Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
File: aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft (raw, json)
Hash identifier: mHeADMWDq8dj5qfirmkfiJBoF4zplm/xHEbC/7rfpJM=
Subject key identifier: B5:98:95:E9:22:03:89:A5:39:10:C7:6A:2B:CF:3C:AD:E2:BC:E6:00
Authority key identifier: 69:72:0A:91:03:E1:AE:00:CC:78:8C:5D:EC:FE:09:48:C8:4B:CD:1B
Certificate issuer: /CN=69720a9103e1ae00cc788c5decfe0948c84bcd1b
Certificate serial: 01974AE85BC7B69AD88B24F205E7EE037D39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
Manifest number: 0C91
Signing time: Sat 07 Jun 2025 15:00:31 +0000
Manifest this update: Sat 07 Jun 2025 15:00:31 +0000
Manifest next update: Sun 08 Jun 2025 15:00:31 +0000
Files and hashes: 1: aXIKkQPhrgDMeIxd7P4JSMhLzRs.crl (hash: qh6Uoa3V6Ep0ah54pUtlk2H0/3u+GWreV7nJ77Gvsio=)
2: jT8P4HyIvKh8r7FQFBaidUndh0Q.roa (hash: Wroxjw87hFNcZdv8/bJmsCuX0IjtBBcn8Xp1138BSK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:5b:c7:b6:9a:d8:8b:24:f2:05:e7:ee:03:7d:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69720a9103e1ae00cc788c5decfe0948c84bcd1b
Validity
Not Before: Jun 7 15:00:31 2025 GMT
Not After : Jun 8 15:00:31 2025 GMT
Subject: CN=b59895e9220389a53910c76a2bcf3cade2bce600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:78:97:2e:9c:3a:5a:3f:3c:d3:44:48:e8:72:
96:c0:52:5f:c7:9c:f5:41:10:a2:ec:aa:02:b0:f1:
bb:2a:97:10:67:99:90:e6:16:ed:a1:bf:ab:21:70:
2b:f2:5e:0d:7a:b5:e2:a4:c5:5e:a4:3e:bf:96:13:
27:5e:d8:35:61:04:f0:92:04:06:73:3d:21:11:18:
b2:51:f8:2f:49:e2:ba:2a:06:a4:4a:f8:be:94:8c:
97:35:6e:26:fd:9e:f3:e1:30:b7:b5:21:5d:87:05:
62:c9:ae:10:ce:54:09:10:40:2e:6f:a0:3e:2e:bd:
82:af:c0:0f:32:30:d8:04:37:15:8f:85:49:41:29:
c1:ea:58:be:cf:43:65:ed:c2:d6:09:d3:a8:0f:8c:
f8:4a:0e:58:0a:e8:16:c6:2c:78:a4:87:f1:0e:1e:
d6:96:0e:1e:53:a3:e7:66:b4:36:80:97:d7:c6:48:
17:02:bb:7a:82:b1:88:2c:be:06:06:07:12:19:c2:
f9:b1:54:19:d4:31:46:c8:3d:09:63:64:53:33:2c:
d0:a4:0c:1c:b6:5d:b4:c0:9c:55:e2:f3:11:29:db:
39:d3:d5:b4:88:ae:25:2a:33:a2:3c:b6:7f:66:ce:
2a:70:a0:bf:7b:7b:9e:80:09:dd:8a:e1:c3:b8:1a:
12:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:98:95:E9:22:03:89:A5:39:10:C7:6A:2B:CF:3C:AD:E2:BC:E6:00
X509v3 Authority Key Identifier:
keyid:69:72:0A:91:03:E1:AE:00:CC:78:8C:5D:EC:FE:09:48:C8:4B:CD:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:c2:2b:c6:3e:e5:f0:75:e3:c4:86:c4:d3:24:65:9c:a8:58:
b2:01:97:ef:d1:f9:56:ba:93:f8:e7:03:7c:71:d2:b3:f4:99:
9a:b2:92:d9:7e:48:b6:84:61:aa:43:00:a1:78:1a:bc:a9:c2:
9b:e0:8d:83:c4:f4:de:f3:47:32:f1:20:27:e6:e1:03:45:45:
fd:8b:0e:e6:9a:2a:11:75:6a:ad:96:3a:47:df:c2:9c:52:f5:
ff:c9:da:e1:cd:2e:f6:05:be:4b:2b:ef:aa:b7:ce:cf:de:4a:
9c:f0:d7:5d:c6:c1:40:72:69:0d:a2:a9:6d:a7:5c:20:87:27:
82:0b:ad:41:69:68:32:39:4f:9f:d7:9b:11:f7:9c:e8:7e:de:
5d:02:96:3d:54:07:9d:a0:ad:01:2e:50:84:08:d9:86:7b:0d:
b7:7d:b7:f1:21:04:f4:3b:b1:7e:71:63:86:98:f3:04:a2:d5:
2d:e0:f9:ff:a2:d2:07:79:a2:fb:97:4a:ff:2e:e9:2d:7a:1b:
8a:70:37:d1:5d:6d:d1:cf:d6:71:7f:3e:6c:a0:99:6b:84:26:
4c:f6:3b:56:d0:fd:58:d1:09:04:e1:6f:6f:06:16:c6:49:8d:
68:aa:e3:6e:dd:fd:65:8c:6a:fa:51:fd:55:86:6e:ea:19:c8:
c0:b8:f6:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:07:59 2025 by rpki-client