Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json)
Hash identifier: OkXtbizb2BqnhuhzftqKEMRefZ8C1AqjB0h4EB533LE=
Subject key identifier: 6C:86:1A:20:B4:64:38:2F:85:D6:D6:CA:EA:AB:28:9D:DA:0B:A4:43
Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Certificate serial: 01974779A063DAA041691BEAC8BB79E1B820
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
Manifest number: 02AC
Signing time: Fri 06 Jun 2025 23:00:42 +0000
Manifest this update: Fri 06 Jun 2025 23:00:42 +0000
Manifest next update: Sat 07 Jun 2025 23:00:42 +0000
Files and hashes: 1: kdQZ4QS0sUqXnywKZ8M79hUmfTA.roa (hash: xGG3G4XfdVhcDuFzw8EOPzLUi5vn/b3D8pkyEY9PSkc=)
2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: sOrsSOuRHZ0Cvn8zM+hNxOeGdX5MJMM4iYJryE7qJdo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:a0:63:da:a0:41:69:1b:ea:c8:bb:79:e1:b8:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Validity
Not Before: Jun 6 23:00:42 2025 GMT
Not After : Jun 7 23:00:42 2025 GMT
Subject: CN=6c861a20b464382f85d6d6caeaab289dda0ba443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:85:3b:51:54:67:62:bb:5e:65:30:01:9e:99:
97:93:0e:5a:85:db:4b:a5:03:a9:dc:7c:72:b3:21:
ba:c6:b6:ed:b6:be:66:8d:26:d4:15:c1:4a:a6:de:
3d:16:ce:8b:5f:c7:37:c7:e2:e4:de:39:94:a8:e8:
37:de:b0:0e:e6:17:b0:25:6b:3f:a5:3d:7c:c0:d3:
be:d1:e6:b8:4c:e0:62:c0:37:cb:10:93:a5:38:2c:
4f:5b:e0:77:98:db:0a:15:7c:c3:41:d0:fd:77:e7:
6a:77:33:42:10:52:1a:b8:4f:be:e1:2c:c4:d4:da:
07:4e:17:0f:92:ab:9e:94:de:41:94:18:84:e4:16:
47:89:63:7a:dd:b4:df:b8:6d:e3:7f:cc:91:29:1b:
43:18:30:69:e9:ea:00:18:81:1e:ed:df:8a:2b:9c:
91:f7:e9:fd:55:f3:75:7f:f7:18:a6:e2:fc:05:da:
d0:12:93:3e:fd:c3:71:21:dd:c8:9b:b3:b1:38:27:
5f:29:95:e0:5a:9a:b7:89:ca:3a:dc:7e:22:3c:ef:
f0:48:78:33:0a:68:82:32:52:c1:93:6d:aa:81:34:
e7:f7:c2:d9:9f:fc:8b:b7:4b:ed:45:11:4a:ef:70:
79:d0:02:f4:74:e9:33:16:2e:08:ea:32:fc:aa:cf:
b1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:86:1A:20:B4:64:38:2F:85:D6:D6:CA:EA:AB:28:9D:DA:0B:A4:43
X509v3 Authority Key Identifier:
keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:d5:f3:a2:eb:39:20:4b:34:bb:7e:73:02:17:ad:51:bd:64:
9e:fd:14:c8:ab:59:40:35:5f:56:b1:07:d7:56:51:05:0d:d2:
3d:b8:ed:75:da:3a:b4:a3:85:91:cf:e3:c8:c3:b4:0f:80:96:
d1:2d:14:59:e6:6d:3e:6c:2c:ea:ed:ba:5b:3e:2a:db:05:33:
6e:c2:94:5a:f3:9e:ad:c7:e9:7f:e0:88:c1:e6:6b:33:70:8d:
57:2c:72:41:2b:a5:f6:d4:b7:a4:82:5b:eb:6c:20:d8:df:b3:
16:3c:aa:f8:9d:86:e6:dd:70:3e:f1:6a:db:84:34:2f:a4:50:
30:af:32:cc:43:75:73:65:e2:79:c8:98:c4:63:e1:13:e8:5f:
66:76:d4:86:ac:18:fb:ab:50:50:fe:d9:1b:e9:5a:a9:c5:33:
fc:56:88:9c:17:fc:27:7b:4c:e3:f6:b7:d3:73:6f:22:bc:e3:
f4:db:5c:68:3d:22:13:80:6f:eb:84:9d:53:1f:c1:1c:5e:fe:
68:fb:1b:7d:03:04:54:9b:b3:8c:87:50:3d:6e:c9:99:50:18:
05:27:98:f5:a9:25:77:12:2a:e7:4a:14:a0:93:05:df:2e:d5:
63:54:aa:28:d6:52:4c:e2:57:75:49:4e:71:1e:06:70:6e:ad:
75:7f:b4:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:02:56 2025 by rpki-client