Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json)
Hash identifier: bCEMSlwUVAObJ8eo4nYVBvBJ/Kndn7mfTMQ5v9ULsvo=
Subject key identifier: 86:3D:76:83:17:A1:3B:BF:96:24:2E:4E:7B:4C:52:2B:72:A1:2A:49
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 0197518F36286426D2306B6CB7FA00489A87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
Manifest number: 1583
Signing time: Sun 08 Jun 2025 22:00:29 +0000
Manifest this update: Sun 08 Jun 2025 22:00:29 +0000
Manifest next update: Mon 09 Jun 2025 22:00:29 +0000
Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: yfd/4MhejtJKCB0zRCz4jBo/M/fqeg7s8l0eppI5y3I=)
2: qen-QoIAAGwgpqx4OQAF6M4rR_M.roa (hash: Pfgs1o9qvVrkxz8on7jtYneDypFRD7JuU2XED3GEHk4=)
3: sJjIi8LxyBaapUPztypafiGazB4.roa (hash: snoS7xcNMuCgLXX7PRPXvmr0bu9uS7kTUSsVN0SedsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:8f:36:28:64:26:d2:30:6b:6c:b7:fa:00:48:9a:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Jun 8 22:00:29 2025 GMT
Not After : Jun 9 22:00:29 2025 GMT
Subject: CN=863d768317a13bbf96242e4e7b4c522b72a12a49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:22:02:ea:06:84:ab:95:09:6e:1d:c8:16:8a:
83:5f:2e:7d:38:d5:76:f9:53:bb:20:85:62:6e:f5:
88:b3:e9:1a:bf:6d:43:a1:a2:31:01:b1:f9:bc:0e:
0c:9e:3f:e6:60:c2:c5:c3:9e:5b:dd:7c:ea:29:14:
ab:14:df:7d:6b:5a:01:72:a2:85:c9:a6:f7:1f:e0:
33:6c:1a:48:57:00:10:7d:e5:be:2d:c1:82:2b:6e:
0c:94:11:bf:9f:94:ce:6a:fe:64:cf:06:fd:2f:7b:
18:75:49:e8:be:d7:f1:28:0f:31:eb:55:f3:43:3d:
da:07:2b:35:9f:b9:42:fc:6e:e4:cb:40:cb:74:9e:
3f:bd:55:cc:18:8a:5d:b9:85:1a:bf:4f:d7:1d:80:
69:37:03:63:93:3a:ae:97:a1:0d:9f:4e:94:cb:3a:
fe:5f:34:5f:f3:bc:d6:17:3b:85:e5:50:8e:9d:d6:
03:b5:f5:c8:ac:b1:7a:6f:58:50:98:23:12:64:c4:
06:67:a7:2b:ee:00:b2:3f:c4:fd:96:eb:52:fa:e6:
a0:99:34:dc:09:8d:84:23:0e:f4:58:6b:c1:37:0f:
92:70:c4:44:62:01:ea:fe:d4:9f:19:35:34:72:6f:
4e:19:ce:6a:4d:11:77:ec:c6:aa:46:d8:78:2f:54:
dc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:3D:76:83:17:A1:3B:BF:96:24:2E:4E:7B:4C:52:2B:72:A1:2A:49
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:73:28:ec:4d:94:ad:b3:6a:06:82:92:0e:ce:2d:7a:1d:b3:
9f:7a:34:5c:7d:68:d6:ad:56:a0:9f:34:a4:75:5f:3d:16:a6:
62:08:9d:22:9c:a0:52:b2:d8:18:88:8e:01:02:7b:08:ac:db:
82:16:ed:d9:d5:90:e4:87:36:c3:0c:93:af:73:4f:2c:50:7e:
94:89:cf:c7:fc:6b:0b:6e:7f:ff:1f:0f:47:f0:1e:90:3f:cc:
81:82:51:bd:32:e2:57:91:a1:cb:f6:85:4c:96:d2:c2:a0:f4:
8b:98:18:ee:6c:62:0b:c9:ad:07:23:7e:48:3f:11:fe:94:11:
b0:b6:39:e7:b8:c6:23:69:4e:1d:af:15:eb:cf:63:e1:ad:ea:
18:de:88:fc:d7:0d:b0:be:74:6e:18:bc:17:33:cd:f0:91:2d:
51:69:30:59:24:c5:bd:b3:97:ec:9a:33:47:8a:96:c6:ce:27:
9e:b2:45:67:3c:88:95:e0:ff:1b:ed:93:e1:3c:35:89:3c:1e:
d0:8e:f8:04:e9:c6:2c:75:a5:fe:21:7c:72:03:55:f0:e7:6a:
d3:81:5b:2f:78:a5:03:01:1b:aa:ca:2d:0e:e1:48:ce:de:f1:
bb:3d:ec:5a:a1:f8:45:7a:96:57:e9:f7:d3:ab:f7:dd:4f:ad:
2b:70:9c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 06:17:39 2025 by rpki-client