Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
File: Ay1SsyOaHOPN00MxNIzngN3xZMA.mft (raw, json)
Hash identifier: GqUpisSRdenw+TvQ6Ge9I3vO+MC8IC2OROQpOUx3qOI=
Subject key identifier: A2:46:66:70:0C:D6:6B:47:A7:B6:FE:3E:6D:DB:3D:4A:D8:60:3B:36
Authority key identifier: 03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
Certificate issuer: /CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Certificate serial: 01974E57B283AB66CCA5D998B31ED634E18D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
Manifest number: 0630
Signing time: Sun 08 Jun 2025 07:00:59 +0000
Manifest this update: Sun 08 Jun 2025 07:00:59 +0000
Manifest next update: Mon 09 Jun 2025 07:00:59 +0000
Files and hashes: 1: Ay1SsyOaHOPN00MxNIzngN3xZMA.crl (hash: HXraAq4snEcrhGidqHuk8VZ2rkNrMAe0Ok3SBi/BUDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:b2:83:ab:66:cc:a5:d9:98:b3:1e:d6:34:e1:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Validity
Not Before: Jun 8 07:00:59 2025 GMT
Not After : Jun 9 07:00:59 2025 GMT
Subject: CN=a24666700cd66b47a7b6fe3e6ddb3d4ad8603b36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:71:e1:a0:a2:3c:16:31:a5:60:63:90:36:12:
e8:6b:c7:7d:95:ed:8f:3c:12:d4:31:05:b4:48:e1:
45:1f:10:f1:eb:55:10:43:1e:dd:6d:46:ac:b5:fe:
e5:a4:06:e3:10:0b:3e:56:05:a8:e1:f3:d1:cf:42:
85:67:38:be:ba:37:dd:39:90:4f:2a:75:63:5a:95:
18:4b:a1:10:75:af:2e:a5:bd:1a:1c:54:c8:48:37:
7d:6d:0b:99:ca:75:1d:e7:75:53:cf:5d:f1:19:1d:
b6:c8:88:07:76:f1:cd:37:d3:0a:51:d1:c2:88:63:
f2:32:60:70:9d:c2:81:72:8c:73:77:e9:5d:48:bd:
40:6b:7c:ff:22:a0:61:e5:ce:27:5d:22:0d:37:bd:
60:fd:71:71:7c:96:d5:49:a8:df:5e:41:ea:e4:74:
ae:bf:ec:6b:9e:95:bd:d8:08:ae:aa:ec:44:8e:10:
49:34:7a:97:14:2b:dc:c6:c4:cc:dc:55:2b:42:23:
7e:86:a3:a0:46:e9:af:74:84:cc:fb:11:6b:5a:c7:
f9:30:ce:95:90:fa:53:ef:e9:6d:c2:1f:f3:f1:e2:
93:f8:22:d8:f9:9d:a3:b6:2a:b0:d9:2a:d6:cd:35:
07:e3:c3:02:4d:d7:a2:bc:c2:f1:24:e3:d7:5b:7c:
a9:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:46:66:70:0C:D6:6B:47:A7:B6:FE:3E:6D:DB:3D:4A:D8:60:3B:36
X509v3 Authority Key Identifier:
keyid:03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:ae:5c:1e:a7:53:d3:80:34:1e:10:61:af:0b:7f:6b:35:a7:
cb:24:73:c5:ce:e9:8b:6f:c7:c2:08:b6:f5:03:8c:e4:63:bc:
14:5b:ae:81:16:f7:bf:69:6c:fe:c6:af:e8:7d:20:da:4a:b1:
e3:8f:7c:9c:d5:f7:39:f8:34:78:bd:00:45:d3:ee:8f:79:1c:
2c:9e:49:e3:44:be:e0:e8:07:76:9c:eb:eb:b2:10:0f:54:e7:
68:5f:d2:1f:1e:e2:ba:dd:79:df:5c:29:9f:97:9b:ac:38:f2:
2b:4d:a2:fc:1d:8a:5f:6a:c0:a4:3a:13:3e:56:af:8f:9d:20:
3a:06:33:99:b5:8a:4e:cc:69:d2:d3:e8:eb:5e:28:c2:16:3b:
f5:8d:65:ff:26:e8:02:86:5c:43:98:50:32:35:75:9b:fe:46:
3e:ed:44:a7:b8:83:16:91:b5:38:3d:2d:0e:11:d7:5c:80:f3:
eb:4a:e2:20:88:97:25:a6:76:e1:f9:36:5d:36:58:1e:51:11:
2e:0a:db:91:d5:d9:ce:14:73:43:41:a8:4f:1e:82:e0:99:66:
8c:1b:93:95:42:4c:c6:0c:3c:8a:1e:a0:ad:52:39:15:ff:9d:
25:53:07:36:13:17:77:69:5d:96:67:ee:e9:da:7d:d7:8e:5e:
01:61:42:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:28:10 2025 by rpki-client