Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
File: AFA0jPYGQvVOyQck3niqoD3NOOE.mft (raw, json)
Hash identifier: ygDNJUp7bKk7V5sLMxNj7yrwtq+JcIs1VgTvhW/P5/E=
Subject key identifier: 64:0F:0B:A1:77:03:C6:9F:07:50:5A:85:D5:B2:E5:E4:B9:A7:0D:04
Authority key identifier: 00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
Certificate issuer: /CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Certificate serial: 01974E57BB1183E8022163EB6B2575279835
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
Manifest number: 0D2A
Signing time: Sun 08 Jun 2025 07:01:01 +0000
Manifest this update: Sun 08 Jun 2025 07:01:01 +0000
Manifest next update: Mon 09 Jun 2025 07:01:01 +0000
Files and hashes: 1: AFA0jPYGQvVOyQck3niqoD3NOOE.crl (hash: mCItfuPEJc8rXTtlHvbPtc4Tj+/GgQyJRLT3CJb7LDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:bb:11:83:e8:02:21:63:eb:6b:25:75:27:98:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Validity
Not Before: Jun 8 07:01:01 2025 GMT
Not After : Jun 9 07:01:01 2025 GMT
Subject: CN=640f0ba17703c69f07505a85d5b2e5e4b9a70d04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:56:4a:aa:19:5e:be:79:b2:2d:82:b8:e1:fd:
22:2c:46:88:77:a0:e7:1c:93:f6:4f:19:45:07:05:
68:ed:47:61:06:f5:b4:19:71:1a:a8:83:84:36:81:
b6:62:84:8c:5c:4e:26:53:8c:fc:95:2b:4e:9c:ff:
0f:9c:75:cf:18:0e:1d:b3:29:26:c3:28:e7:8b:dc:
2d:88:ac:21:50:e7:67:ec:8f:d5:dc:d5:6c:23:17:
84:eb:6e:73:98:42:ad:fc:a2:9d:4e:7f:5d:b4:c8:
3b:27:76:ba:8d:b7:ce:96:1c:ca:5f:f9:7a:9e:08:
a0:3e:91:43:9c:34:a2:aa:c0:6e:13:d6:99:08:69:
fb:7a:34:32:36:6c:2b:84:55:4f:1f:b0:d5:55:36:
14:b9:d1:80:75:76:b0:65:fa:08:59:91:19:1c:ab:
ff:e9:7b:c2:22:12:da:5f:0e:92:63:a1:32:63:66:
92:cc:23:2a:38:21:03:1b:1f:05:57:cc:71:35:26:
fa:77:8c:d4:a4:ef:9a:22:73:25:d7:ac:09:93:2d:
b3:58:9e:ea:04:10:20:66:b8:b3:77:bd:6e:8e:c8:
35:fc:93:0f:80:61:6e:34:a1:2d:43:92:8d:d6:eb:
3b:26:84:6a:bc:c7:35:9e:c5:41:32:8c:ad:3c:6c:
34:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:0F:0B:A1:77:03:C6:9F:07:50:5A:85:D5:B2:E5:E4:B9:A7:0D:04
X509v3 Authority Key Identifier:
keyid:00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:0c:86:9a:f6:cf:c0:c0:e1:36:9e:d2:21:31:a1:32:a1:00:
39:1a:3d:17:ba:94:30:2d:a1:75:2d:96:60:33:54:72:da:14:
77:52:20:b7:2f:39:ca:1a:5a:2b:54:8f:fa:56:af:3b:fa:a6:
11:a8:74:83:96:0d:a0:b0:12:ca:34:55:ad:3f:20:07:ae:f1:
c4:9c:ea:b7:d0:f7:58:6d:06:f9:a9:14:12:17:e7:fa:fd:26:
50:b0:52:05:64:c5:a6:9a:30:f0:7f:b7:47:33:2c:14:0c:37:
2a:f7:fc:00:ee:9d:04:ea:43:ee:2f:ef:ec:c7:0d:96:a1:fa:
5f:5e:76:df:3d:6a:04:26:3a:6d:80:99:c6:16:f9:5b:e4:46:
50:2f:5c:39:b1:a1:36:09:34:f8:72:b9:02:63:0d:da:e2:07:
7b:48:84:f8:4b:02:42:2d:8a:27:bb:5e:c5:38:d5:8d:d6:a3:
6f:fd:60:44:7a:0d:07:50:4f:78:f4:58:d1:b8:66:7b:b6:dc:
b9:fa:43:b6:1f:e1:b0:cc:f6:3d:c4:9c:4d:d7:b2:53:a8:84:
c5:9f:99:1e:9b:d2:16:a9:0a:2d:cd:d5:c1:32:88:bd:d7:56:
27:e8:71:14:bd:18:14:48:53:fb:65:51:db:54:d1:ef:6e:4c:
3c:1b:7e:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:15:38 2025 by rpki-client