Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
File: aa24Jfn9vKDNfHkB3reiKuF5fAY.mft (raw, json)
Hash identifier: xcwmM36/sx7ZBvoyCPzII1lGvWG2gosr+AWg68vKUrg=
Subject key identifier: 30:F7:98:B4:AB:B0:DB:F3:5B:A0:97:8C:4E:68:95:AD:6A:92:AB:F0
Authority key identifier: 69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
Certificate issuer: /CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Certificate serial: 01974DB3189EBBEA01A1536A48190CA0CE18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
Manifest number: 1299
Signing time: Sun 08 Jun 2025 04:01:11 +0000
Manifest this update: Sun 08 Jun 2025 04:01:11 +0000
Manifest next update: Mon 09 Jun 2025 04:01:11 +0000
Files and hashes: 1: CcO4X5owbp8OTsQUAi4Se0U0bGo.roa (hash: Rjhil4a1bZ7IivISF1+emC+myyX4/SSXPPEDg9r6bJ4=)
2: aa24Jfn9vKDNfHkB3reiKuF5fAY.crl (hash: 2SdYfxPj1MPBIf/K49FJWYLEWyFKUB2tqsWfTcFYIDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b3:18:9e:bb:ea:01:a1:53:6a:48:19:0c:a0:ce:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Validity
Not Before: Jun 8 04:01:11 2025 GMT
Not After : Jun 9 04:01:11 2025 GMT
Subject: CN=30f798b4abb0dbf35ba0978c4e6895ad6a92abf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fe:7b:e3:bb:45:ac:13:89:40:1c:7d:2a:bc:
4a:77:be:de:4d:c3:a7:f0:4b:9a:51:aa:bb:c8:40:
83:5b:0a:98:5a:8a:34:4a:96:99:91:a7:b9:03:68:
b2:4b:22:d7:57:04:84:15:6c:9e:98:e6:cf:b0:31:
08:bc:b5:41:f3:5c:97:17:d5:04:c5:0b:23:96:b1:
89:35:7c:0c:bc:e4:42:4c:48:48:03:25:cd:f5:b5:
b3:47:09:b9:df:82:ee:55:e4:ac:32:f7:bd:ac:69:
1e:66:29:38:83:b3:cd:08:65:69:ab:8b:7f:2b:64:
7f:0f:2a:99:67:29:b1:bf:be:d9:f5:e9:72:86:2e:
41:8a:8c:90:e8:52:8f:24:29:1c:3d:c6:8a:48:62:
e2:73:7f:d9:41:8d:e3:21:c8:e7:af:4e:7b:98:b7:
78:c7:b7:51:09:da:f3:0b:46:aa:04:9b:b2:d0:ff:
7a:06:8b:32:99:e9:7c:91:e4:64:82:26:2d:e3:bb:
45:60:8a:97:76:cc:60:ad:56:7c:bd:66:8f:e0:38:
f3:b7:f5:f6:2b:7a:9b:3f:b0:35:9b:d3:2d:87:3e:
b6:a2:05:78:61:6c:87:78:a2:f5:bf:0f:84:a9:7e:
93:a4:d0:56:b4:8e:77:b6:1a:b6:81:17:8e:fe:19:
a8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:F7:98:B4:AB:B0:DB:F3:5B:A0:97:8C:4E:68:95:AD:6A:92:AB:F0
X509v3 Authority Key Identifier:
keyid:69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:df:49:4c:5a:fc:27:7f:ac:56:2b:18:91:f3:bc:f9:d2:38:
70:1f:03:54:36:b3:dd:92:f6:5a:4e:db:ef:48:27:76:d0:d8:
b9:da:a2:58:10:cd:59:21:39:ec:2c:b1:bb:62:8e:d8:7a:95:
d0:69:06:6c:2f:a5:c6:e3:91:20:c3:2d:b6:1b:47:5c:d7:97:
e7:79:3c:97:2c:a9:ef:a3:39:0e:56:fc:14:65:f5:00:de:8e:
bf:d4:58:c8:60:a3:cf:4c:09:26:c7:e2:c2:9e:41:bd:d4:47:
d0:b5:fa:b5:68:fb:a5:fb:d3:52:96:da:41:6e:00:81:43:53:
d8:c0:78:db:c7:b2:4f:c7:73:73:d1:94:c7:77:02:d3:fe:2d:
66:a0:b3:70:a6:88:94:8f:6a:75:95:79:0f:1d:5f:6b:34:94:
54:98:82:79:97:81:95:91:9f:4b:5e:0c:a6:9c:3a:af:0e:96:
39:e3:10:c0:a6:bf:0f:99:9d:b9:f1:2e:1a:a7:59:9b:5f:41:
5a:1e:e4:87:26:54:ef:45:1d:32:cd:67:47:56:89:6e:f5:20:
81:15:64:e1:f8:3d:4d:fb:e4:93:21:f8:92:ac:d1:ad:37:5b:
10:f6:7e:10:32:0a:0b:40:92:1e:b8:e8:16:00:8f:93:0b:29:
17:31:28:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:33:21 2025 by rpki-client