:bd:bc:31:b3:b3:51:a6:
b9:b5:c7:fc:a9:d1:88:7c:29:17:40:f9:ca:cc:4b:dc:b0:d8:
46:22:c1:5c:7c:e3:b3:fa:2b:f4:e1:fe:0f:ca:c6:e2:cd:61:
22:6b:85:3f:de:16:01:bb:d0:db:7c:ca:94:82:b3:60:f2:e6:
13:51:a0:6b:69:33:d2:6f:1a:4e:d0:60:a6:9a:8b:77:cf:63:
8c:1e:b7:be:0a:25:6b:49:da:cb:21:0c:da:c7:46:41:6b:91:
47:27:da:f3:f9:8f:36:6f:98:5a:5d:ad:5c:1b:bd:86:31:1f:
2f:ce:d2:20:31:a7:fb:ef:b3:35:8d:a9:32:4f:a6:64:80:ec:
a9:a1:ca:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 05:03:05 2025 by rpki-client