Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
File: 1AjPCbarAFupM7KnpKbSfqa7cso.mft (raw, json)
Hash identifier: yJs+mhzRkP/dfcdlB1+6f33eHzzJT9PuMG9GTAmJmvA=
Subject key identifier: 1F:71:79:41:45:79:AC:35:62:D0:BF:C7:BC:34:B8:0C:C0:71:80:42
Authority key identifier: D4:08:CF:09:B6:AB:00:5B:A9:33:B2:A7:A4:A6:D2:7E:A6:BB:72:CA
Certificate issuer: /CN=d408cf09b6ab005ba933b2a7a4a6d27ea6bb72ca
Certificate serial: 0197470B8F9FE1757DEFBCD271F25DB597BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
Manifest number: 0294
Signing time: Fri 06 Jun 2025 21:00:29 +0000
Manifest this update: Fri 06 Jun 2025 21:00:29 +0000
Manifest next update: Sat 07 Jun 2025 21:00:29 +0000
Files and hashes: 1: 1AjPCbarAFupM7KnpKbSfqa7cso.crl (hash: czvDjfIFHuVPn2c6LQDlmOhKtcA3vpQNVzD/dMBCFJo=)
2: mjk_9mBIX2K41ASneFahi5WxQms.roa (hash: qL7nGWS3Awht9PmP0vDzSTXhKhc/jIpjX536PZtB9fQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:8f:9f:e1:75:7d:ef:bc:d2:71:f2:5d:b5:97:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d408cf09b6ab005ba933b2a7a4a6d27ea6bb72ca
Validity
Not Before: Jun 6 21:00:29 2025 GMT
Not After : Jun 7 21:00:29 2025 GMT
Subject: CN=1f7179414579ac3562d0bfc7bc34b80cc0718042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5c:41:aa:97:10:92:0b:07:3d:df:1a:4a:bb:
b6:cd:5e:c9:2a:8d:a8:0b:12:c9:e7:e9:6c:64:9a:
2a:dc:4b:18:db:5d:ce:96:b4:58:50:2e:0a:bd:d9:
d7:42:a8:eb:04:ec:8b:24:3a:a2:7f:f5:56:83:9a:
d7:6e:6b:44:c0:7e:74:b5:40:a5:e4:89:84:2d:07:
87:8f:00:77:ae:1b:4c:7b:fe:84:89:e1:4e:74:14:
bc:e8:55:fd:8c:ce:51:d8:6a:e6:ff:c9:62:4b:16:
0d:61:76:3b:d4:c9:59:fb:a9:10:4a:44:a6:7a:ea:
a0:79:1a:15:86:e2:49:b8:f7:b5:f4:71:dc:43:6e:
12:4a:a4:a9:5e:0f:63:63:f5:66:0d:f8:1b:35:65:
61:01:20:93:73:25:50:c1:dc:40:95:42:38:ce:54:
7d:d0:ee:0e:aa:1d:d9:4c:f7:60:7a:fd:27:95:71:
a2:b7:00:86:76:0b:4e:c0:07:4f:32:60:0c:f6:60:
92:cd:89:27:6a:73:22:68:9d:45:a2:75:7d:ae:3e:
9f:71:c4:72:b8:ed:b8:7e:73:b7:31:cb:3b:07:57:
08:05:18:d4:00:38:25:6b:58:fb:99:6d:ac:30:fb:
57:44:92:f6:eb:be:13:b8:9d:0e:5a:07:4d:db:fa:
14:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:71:79:41:45:79:AC:35:62:D0:BF:C7:BC:34:B8:0C:C0:71:80:42
X509v3 Authority Key Identifier:
keyid:D4:08:CF:09:B6:AB:00:5B:A9:33:B2:A7:A4:A6:D2:7E:A6:BB:72:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:12:ef:94:b3:78:32:8b:82:33:87:f5:b8:fc:4f:cc:e8:40:
2f:0b:d8:4f:5d:9e:90:fc:db:b4:cf:6d:73:18:7f:08:30:79:
5c:35:05:70:e3:3e:82:65:d2:1b:f5:39:a4:3b:92:9e:18:61:
7c:fb:45:fa:be:11:93:9d:aa:11:36:8b:d2:e2:2f:8c:8e:d2:
d8:4a:d0:4b:ec:7b:17:a6:24:97:a7:25:5e:4a:55:b3:e5:97:
b3:24:27:86:43:f5:f0:e5:1b:d8:c6:d6:ca:b9:de:d7:85:61:
72:21:5f:a2:ca:84:8d:8b:6b:cd:44:70:13:79:da:ed:db:eb:
df:1b:5b:44:05:9e:0b:2f:33:0e:cf:dc:fc:5a:85:7b:9a:d8:
e4:d5:93:f2:dd:c6:be:43:c7:4c:16:e0:5c:b1:5d:46:4a:a0:
ae:34:1f:d6:98:a9:f5:63:ba:57:d3:ab:b8:bb:4b:ab:bf:8f:
1a:58:01:d4:64:d5:34:3c:88:f4:70:47:a8:c4:8c:da:70:d6:
ba:57:8c:7a:b1:34:ae:c5:02:fd:f1:22:83:20:00:84:7c:6e:
93:de:95:0c:f8:57:2a:80:87:46:44:e8:22:5d:d6:10:6d:ae:
64:3c:64:51:82:0d:ef:ac:d5:c3:da:39:81:28:9f:0d:bc:f3:
99:c6:4a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:54:21 2025 by rpki-client