
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
File: paimkAmtLokJhr3XbGM8GzHwbzo.mft (raw, json)
Hash identifier: fFs4vZVI8PoK60TLfBa+qsTDBEbi3AW83twrufMMQ8g=
Subject key identifier: E6:89:11:AA:B7:C0:10:1B:9E:A1:A3:B2:65:31:F5:08:CB:E0:AE:1A
Authority key identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
Certificate issuer: /CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Certificate serial: 0197670497495285A5C040C74E3BDF86BE8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
Manifest number: 0674
Signing time: Fri 13 Jun 2025 02:00:43 +0000
Manifest this update: Fri 13 Jun 2025 02:00:43 +0000
Manifest next update: Sat 14 Jun 2025 02:00:43 +0000
Files and hashes: 1: 6FOwPkcLo51Q3D-jQMVy5DzuCjo.roa (hash: ZMfa+VC1JK7r5J2BdtywNHEZxOWql9OfKZrNLteanPw=)
2: paimkAmtLokJhr3XbGM8GzHwbzo.crl (hash: 3DL/kFFenRzgPAZrIVwg8PUbFrbb5uSh6dtOjeU3Yb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 02:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:67:04:97:49:52:85:a5:c0:40:c7:4e:3b:df:86:be:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Validity
Not Before: Jun 13 02:00:43 2025 GMT
Not After : Jun 14 02:00:43 2025 GMT
Subject: CN=e68911aab7c0101b9ea1a3b26531f508cbe0ae1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:be:9c:77:86:42:16:47:fb:02:07:55:45:cb:
30:9c:48:aa:34:80:2c:c4:17:77:0c:52:6f:95:d2:
7e:6b:18:ba:90:6b:0c:d2:47:96:75:43:c0:9c:90:
fd:3c:25:4c:0a:17:61:fe:60:79:9a:b9:20:81:dc:
d1:66:fe:9a:b1:ee:13:c2:bd:d0:d6:62:13:11:9c:
9e:3c:17:d3:a1:12:1e:ce:73:a6:2e:5a:a3:4c:ad:
c1:e8:88:13:1c:1c:ba:73:15:1f:b5:be:07:9b:02:
15:44:d7:60:63:24:67:48:d9:ef:64:83:24:8b:c7:
9f:3d:72:9a:b2:76:fd:b8:86:a6:a9:4b:d5:58:9b:
0e:0b:96:fc:94:32:09:e6:9a:82:09:6c:13:9a:30:
27:3b:5c:e9:4f:e1:0f:55:95:e3:18:db:8c:7c:26:
4b:74:bc:9c:89:40:70:23:bb:29:cd:dc:f1:4e:ef:
c4:fc:ec:bf:01:ae:49:17:83:64:de:87:db:c1:d5:
e9:c1:6a:68:fa:df:77:ae:72:96:22:44:cd:87:99:
26:c6:63:7b:48:46:dd:a3:ae:7f:14:2e:6f:63:2f:
60:ee:3e:53:bb:0b:2a:5b:be:41:da:be:18:5e:40:
09:83:e8:e3:32:2e:34:5d:7b:c2:eb:d8:ce:e4:8e:
2d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:89:11:AA:B7:C0:10:1B:9E:A1:A3:B2:65:31:F5:08:CB:E0:AE:1A
X509v3 Authority Key Identifier:
keyid:A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:44:2c:a2:63:91:89:4c:74:78:22:3f:f7:e2:d2:3e:d3:56:
e5:be:dc:6d:5a:f8:20:51:58:05:8c:79:96:fc:cd:54:8c:cc:
0e:e7:42:aa:81:c0:e6:14:87:f3:7d:05:bf:90:87:b7:87:82:
d2:07:58:ae:ca:30:35:cc:b0:30:39:fd:bf:60:6a:37:55:d4:
fe:1e:ca:27:b4:5f:57:10:a6:ef:8d:9d:ca:38:86:61:5c:74:
9c:cc:6c:26:82:cd:9c:9b:6b:95:9e:90:40:36:e9:95:44:28:
06:8b:86:4c:60:15:7b:7d:c3:68:f5:3a:38:53:c7:43:15:bc:
3b:86:1a:26:b0:53:31:be:99:98:02:3b:af:41:15:e8:77:43:
87:fa:47:b7:32:dd:51:e8:b8:b4:74:7f:f9:2e:82:2f:bd:d1:
d2:ee:df:69:3a:e0:40:01:7f:da:35:c5:f6:e1:2b:fc:22:5d:
1a:53:9c:1f:9d:71:0c:4b:83:72:67:f4:ac:fd:2c:c8:85:69:
a5:5b:e4:27:80:c4:09:61:ee:a3:bd:12:dd:b7:b5:b8:b9:94:
0b:88:ae:8f:b8:47:98:68:d9:c1:a1:fb:c0:1c:65:73:d3:f8:
c9:b6:45:6e:41:93:ac:5c:68:77:6e:95:06:62:84:b4:4c:6c:
1d:6d:6d:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 12:53:26 2025 by rpki-client