Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
File: aomTYnatLRhxB9-3QAeTADrBSac.mft (raw, json)
Hash identifier: lh++g+NkDbEZQTtG+K3I0hQEc6dxZB5v3IvGgV0C94c=
Subject key identifier: 5E:0B:B1:A6:AD:D1:B3:04:0A:D6:C6:D8:4C:D3:91:E8:4D:1C:C1:3F
Authority key identifier: 6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7
Certificate issuer: /CN=6a89936276ad2d187107dfb7400793003ac149a7
Certificate serial: 019749D5F30BD8EA1F8C4511798F6A12C29F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
Manifest number: 150B
Signing time: Sat 07 Jun 2025 10:00:47 +0000
Manifest this update: Sat 07 Jun 2025 10:00:47 +0000
Manifest next update: Sun 08 Jun 2025 10:00:47 +0000
Files and hashes: 1: aomTYnatLRhxB9-3QAeTADrBSac.crl (hash: 9nPrdJzFbIN0SMmx//uJCp8GA4yIFcW0kezeNo6ACQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:f3:0b:d8:ea:1f:8c:45:11:79:8f:6a:12:c2:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a89936276ad2d187107dfb7400793003ac149a7
Validity
Not Before: Jun 7 10:00:47 2025 GMT
Not After : Jun 8 10:00:47 2025 GMT
Subject: CN=5e0bb1a6add1b3040ad6c6d84cd391e84d1cc13f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:69:5b:97:28:4c:1f:49:97:8f:c1:59:73:d0:
d4:fe:6b:4d:36:cb:17:5a:a2:b7:af:d8:0d:5a:81:
63:99:a5:8b:dd:62:4e:40:38:9a:c6:e5:78:81:9b:
be:90:f7:de:0c:c2:c2:d2:7d:67:45:f5:1e:33:7e:
82:38:97:9e:62:54:1d:97:59:7b:87:c8:b0:ba:12:
c5:79:0d:df:16:fe:fd:64:34:79:f5:0d:0e:4d:85:
c1:85:26:a0:79:6a:fb:c1:07:d0:0c:2b:2c:e2:48:
a2:ff:86:a8:df:26:86:ef:77:2b:af:a6:53:be:cb:
88:50:6f:24:78:71:6e:8d:e2:b3:d3:f8:88:e9:80:
93:a2:21:a8:58:a5:dc:6a:e5:58:ec:66:4f:7b:db:
82:0e:c9:1f:2b:69:81:44:3e:2f:0e:dd:64:44:e4:
92:60:59:13:21:77:c1:c9:3f:0f:b3:c5:7e:49:74:
67:f3:74:d1:d1:5f:86:4a:e7:1b:e8:bb:a6:eb:c8:
6f:a2:1b:2b:68:4e:18:5d:91:d1:3c:a1:e2:b5:18:
6d:a9:70:da:78:ae:44:4f:b9:bc:35:19:73:e1:cc:
19:9c:c0:fc:05:f3:99:60:79:00:78:37:74:c0:bc:
d1:3b:dc:f9:a1:4b:69:5b:6a:88:91:4e:c1:10:98:
5d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:0B:B1:A6:AD:D1:B3:04:0A:D6:C6:D8:4C:D3:91:E8:4D:1C:C1:3F
X509v3 Authority Key Identifier:
keyid:6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:b1:1f:fb:42:b2:e3:8f:ea:51:f9:92:58:e0:a1:41:b1:cb:
42:c2:fa:fb:0f:8f:3d:17:eb:c6:7d:52:ad:75:40:8d:52:a7:
80:23:22:c4:56:a2:98:8b:59:11:64:65:d4:66:77:5d:1e:a2:
db:c0:20:48:ba:97:a6:96:f1:24:ee:46:ad:c2:e2:ec:95:7a:
a7:26:e0:89:0a:e9:d7:e6:00:cf:a7:0e:1f:59:4e:93:4b:78:
3c:5f:a6:7e:45:1a:52:b2:ea:42:d0:ad:99:30:25:7d:fa:96:
55:09:79:5b:da:08:c2:c9:98:88:22:df:17:3d:ca:a3:04:30:
bb:95:1d:98:46:8b:54:fb:25:40:a9:50:56:0e:19:28:66:0e:
7d:84:96:32:8b:7a:ad:b6:26:94:e5:5d:7a:c7:84:11:84:ba:
5b:3a:82:1f:04:5c:b6:e0:b8:0c:36:58:69:6f:51:2e:55:d3:
63:92:b5:5f:9a:41:ff:d8:bd:7b:fd:76:8a:f9:05:51:02:c4:
84:d0:79:61:3d:49:b5:49:47:dd:fd:fe:67:b0:3d:5a:bf:36:
f1:b3:2d:05:0a:fe:80:0e:19:67:20:2e:ad:7b:bd:78:aa:32:
f1:e4:d6:8c:d2:6d:82:b4:5f:f7:c8:0c:f0:9d:07:0a:b2:e8:
91:55:6d:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:38:44 2025 by rpki-client