Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
File: paimkAmtLokJhr3XbGM8GzHwbzo.mft (raw, json)
Hash identifier: Olsxw4S7j4da0sY/og7YHRwaLm4Ao0SZIBDZXBVqWBg=
Subject key identifier: 9A:B6:65:4F:92:FF:DF:08:AC:08:7E:B3:56:0C:A7:C3:B5:DD:8E:B5
Authority key identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
Certificate issuer: /CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Certificate serial: 01976515ECB789376F0C5148C9EBDCC7877F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
Manifest number: 0673
Signing time: Thu 12 Jun 2025 17:00:25 +0000
Manifest this update: Thu 12 Jun 2025 17:00:25 +0000
Manifest next update: Fri 13 Jun 2025 17:00:25 +0000
Files and hashes: 1: 6FOwPkcLo51Q3D-jQMVy5DzuCjo.roa (hash: ZMfa+VC1JK7r5J2BdtywNHEZxOWql9OfKZrNLteanPw=)
2: paimkAmtLokJhr3XbGM8GzHwbzo.crl (hash: rjwy2oc696m0xVTK2LTZYmZbR2gV8jvzzR7mNer8RKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 15:17:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:65:15:ec:b7:89:37:6f:0c:51:48:c9:eb:dc:c7:87:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Validity
Not Before: Jun 12 17:00:25 2025 GMT
Not After : Jun 13 17:00:25 2025 GMT
Subject: CN=9ab6654f92ffdf08ac087eb3560ca7c3b5dd8eb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:96:a1:63:05:c1:b8:78:3e:d9:7b:66:36:47:
a0:77:8d:11:b5:f4:28:e1:b6:13:d2:3d:39:4e:24:
f2:80:9e:7f:e8:0f:4d:99:49:36:93:43:f5:f6:2e:
4c:8a:dc:e0:e2:46:b2:03:39:76:5b:80:a0:45:cc:
68:29:e5:7f:42:0b:a1:bf:4a:65:d8:d1:88:0b:6c:
7e:fc:26:ea:66:2e:ee:eb:34:fb:f5:fd:ef:b4:9b:
36:92:1d:7b:40:39:42:a2:1a:08:37:f2:84:43:5c:
54:30:68:ae:1d:33:02:16:59:a9:f4:bc:c5:a2:ce:
ae:8d:58:55:4e:de:0b:4f:44:52:88:89:ea:b1:b8:
b6:8e:71:ef:de:eb:bb:10:8c:6d:13:24:06:5c:c8:
ef:2a:f9:5e:2e:3e:d0:eb:3c:6c:42:1e:98:64:ec:
e1:f4:c6:76:61:aa:32:27:a2:89:7e:ef:9c:dc:f5:
4b:aa:26:b2:df:3e:bf:a6:ea:4d:30:d4:bf:c3:08:
a8:a8:25:5b:15:0d:33:27:20:37:26:95:6d:61:9d:
d7:6e:a5:76:f9:e5:9f:b1:83:53:81:d2:d0:36:2d:
7c:ed:ee:df:eb:e8:d0:38:bd:32:d2:e3:de:9b:33:
a0:44:b4:9d:ec:38:70:c0:40:65:0c:f7:be:26:b8:
29:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B6:65:4F:92:FF:DF:08:AC:08:7E:B3:56:0C:A7:C3:B5:DD:8E:B5
X509v3 Authority Key Identifier:
keyid:A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:f3:64:08:23:86:c3:db:80:74:f6:94:e6:a2:56:c6:4b:7a:
f9:3d:85:3b:b7:43:62:62:60:b3:89:1a:78:86:04:88:ed:73:
a6:ac:6b:55:68:69:f8:68:6f:13:2d:ea:b5:ef:13:37:22:5b:
4f:2c:c3:1f:23:b8:a5:df:e5:1e:38:63:83:3c:94:ca:53:42:
10:b1:11:f9:8c:91:fb:9c:85:4e:cb:d5:ce:b4:05:e6:3c:7a:
77:eb:77:b3:d9:36:54:d7:a8:59:96:1b:6a:f6:7c:29:b9:e1:
a0:5a:b6:0c:46:3e:f0:98:31:6b:c2:97:fe:2f:10:c1:78:61:
10:99:1f:82:76:ff:75:fe:1a:4b:56:a2:5a:15:36:41:90:dc:
1e:f2:40:f9:8e:92:f4:e5:9f:e6:d2:84:3a:cd:0f:39:3f:44:
bf:2a:ac:bd:c5:a4:46:83:8d:da:45:f7:83:12:06:14:ba:93:
4c:12:94:c2:96:e0:45:c7:a0:76:3a:c1:3f:d6:fd:2c:6e:94:
de:d1:5e:ef:e4:ce:72:0b:3a:b2:95:82:74:f6:81:af:ff:d8:
32:fc:91:e2:12:39:f7:8d:97:e1:02:db:6f:e3:de:2b:58:66:
b0:77:96:b4:a7:79:ec:42:ae:80:ab:38:e3:7c:92:48:c0:ab:
f6:02:e9:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 23:48:06 2025 by rpki-client