Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: PV9caSgjyPuUVt7ip+dLqHUmn1GigsazzSVDdF3mneY=
Subject key identifier: 22:63:E5:BD:5C:D6:AA:05:1A:10:CF:F0:29:2A:54:56:98:7D:11:B1
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 019755358D824C8FB10CF5A97C288942FB6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 06F4
Signing time: Mon 09 Jun 2025 15:01:02 +0000
Manifest this update: Mon 09 Jun 2025 15:01:02 +0000
Manifest next update: Tue 10 Jun 2025 15:01:02 +0000
Files and hashes: 1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=)
2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: 5Vl2Qx61FZOny2mG8f8YadvhiYYapPoNupar0sdxzSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:55:35:8d:82:4c:8f:b1:0c:f5:a9:7c:28:89:42:fb:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: Jun 9 15:01:02 2025 GMT
Not After : Jun 10 15:01:02 2025 GMT
Subject: CN=2263e5bd5cd6aa051a10cff0292a5456987d11b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ab:4c:14:1a:cf:bf:cc:63:e2:b1:08:35:c1:
39:7e:e4:e3:4a:c8:42:82:03:97:3c:06:00:8d:c3:
ee:e3:d8:c1:07:88:21:e7:cb:e4:12:f6:7d:1d:bb:
3f:94:0f:98:cf:83:0f:1a:97:f2:07:79:1f:34:b0:
cb:54:d4:22:63:76:f5:84:b6:9a:9a:e3:e4:ed:c5:
ae:1c:3b:c5:05:70:f6:5e:d6:64:31:6a:e4:ea:fd:
c5:db:d0:93:ce:20:90:af:af:02:d6:2c:a8:4d:ff:
ed:23:4a:40:e9:b7:84:5f:ab:d8:44:ff:ac:b4:1a:
17:75:4a:11:21:dc:53:fb:c2:63:cb:3e:2b:a9:d3:
3f:21:db:8a:4d:46:40:19:5a:3c:af:be:70:7f:c5:
6d:78:45:b5:f1:c7:d1:5f:b2:54:4c:ec:12:43:50:
f7:dd:d4:18:01:cc:f0:c3:99:6c:e2:79:8d:ca:78:
e7:29:a3:90:1e:47:db:20:5e:f6:5b:32:c9:3a:21:
9b:4b:20:a6:35:92:ce:ef:33:4b:7b:a1:87:54:00:
3b:b6:dc:d7:dd:61:3e:b6:ef:8e:0c:51:61:af:67:
3f:41:8f:34:7a:d5:03:2c:5b:9a:91:e0:f2:aa:6e:
f0:64:b2:fd:cc:17:b0:5a:cf:96:54:a7:32:da:df:
fc:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:63:E5:BD:5C:D6:AA:05:1A:10:CF:F0:29:2A:54:56:98:7D:11:B1
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:c7:57:47:da:19:3f:ef:47:17:7c:36:7b:17:59:57:76:95:
61:01:de:4e:78:74:be:d3:21:aa:e2:4c:5c:5c:69:f1:24:9e:
8f:fc:3d:17:a6:39:ac:9a:22:80:d2:a8:7b:21:fc:1c:36:34:
d0:ac:18:a9:5e:19:63:b1:a7:47:0b:59:30:92:46:ef:fd:e8:
58:be:a4:73:e8:0b:b2:b7:03:6b:52:2b:52:00:8e:b8:71:3e:
af:2c:19:1f:3f:4f:14:8a:ab:74:a4:4e:73:97:69:54:24:1b:
c9:eb:49:b8:f1:d7:e5:20:ec:d9:c4:6e:69:ab:6f:64:5e:d2:
5b:8a:c7:00:7a:50:52:16:b1:49:f4:26:cd:f1:98:72:79:de:
c2:9f:6f:f7:cb:93:a2:3c:b3:96:6c:81:7d:79:d3:45:c8:7d:
7e:4f:da:d0:72:8c:1d:88:1b:0c:1c:52:92:59:60:73:a7:4b:
32:2b:6d:58:83:5e:55:90:dd:9d:05:5e:9b:f6:e9:ee:f6:af:
9d:54:d6:85:40:3f:30:3b:94:ce:80:21:6f:4b:05:2a:29:8a:
95:ab:45:5a:6f:c1:88:07:18:97:12:47:9a:bb:16:cd:92:d3:
d0:f4:99:be:00:45:55:c8:4b:05:16:2e:9f:33:c1:15:95:50:
aa:aa:0f:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 23:56:10 2025 by rpki-client