Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
File: 9aKRIk-CvG0mtRntevviXLMsEVw.mft (raw, json)
Hash identifier: DUMQNgZ/NuWrkly98zhRU4mLzcyWHTyb7qXwSm4XbUo=
Subject key identifier: 68:E8:93:65:40:44:74:81:C4:45:24:9E:CB:57:3E:57:68:55:12:C9
Authority key identifier: F5:A2:91:22:4F:82:BC:6D:26:B5:19:ED:7A:FB:E2:5C:B3:2C:11:5C
Certificate issuer: /CN=f5a291224f82bc6d26b519ed7afbe25cb32c115c
Certificate serial: 01974B1F8AB1A89708B3545CFF70E9828158
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
Manifest number: 0A4E
Signing time: Sat 07 Jun 2025 16:00:47 +0000
Manifest this update: Sat 07 Jun 2025 16:00:47 +0000
Manifest next update: Sun 08 Jun 2025 16:00:47 +0000
Files and hashes: 1: 9aKRIk-CvG0mtRntevviXLMsEVw.crl (hash: MFZsiFj7HKUYVTJrlkNLBEPp3IP/ZZWZat0WVPOcyOk=)
2: TvqtU6kGEWNG1Cpdb9p7065y7Us.roa (hash: feIhe0HlEu5dhdmycewb1eBF/nryf3+/l635UbwMTEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 16:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:8a:b1:a8:97:08:b3:54:5c:ff:70:e9:82:81:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a291224f82bc6d26b519ed7afbe25cb32c115c
Validity
Not Before: Jun 7 16:00:47 2025 GMT
Not After : Jun 8 16:00:47 2025 GMT
Subject: CN=68e8936540447481c445249ecb573e57685512c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:27:40:dd:1f:60:28:d1:8d:8b:cf:38:f2:38:
9a:71:1e:1e:a2:8a:85:2b:e0:01:bf:dc:7c:1c:7a:
c7:d1:05:ca:5d:1d:2e:73:74:4a:1d:2b:47:a3:dd:
0c:a3:b7:81:25:de:ae:d2:34:a5:68:67:60:3e:1a:
0b:1d:e7:b4:60:df:91:2f:3e:a8:b7:34:21:a5:4c:
38:a3:1b:84:5d:f2:24:dd:4a:b9:4f:8a:d8:ca:cb:
82:0d:26:f5:16:29:84:7c:12:ba:6a:ee:f4:83:8a:
61:2e:5e:ed:ae:dc:2e:ba:29:dd:57:5b:30:b7:45:
53:27:43:8d:3c:31:d5:a5:1a:15:9b:c6:38:8a:27:
40:1c:9e:4e:11:4f:d6:42:5c:98:80:14:cf:e7:28:
dc:62:7c:16:cc:90:d4:4f:e3:1c:bc:94:3e:ff:90:
13:e7:a4:88:76:9e:b1:7a:91:d5:13:90:6b:eb:21:
c7:b2:04:27:16:92:8a:f5:1d:f9:6b:af:df:d3:12:
64:3b:a0:99:ec:1b:12:f7:dc:03:0f:0c:44:40:19:
3a:77:3d:78:47:55:64:d4:cd:64:d0:89:dd:a8:e9:
27:fe:ae:c3:98:46:bb:0b:d5:1a:9f:9e:9f:f1:20:
e9:0b:a1:eb:b2:eb:3d:f6:a4:7e:68:cd:71:e2:bc:
8d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E8:93:65:40:44:74:81:C4:45:24:9E:CB:57:3E:57:68:55:12:C9
X509v3 Authority Key Identifier:
keyid:F5:A2:91:22:4F:82:BC:6D:26:B5:19:ED:7A:FB:E2:5C:B3:2C:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:b5:02:dd:9c:fd:1a:ed:56:12:bf:00:b7:05:4e:e4:76:65:
58:33:00:fe:3c:1e:ac:36:a1:a6:41:26:47:37:7e:36:35:f8:
73:4f:d9:a6:7b:1d:13:ec:24:24:aa:0a:4a:f0:1b:ea:7f:77:
c7:a3:71:a7:b4:52:7b:de:26:72:63:c8:de:4a:77:67:f4:6f:
52:f7:64:34:7a:d8:97:1f:84:5d:a9:4e:5f:eb:d5:ae:ad:70:
62:6c:99:55:d4:f2:2d:10:1a:8a:08:f8:9a:9a:39:39:09:18:
ba:79:0b:2c:39:0b:a9:51:58:5a:7e:67:41:07:2e:bb:6b:7b:
43:85:79:45:55:7c:69:76:d3:d7:58:93:23:cc:68:29:b6:41:
db:11:3c:58:c5:62:31:42:4c:76:70:a1:ea:dc:18:96:d3:54:
35:08:5e:03:e5:2b:f1:41:57:5c:3b:5b:d1:1b:47:62:96:2d:
df:64:96:a4:88:37:b3:a4:0f:e5:b0:0b:47:6f:c3:e6:7a:fe:
c1:3e:82:03:8e:a3:43:31:7a:d8:54:86:75:d7:71:b5:4a:49:
7d:85:e2:84:08:9f:ec:22:1d:a7:56:b8:d7:88:f3:b3:f6:4d:
24:50:a3:39:32:12:9d:9c:7e:6c:b9:37:d2:ec:8a:51:da:0e:
79:7d:bd:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:30:21 2025 by rpki-client