Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
File: aM_hqssnjBMjGzEORe5XaTL-m04.mft (raw, json)
Hash identifier: Hgll5hawCElrAuNbgMuJssNj2FjPhNaawePt0KmIrqA=
Subject key identifier: 99:91:D4:47:BE:64:3D:08:6F:38:05:40:78:CC:4F:4B:D4:3D:9F:BA
Authority key identifier: 68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
Certificate issuer: /CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Certificate serial: 01974B8D5B13BF38259D3DE04CAF239A1FE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
Manifest number: 1212
Signing time: Sat 07 Jun 2025 18:00:44 +0000
Manifest this update: Sat 07 Jun 2025 18:00:44 +0000
Manifest next update: Sun 08 Jun 2025 18:00:44 +0000
Files and hashes: 1: NAg_2lUwiNc2BXVWx1ALPDBcGK0.roa (hash: I6Xgg/yTyhGgk1wwRR5vfbPkXPHDlymI7Asksvi+yR4=)
2: aM_hqssnjBMjGzEORe5XaTL-m04.crl (hash: n4Lcm1sxu9dalGqwJkFaI//x3xCVgSSBYbuUxVBYgBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:5b:13:bf:38:25:9d:3d:e0:4c:af:23:9a:1f:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Validity
Not Before: Jun 7 18:00:44 2025 GMT
Not After : Jun 8 18:00:44 2025 GMT
Subject: CN=9991d447be643d086f38054078cc4f4bd43d9fba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ad:48:86:b1:c3:81:e2:c8:db:6d:e8:77:fe:
5b:60:3d:8c:67:92:da:d8:1f:3e:4b:ca:ea:37:32:
f1:f3:d9:d1:a4:1c:75:99:9b:9d:2b:d8:d6:92:30:
5f:d5:e8:6d:1f:56:94:bf:8c:ba:a2:f8:79:db:39:
56:00:37:96:0a:19:c3:99:84:76:c4:b0:ca:33:76:
02:6b:52:85:cd:b3:bc:3a:14:e9:cb:5a:bd:0d:4c:
3c:b9:65:ef:2e:a0:86:99:2a:80:50:54:79:b5:17:
ec:5a:f6:57:0f:fb:d2:d8:de:10:ca:39:bc:f8:18:
22:6e:86:b1:7b:e8:28:10:2b:8e:00:f0:a6:e5:9e:
52:36:0f:95:09:56:6e:f7:ce:a2:d6:6e:a9:65:a4:
31:62:35:fd:0e:fb:80:d5:5f:2e:82:75:df:5f:57:
5f:e1:29:36:a6:fa:3d:a3:96:6c:f9:b1:95:78:6a:
f4:50:eb:5d:ff:0b:94:86:fb:2e:d9:27:e3:33:7b:
76:50:7c:f0:0c:0e:fb:23:c1:64:08:4e:89:78:47:
d0:2b:e8:8e:a1:a5:15:6f:b9:00:28:56:b6:b3:f9:
9e:ac:26:a8:53:0b:e5:68:50:6f:b3:37:e8:85:7b:
ef:f3:18:d2:10:4d:29:22:91:1e:97:3a:32:74:bc:
6b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:91:D4:47:BE:64:3D:08:6F:38:05:40:78:CC:4F:4B:D4:3D:9F:BA
X509v3 Authority Key Identifier:
keyid:68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:fe:d3:03:83:ca:01:79:82:e9:b6:4b:cf:c0:55:1a:71:7a:
b4:49:14:8b:67:09:5e:af:6b:1a:03:01:bb:30:e5:6f:c6:9e:
ac:99:66:ce:60:f7:33:34:74:3b:08:28:e9:77:94:66:ac:fd:
24:e1:41:cf:86:7b:ee:ef:fe:b2:2b:07:30:46:cd:ac:4d:3b:
d9:d1:71:70:4d:3f:9f:77:b8:4d:16:34:55:7f:35:9f:7f:75:
7b:8b:92:1a:6f:2a:17:b5:53:8b:24:f1:b1:fa:a3:a5:3f:98:
e7:55:dc:e5:7a:b8:9a:87:db:f1:e6:b4:a2:e8:78:99:6d:2e:
69:a6:36:38:24:21:d3:ea:ce:eb:27:30:3b:84:30:5a:b0:f3:
b5:38:8b:72:3c:b4:06:4e:38:aa:be:d3:e0:36:45:4f:c8:e9:
2a:fd:55:21:88:34:5b:43:56:22:57:e5:1a:b4:0f:78:f5:a1:
cc:8f:02:b6:57:fd:0c:a5:85:e7:75:6e:a8:3f:3c:f8:2c:50:
95:8d:17:3a:25:47:26:1c:08:55:4f:86:7c:b5:65:f4:9d:a2:
05:bb:3f:60:f9:fb:5e:79:40:0e:c7:e5:3f:32:96:b7:2f:a3:
71:ed:57:60:c4:de:5f:22:91:21:4b:dc:19:e4:4d:39:94:1f:
fa:61:5c:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:11:29 2025 by rpki-client