Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: yv+6Is1Lr+W7B4/JvHljAqSighN1eGY9teuBStUz0tk=
Subject key identifier: 0B:73:3E:3C:A3:5D:75:F0:4B:39:3C:8B:99:F1:F2:71:97:C2:79:1E
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 0197688540B109C9C1BA4C573F8BE89C6016
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 06FE
Signing time: Fri 13 Jun 2025 09:00:52 +0000
Manifest this update: Fri 13 Jun 2025 09:00:52 +0000
Manifest next update: Sat 14 Jun 2025 09:00:52 +0000
Files and hashes: 1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=)
2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: TvOhXf7gkEUazA0TvFnotIeSS8N2FIaSnSQtwH2C3Wo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:85:40:b1:09:c9:c1:ba:4c:57:3f:8b:e8:9c:60:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: Jun 13 09:00:52 2025 GMT
Not After : Jun 14 09:00:52 2025 GMT
Subject: CN=0b733e3ca35d75f04b393c8b99f1f27197c2791e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:8c:bb:6e:e0:9f:0a:58:b5:d4:77:18:c1:3f:
61:4d:7d:64:88:f4:bb:6d:b9:31:19:f6:1a:60:47:
97:f0:52:5b:c6:28:51:72:73:ae:d9:67:40:b5:d5:
45:4d:fb:b4:ba:9c:f8:3a:27:e9:db:7c:0b:9f:fc:
8b:77:78:86:ad:0e:a7:80:e0:b6:4c:f6:17:ef:6f:
65:47:71:81:19:c8:74:60:f3:64:eb:66:1c:18:db:
fe:af:f4:ad:8d:00:00:05:5d:21:84:ad:b0:a8:23:
87:4c:45:10:e3:b7:44:92:05:79:b0:4d:f8:c7:02:
75:18:c5:c8:2a:f7:18:c5:63:f9:c8:40:e6:e3:58:
e9:3d:a4:1f:30:06:52:cd:97:ba:35:45:3f:1a:a6:
b4:58:05:75:1c:ea:de:ff:7d:63:11:93:2e:5f:2a:
23:1b:ee:92:87:10:dc:eb:1e:ef:b0:bf:5d:f4:8a:
2b:3b:25:c0:90:af:6e:98:84:96:2c:de:a0:b9:16:
04:58:fb:0d:a8:af:bc:52:cf:a0:67:ca:f7:8c:ea:
13:dc:a3:d0:ef:43:06:91:9e:94:74:e1:57:64:a8:
b0:55:3a:10:21:41:c7:7a:77:69:36:4e:5c:34:ce:
58:49:51:7d:4e:e5:5f:67:07:83:34:5c:38:99:4d:
b5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:73:3E:3C:A3:5D:75:F0:4B:39:3C:8B:99:F1:F2:71:97:C2:79:1E
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:e4:72:cd:f3:06:8d:c6:08:63:83:82:47:ba:50:68:eb:aa:
a3:f3:8c:67:ca:ed:1a:b9:ee:66:68:fa:24:9e:4d:87:46:2d:
54:8a:b8:64:82:93:43:15:d5:e7:6a:cc:1c:d1:89:09:c3:f5:
be:0a:51:ee:5e:2e:2e:0c:56:6f:6b:f2:84:fb:e6:95:82:cf:
82:57:65:b0:85:2b:f0:1e:6b:6a:fb:45:81:b4:fa:8a:07:1e:
45:35:08:90:67:47:c7:aa:e6:ea:28:5b:da:9c:e8:ed:19:67:
f0:e7:a6:7d:50:04:f8:a5:bd:86:8e:fe:60:5b:3f:54:dd:51:
bb:71:38:1f:86:27:5a:c2:61:4c:e1:ab:44:95:6a:20:ee:c8:
17:ed:cc:0a:67:e0:15:ea:f1:c6:32:29:eb:5d:b4:fe:4c:eb:
57:7a:49:5e:b3:ad:d4:2e:d0:0b:26:22:06:e1:a9:f9:09:26:
ee:6a:aa:52:34:a1:3d:22:c7:23:75:1c:26:7e:7b:0e:7f:d7:
1f:02:12:b6:b9:94:39:b5:e3:e4:41:48:22:ef:cd:fc:ed:9d:
d8:69:61:30:ea:a8:61:72:c5:ec:66:a0:2f:7e:7c:89:a1:b1:
fe:54:03:42:97:4f:b3:0c:7c:40:72:90:9d:81:ff:cf:33:0e:
75:b1:1f:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 17:47:43 2025 by rpki-client