Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
File: aVHUVR0mpRwPkrd8LTePs0dYuHc.mft (raw, json)
Hash identifier: WqJficyfivH0FiH6ofwra8Z+1tW4v9WDwbCP/c/jm+w=
Subject key identifier: B8:57:79:4D:F9:2A:8F:CD:2C:DD:FD:2D:1A:67:3D:58:79:6B:0B:5B
Authority key identifier: 69:51:D4:55:1D:26:A5:1C:0F:92:B7:7C:2D:37:8F:B3:47:58:B8:77
Certificate issuer: /CN=6951d4551d26a51c0f92b77c2d378fb34758b877
Certificate serial: 01974FD82AFC0F68CE883D75F1C99657577A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
Manifest number: 0690
Signing time: Sun 08 Jun 2025 14:00:56 +0000
Manifest this update: Sun 08 Jun 2025 14:00:56 +0000
Manifest next update: Mon 09 Jun 2025 14:00:56 +0000
Files and hashes: 1: PxyIfomodD9RHY4nPMUQ_8FG_F0.roa (hash: GQBwkJMiYlMRNPb5m5PsI1lq6MhgUy7JaZpjCwR+Ch8=)
2: aVHUVR0mpRwPkrd8LTePs0dYuHc.crl (hash: SvLpK/uhNe5P32zsoMG81w6RUAtbyWU1D5ZZEHlNzGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d8:2a:fc:0f:68:ce:88:3d:75:f1:c9:96:57:57:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6951d4551d26a51c0f92b77c2d378fb34758b877
Validity
Not Before: Jun 8 14:00:56 2025 GMT
Not After : Jun 9 14:00:56 2025 GMT
Subject: CN=b857794df92a8fcd2cddfd2d1a673d58796b0b5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3f:75:9d:9f:3f:73:b9:d6:00:41:65:65:2f:
93:bf:8a:30:e6:6b:f1:c1:92:2a:e1:cd:6a:e4:e9:
9d:98:62:d6:fd:4f:a5:b8:0e:c2:eb:7e:96:88:a2:
5d:e5:d9:9e:c2:b3:1e:a6:4a:d5:46:15:4e:44:78:
b1:06:28:e7:46:30:1f:2c:d6:56:64:ae:4f:6b:f8:
31:ef:6f:76:a5:83:18:25:13:67:0c:3d:94:48:0d:
ef:11:42:c6:c7:dd:8e:7f:72:1b:a3:ae:71:15:0d:
2a:32:7c:ff:e5:a6:6b:83:97:e3:53:0d:b5:13:2f:
0c:cf:ec:65:e3:ac:05:98:f6:22:14:8f:64:ae:4a:
91:b6:a6:53:7e:bc:62:0c:1e:86:c8:8f:24:30:3e:
6a:d4:a2:99:5a:e9:34:b3:b6:eb:46:fb:a1:dc:9b:
d3:bd:d5:55:e1:2b:a8:ad:c9:61:e1:58:1a:20:61:
cf:58:9d:dc:a4:82:ba:79:20:43:89:af:86:aa:5f:
d0:6a:72:b1:87:36:ec:6e:a8:a1:dc:58:b0:fe:64:
76:ff:49:0f:f3:a2:96:90:ef:7c:46:d5:30:48:e1:
ac:24:af:35:71:fa:ac:e9:96:26:4d:19:1a:67:6b:
1d:f3:28:cf:e6:a0:d6:94:16:50:df:bd:40:39:26:
3e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:57:79:4D:F9:2A:8F:CD:2C:DD:FD:2D:1A:67:3D:58:79:6B:0B:5B
X509v3 Authority Key Identifier:
keyid:69:51:D4:55:1D:26:A5:1C:0F:92:B7:7C:2D:37:8F:B3:47:58:B8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:2a:ca:e8:03:a0:31:98:b6:5e:bd:5f:23:ee:59:f9:a6:36:
1d:0a:84:a0:6b:e7:2e:79:55:56:8e:0c:74:a4:12:21:4d:5f:
1b:64:13:ce:bd:1c:46:99:65:82:cc:99:f5:ce:23:96:18:a7:
c5:c6:97:fb:68:b0:43:ca:5f:55:b1:f9:c1:ab:95:0f:a1:a3:
0f:6c:a4:54:c2:f1:76:fd:39:5a:a9:3c:9d:b4:18:f0:c8:e8:
85:94:bf:35:9b:2c:f0:e8:92:47:b7:86:0d:2f:e1:9c:55:b8:
5a:d8:ec:a8:54:20:29:e6:61:08:00:e6:49:47:bc:e9:aa:b6:
2b:e9:9b:14:e9:a3:01:a2:57:e2:df:ed:e7:10:e1:1b:21:35:
33:85:48:0e:8e:7f:b5:14:50:1c:d9:23:5f:34:bf:48:6f:d5:
a1:f3:d7:b7:54:18:35:9b:b4:32:e5:80:c2:81:18:8b:33:99:
23:5a:40:ee:a7:ac:c3:57:6d:db:fc:dd:f7:12:bd:68:5c:2a:
7a:75:10:6c:43:64:82:4a:df:5c:dc:d9:c8:aa:09:1c:d1:d9:
bf:7a:4f:26:98:1a:77:4f:39:4b:2d:b5:d9:eb:c3:cd:7d:83:
d3:09:62:70:d4:17:bd:32:23:6f:b2:94:93:73:fa:86:6e:86:
64:1b:e4:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:32:31 2025 by rpki-client