
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: ZVxUoWPoXI1j0/84l3tvJE9v+PzqmNTwmmg7CORmWtw=
Subject key identifier: 0C:ED:E5:22:CF:58:E5:F2:39:EC:DD:1D:4E:1D:5E:55:3A:78:AE:75
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 0197624C2A083DD97817DCA0AF5341757800
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 05C2
Signing time: Thu 12 Jun 2025 04:00:48 +0000
Manifest this update: Thu 12 Jun 2025 04:00:48 +0000
Manifest next update: Fri 13 Jun 2025 04:00:48 +0000
Files and hashes: 1: WhLENsO2y4UEzkuswA1wx41c4K4.roa (hash: qqWz2hpUFCfdOvnndjkfI9tgPQ2D7KLxkWgnxyi1reI=)
2: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: KqzyCJBJdoGXrYgLVcFdjxihvuxbaVIG8FDdMHC2lLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 04:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:4c:2a:08:3d:d9:78:17:dc:a0:af:53:41:75:78:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: Jun 12 04:00:48 2025 GMT
Not After : Jun 13 04:00:48 2025 GMT
Subject: CN=0cede522cf58e5f239ecdd1d4e1d5e553a78ae75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:69:86:63:72:ea:dc:ed:47:01:c5:77:ed:72:
7d:fa:1f:af:08:10:39:7d:e1:ca:67:8e:68:6d:1d:
00:3c:b8:19:eb:d0:a6:4a:3d:e9:44:71:40:f1:1d:
32:e9:9c:85:20:29:df:39:7e:e0:eb:07:46:50:ac:
31:ce:3b:01:35:c7:f3:41:44:8e:0a:48:76:da:50:
0a:43:0c:c4:bd:d2:11:62:d1:bb:16:c9:53:d0:6a:
f8:a8:ca:26:ca:13:6e:8e:42:a6:37:64:b6:12:37:
33:fb:c5:f7:d5:3d:3f:40:a5:81:3d:e2:7a:ca:2f:
6b:c4:b6:ac:8b:93:ac:d6:04:0e:1d:e0:67:83:bc:
29:a9:0d:3f:62:3c:2d:cc:0f:e8:7a:a8:1b:d9:1d:
66:85:b0:f7:3e:4a:4a:d5:7d:1a:9c:f4:75:f7:bd:
24:2f:b1:21:28:f2:86:3e:19:40:61:36:5b:b3:d2:
18:35:51:76:e1:0d:35:25:22:f0:32:4d:e3:44:37:
4e:3e:0f:c4:68:fd:97:7b:a3:8c:ba:a8:34:dd:66:
b9:26:cc:5f:92:b8:c3:da:fe:01:f9:3f:5e:04:45:
08:6d:94:12:81:4c:a7:41:ad:cb:5d:cb:dd:d5:10:
d2:b9:ae:5d:4f:61:80:6f:4c:e2:f3:44:17:43:0e:
46:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:ED:E5:22:CF:58:E5:F2:39:EC:DD:1D:4E:1D:5E:55:3A:78:AE:75
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:82:01:31:92:72:84:dd:47:9f:84:0b:82:ad:cf:94:80:bc:
c2:79:87:f4:03:cf:d2:0d:7a:ef:c0:12:b4:70:49:14:b5:e5:
47:a2:f5:6c:2b:02:0d:e4:ac:86:2d:23:e5:f9:55:fb:5b:73:
f5:71:61:47:07:d8:89:66:34:68:35:97:b4:8f:d2:fe:50:90:
07:69:3b:77:51:5c:46:e1:09:7d:14:5f:d5:32:15:5c:bb:98:
1a:c2:47:01:c0:d9:f2:ed:29:10:e7:f3:7f:dd:a3:07:dd:df:
12:55:f3:b4:a0:e8:55:62:10:9d:b2:69:1b:34:8e:63:c9:be:
60:a4:69:90:06:66:c4:85:db:0e:f6:bd:d2:eb:d7:f6:ac:c4:
81:f9:b7:96:a3:f8:c4:e3:d8:b6:fb:5e:9d:ee:00:5e:a2:cc:
c4:e6:b6:22:64:64:86:8e:0d:59:4d:62:de:ba:83:20:dc:26:
a7:6c:be:36:e4:7e:62:de:1e:d9:ff:a1:58:70:65:3e:b3:f7:
a4:4d:0f:8c:1a:3b:17:b9:6e:bb:a0:40:92:3d:5f:f5:28:a0:
fb:77:83:c0:43:26:cc:a6:83:54:32:c5:d1:cf:9b:d8:2f:e8:
79:cf:4e:6e:4d:38:6f:74:b3:6a:67:88:fb:38:bf:e7:44:78:
72:26:e0:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 14:06:55 2025 by rpki-client