Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
File: afAHCvh31rmGswe5vATvGcRAQz0.mft (raw, json)
Hash identifier: QMuUU63j9J10YGDPsSjv9cKazAlHffejY+OYCpcVt3I=
Subject key identifier: A2:33:FC:14:A3:94:E7:0B:D8:1E:E4:E4:CB:0D:65:E3:69:92:E3:DB
Authority key identifier: 69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
Certificate issuer: /CN=69f0070af877d6b986b307b9bc04ef19c440433d
Certificate serial: 0197488D3DC96BDDE7D4266428EE768CC579
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
Manifest number: 07B0
Signing time: Sat 07 Jun 2025 04:01:45 +0000
Manifest this update: Sat 07 Jun 2025 04:01:45 +0000
Manifest next update: Sun 08 Jun 2025 04:01:45 +0000
Files and hashes: 1: 5m0E4hrlymj_oPq4RutDZTBvpFc.roa (hash: D3u2GpmWvvHTn4HOSLwFPi92ntWCyeD4rYP1qp5He0g=)
2: afAHCvh31rmGswe5vATvGcRAQz0.crl (hash: MRm4+9h7fp1BpC0cmWdxtNZQ+d3DJnQwRHdKKvBY1Bg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:3d:c9:6b:dd:e7:d4:26:64:28:ee:76:8c:c5:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f0070af877d6b986b307b9bc04ef19c440433d
Validity
Not Before: Jun 7 04:01:45 2025 GMT
Not After : Jun 8 04:01:45 2025 GMT
Subject: CN=a233fc14a394e70bd81ee4e4cb0d65e36992e3db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a3:c9:bd:9d:c1:b9:28:b8:8c:c1:84:02:db:
7a:58:b2:eb:e2:bb:72:6b:48:ca:13:f1:64:c4:72:
ea:e6:1d:41:26:a5:72:f0:19:4a:55:06:b4:ff:fe:
73:6b:15:ee:62:c4:06:9e:79:22:93:71:0b:5c:40:
8d:c4:12:25:b8:27:fb:44:3e:4b:8a:28:69:f0:24:
9c:23:71:fa:b8:ae:1f:e7:ec:8c:26:61:d5:76:18:
19:95:96:a3:e5:34:13:77:fe:92:98:fe:4c:4b:c8:
e7:50:12:94:aa:3e:01:25:aa:c7:43:35:77:95:76:
da:b4:c5:53:81:7d:01:b4:50:a7:36:6c:1c:3a:b5:
ab:a5:d6:ca:d9:15:0c:63:15:ee:32:40:4f:f6:35:
53:1b:c1:dc:eb:af:9a:74:1b:44:d7:f4:ac:b4:b4:
b0:80:59:88:96:7b:39:28:57:ec:e5:d4:a7:00:db:
5d:bc:9a:23:54:c6:3d:e7:20:6e:c3:af:68:df:54:
fc:ce:86:32:9a:ee:59:c5:1a:61:f1:f6:47:2a:7f:
66:cc:78:18:c7:d5:94:65:12:3e:45:05:4a:18:55:
fb:f3:8d:b0:75:f1:aa:1c:f5:10:5a:3b:66:ce:09:
6b:23:ea:ae:13:76:0f:76:0d:51:76:83:48:88:4d:
bc:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:33:FC:14:A3:94:E7:0B:D8:1E:E4:E4:CB:0D:65:E3:69:92:E3:DB
X509v3 Authority Key Identifier:
keyid:69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:46:b5:d5:b9:57:f0:c9:d0:7c:44:1b:20:48:34:40:6c:ad:
29:0e:f7:9f:59:59:ad:d3:bf:c1:e4:48:40:b1:70:96:9e:31:
2c:24:93:cd:d1:e2:d7:af:61:74:eb:43:c9:40:15:5a:a9:93:
be:48:fb:b1:b5:b2:bc:28:ea:d8:a7:fa:25:7e:c0:a6:c0:34:
77:d0:92:1b:d7:92:de:50:2c:eb:35:b0:95:cc:29:0f:44:c7:
58:c4:a1:91:38:01:a7:a3:b7:5c:1b:d8:4d:39:63:ff:46:14:
71:1b:d4:7f:3c:f9:8e:0a:54:32:3d:55:06:d9:4c:1d:04:8e:
b4:cf:ae:3f:ea:ce:61:c9:ff:da:bd:76:ff:58:4a:a4:51:a3:
f2:9f:12:84:49:5d:74:e8:48:80:f2:69:0f:46:29:18:44:bd:
21:48:e4:8c:36:0e:b2:1e:99:6b:01:75:fc:3a:9c:93:b9:57:
8c:e6:60:0b:89:d4:7d:ef:ef:9a:21:06:5a:ac:7f:3c:bc:2e:
3e:1c:08:fd:ea:1c:79:5d:5e:98:a3:ac:d4:41:54:82:9d:5c:
8a:04:f5:57:1d:5c:20:dd:b9:0f:78:92:3b:45:08:2f:c3:12:
bb:3b:de:95:dd:db:0a:d6:08:10:e2:19:0b:ed:7c:3e:4f:8c:
e6:00:d8:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:21:05 2025 by rpki-client