Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json)
Hash identifier: eYBMVnOUmkD7aR00yNiy5rXQL21MwiGicjCNu/1Nh4g=
Subject key identifier: 92:A1:2E:C6:EC:14:0F:65:FC:05:0B:D2:48:52:AB:52:B5:59:EE:84
Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Certificate serial: 01974E57D5205711AD3427A47D9D94065723
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
Manifest number: 0C65
Signing time: Sun 08 Jun 2025 07:01:08 +0000
Manifest this update: Sun 08 Jun 2025 07:01:08 +0000
Manifest next update: Mon 09 Jun 2025 07:01:08 +0000
Files and hashes: 1: 1-boXqKY_Hyoe19Z5JIZ3K6AJj94.roa (hash: a5qc0h3BhqmeqSpAZh7GFmd10hjtqvPl4/lqfepgblo=)
2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: ZfcMOhfNWF3pgYxBkmQGv8TOZ6bS041+QZ5EQ11iWTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:d5:20:57:11:ad:34:27:a4:7d:9d:94:06:57:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d
Validity
Not Before: Jun 8 07:01:08 2025 GMT
Not After : Jun 9 07:01:08 2025 GMT
Subject: CN=92a12ec6ec140f65fc050bd24852ab52b559ee84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:92:02:56:72:cd:8b:b9:2f:7e:5a:ca:2c:b6:
b4:48:87:c8:28:66:30:04:69:02:d3:2d:3a:17:4e:
35:63:2e:a6:a7:d4:c6:48:65:62:9e:ad:f6:ae:3b:
35:3f:1c:8a:63:40:73:92:9a:33:e3:d9:ce:88:b7:
29:47:7d:87:52:b1:8f:5f:9f:ee:1d:9c:76:ac:6b:
70:7d:93:64:37:97:75:81:df:3d:7b:96:14:47:0d:
fd:34:01:d6:c7:2e:85:2b:bd:47:19:0c:02:e6:6c:
59:ff:e8:9a:7c:3b:0e:c8:c0:a6:c3:5d:d0:1f:e9:
91:1e:f3:61:35:6d:3a:1e:a5:3b:eb:da:f0:64:52:
e3:dd:3c:2e:53:52:3f:c3:db:d9:84:79:f7:5e:60:
8e:15:8e:7e:e4:27:5b:87:f1:3e:4a:44:c7:b0:fb:
36:df:9a:30:7c:94:49:5d:35:28:40:37:4e:ed:8a:
c4:53:4f:b3:2b:a7:0c:58:18:6c:2f:4a:f8:2a:f6:
fd:b1:11:0f:1d:73:89:86:de:a6:ae:42:02:88:70:
7f:1b:80:1b:92:0d:15:4b:77:eb:03:cb:8e:f1:6b:
03:77:ba:18:6e:50:6d:60:92:85:f7:b5:cf:11:00:
07:68:a3:4e:12:f4:5a:92:b0:ae:85:df:a8:15:53:
55:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:A1:2E:C6:EC:14:0F:65:FC:05:0B:D2:48:52:AB:52:B5:59:EE:84
X509v3 Authority Key Identifier:
keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:9e:3c:c1:64:42:6c:0b:c0:a5:7c:a6:da:36:d3:81:a7:49:
ba:cb:a6:27:e0:78:30:8d:06:8e:a2:cd:f1:9d:4d:b1:48:92:
41:4e:57:8a:66:2d:b7:d3:bd:72:86:3c:13:02:c9:20:35:90:
f4:53:a1:31:c0:14:ac:1f:84:69:c0:f8:08:00:29:35:df:51:
9e:d6:38:41:94:b5:9e:46:3d:62:d5:cf:a4:c7:3d:98:01:bb:
3f:b7:55:16:ba:cd:39:92:42:d9:cf:f1:5f:bd:b1:7e:57:cf:
a1:9f:90:10:a6:e2:32:dc:1c:20:35:f9:66:02:e3:d4:bb:6e:
e6:24:c1:22:c8:db:13:5b:34:a7:03:b5:7e:8f:cb:27:4b:ec:
63:3e:38:50:e8:56:f3:d4:03:d5:60:c8:af:10:63:92:b7:b2:
98:28:0f:0c:c4:db:00:c6:6d:c8:8c:18:6a:2d:86:12:09:cb:
8d:f2:37:78:26:c7:e2:45:32:b4:7f:8f:7a:bc:0d:4c:51:07:
87:9b:c3:03:f1:a1:9a:3f:c6:27:42:e4:f7:49:72:60:0a:00:
1a:ac:93:ba:11:80:39:71:09:65:32:0d:30:0c:c8:39:0f:c1:
3c:c4:61:c1:15:fe:cf:a5:05:6e:2d:1e:0b:56:f6:d5:32:36:
39:f4:68:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:12:58 2025 by rpki-client