Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
File: AYZ9mLBSF68a-spyJrvWEzcHSfA.mft (raw, json)
Hash identifier: 8arbLlhdiP2EwUpNuLaIIxICUY8ZqSKTL5iSv8xDq4k=
Subject key identifier: EA:51:EE:54:D7:09:E5:ED:D2:DB:27:93:82:37:77:7A:1C:4B:49:F5
Authority key identifier: 01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
Certificate issuer: /CN=01867d98b05217af1afaca7226bbd613370749f0
Certificate serial: 019746D50B63EAC7C3BCDDE3BCEED05A8549
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
Manifest number: 0261
Signing time: Fri 06 Jun 2025 20:00:56 +0000
Manifest this update: Fri 06 Jun 2025 20:00:56 +0000
Manifest next update: Sat 07 Jun 2025 20:00:56 +0000
Files and hashes: 1: 1ENw1gcCvt1Pmax0p8zhB7SKAEg.roa (hash: 1qhYf9E0Pe4/V/O+LSKzrT8cldjvFnxKyFJ5/QtS500=)
2: AYZ9mLBSF68a-spyJrvWEzcHSfA.crl (hash: w4HEia5HCO9zDRn0r2k5oAzOf37kjWeU/69KmZswq0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d5:0b:63:ea:c7:c3:bc:dd:e3:bc:ee:d0:5a:85:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01867d98b05217af1afaca7226bbd613370749f0
Validity
Not Before: Jun 6 20:00:56 2025 GMT
Not After : Jun 7 20:00:56 2025 GMT
Subject: CN=ea51ee54d709e5edd2db27938237777a1c4b49f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c7:c6:91:be:81:d2:b0:5f:96:86:53:67:4f:
9f:79:70:5a:40:f2:00:de:42:cd:5f:80:5a:02:ad:
2c:be:05:1f:60:34:5d:f0:a9:7b:da:f7:36:2d:0f:
6c:32:f4:ca:0c:ae:2a:a1:0c:c0:19:89:84:0b:ab:
97:4d:db:fb:5b:6c:ca:98:b4:26:95:a2:20:3c:a7:
e7:2a:20:87:f1:f5:4d:bf:27:6a:3c:0c:72:94:f1:
ad:b8:fe:04:a9:19:33:b6:6e:db:13:79:1b:e0:67:
e7:a2:b9:df:35:f0:ab:73:14:95:52:a9:c0:eb:2e:
5a:e9:f6:88:80:fc:3e:08:45:0a:2e:84:73:77:52:
d4:79:f0:0c:36:9f:84:58:30:6f:b9:dc:76:3f:12:
5b:6f:d3:76:3c:3f:07:2a:34:33:3e:c2:d2:b7:ec:
7b:0a:18:1d:d0:f1:4f:ff:60:64:7a:ae:34:4b:ca:
74:55:36:8f:90:b8:10:62:3f:c8:66:6e:ed:2d:5d:
de:e9:cf:ce:98:ed:e5:6d:14:f5:6c:6b:fc:96:72:
6f:fe:b6:ec:8b:33:f0:7e:0a:f8:81:5f:a7:7b:2b:
66:fb:46:71:72:8d:a1:65:11:c1:d4:9a:50:7f:5e:
04:15:23:dc:c3:54:3c:31:e6:db:52:42:69:cd:2c:
3c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:51:EE:54:D7:09:E5:ED:D2:DB:27:93:82:37:77:7A:1C:4B:49:F5
X509v3 Authority Key Identifier:
keyid:01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:ea:19:15:be:0e:41:20:dc:87:33:02:b6:d7:14:47:c4:c1:
05:ff:92:10:4e:ad:8b:8a:9c:c3:f7:95:42:7d:65:92:26:f3:
8e:2f:00:ae:fd:7d:39:4d:75:4d:60:f8:6d:ae:20:b8:8b:95:
8c:fe:a9:38:5c:87:7c:5a:14:00:46:0d:c0:6d:03:05:15:4e:
e1:09:e2:fb:0c:1c:fc:48:52:20:90:ed:57:4e:46:fb:db:5c:
89:ac:70:54:0e:ae:55:40:ec:41:56:b3:0a:a5:64:62:89:51:
4d:b9:4d:ec:e3:61:91:46:72:fd:eb:84:69:63:03:15:c1:31:
34:46:84:2a:b5:fc:e5:7e:af:5f:d3:aa:3b:d1:22:b8:83:1b:
6b:ab:3e:8d:a1:75:8b:40:62:0a:19:fc:17:d5:c7:da:47:36:
81:be:c2:85:40:66:d2:cb:79:84:ef:82:54:1b:98:a5:59:7f:
70:69:85:0a:87:3d:af:21:5f:e0:ac:6c:fb:27:26:26:57:41:
80:f3:0e:74:81:78:92:ba:34:50:a4:67:d6:ed:d1:c8:14:a3:
30:e8:14:6c:21:57:68:b8:c1:d6:30:bb:3f:00:1d:51:6f:65:
e6:44:59:58:50:d5:f4:29:a7:ea:f6:e2:ea:a4:79:aa:7b:ba:
e9:7f:af:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:54:21 2025 by rpki-client