Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
File: paimkAmtLokJhr3XbGM8GzHwbzo.mft (raw, json)
Hash identifier: j7Gm91KrfU0zP0/dbmLXryaKrxk6ghecJLRaXUB/ELI=
Subject key identifier: DE:B1:EA:5B:6A:97:C1:FA:9B:E0:0B:01:3B:DF:27:48:B8:BC:48:D4
Authority key identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
Certificate issuer: /CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Certificate serial: 01975B6E6BEE8848C9C6838135A08FEDD51C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
Manifest number: 066E
Signing time: Tue 10 Jun 2025 20:00:52 +0000
Manifest this update: Tue 10 Jun 2025 20:00:52 +0000
Manifest next update: Wed 11 Jun 2025 20:00:52 +0000
Files and hashes: 1: 6FOwPkcLo51Q3D-jQMVy5DzuCjo.roa (hash: ZMfa+VC1JK7r5J2BdtywNHEZxOWql9OfKZrNLteanPw=)
2: paimkAmtLokJhr3XbGM8GzHwbzo.crl (hash: jrP9ipfcuT/a+NPayyjvHBnLA79C5wR233pgKJGhOFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:6e:6b:ee:88:48:c9:c6:83:81:35:a0:8f:ed:d5:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Validity
Not Before: Jun 10 20:00:52 2025 GMT
Not After : Jun 11 20:00:52 2025 GMT
Subject: CN=deb1ea5b6a97c1fa9be00b013bdf2748b8bc48d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:83:1f:4f:e0:e3:7a:7d:38:cf:ff:d2:14:94:
e5:f0:a2:d7:91:7a:cc:d4:1f:b8:1c:06:3e:db:62:
8a:2b:ed:da:f6:be:db:99:6e:ee:fc:32:95:27:c9:
7f:21:4e:d0:56:9f:a8:7d:58:59:93:0e:01:e1:d2:
96:20:ba:34:23:5a:1a:0d:8d:0a:ae:f8:6f:e3:da:
35:57:3b:32:18:c8:ae:e3:19:1d:31:f9:c2:2b:fd:
97:d5:87:a1:c5:d4:64:96:44:54:97:02:c2:0b:9d:
97:6e:5d:a7:fa:5a:86:84:9e:9c:a1:ee:fa:40:18:
7f:ee:e5:8c:70:0f:a3:d2:d5:3d:eb:a8:c5:b0:c9:
f7:25:5e:6a:0c:a2:5d:fa:1d:06:68:25:fe:d7:f5:
df:b2:06:52:e5:b6:14:d9:40:f9:bc:94:64:59:be:
f2:dd:d2:81:7b:5b:36:51:98:4f:fa:da:7e:14:0d:
3e:d5:4c:32:22:13:d4:e8:69:39:f7:d3:f9:b3:69:
6d:6e:0f:05:68:f3:d0:9d:45:24:d5:5a:95:d5:73:
25:29:04:fb:af:7b:34:d1:b8:8d:99:6e:46:1c:e2:
6f:c4:cf:73:d0:2a:46:41:06:89:c1:1f:ba:6d:0e:
10:c6:e7:86:6b:bc:bc:25:6a:5e:5c:70:3e:88:5b:
52:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:B1:EA:5B:6A:97:C1:FA:9B:E0:0B:01:3B:DF:27:48:B8:BC:48:D4
X509v3 Authority Key Identifier:
keyid:A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:ac:3c:6d:8b:c1:e1:fb:26:f9:3b:53:72:0b:ec:91:3c:8a:
ee:4a:15:22:23:68:7e:d0:85:d0:0f:5e:12:60:be:0a:a8:40:
cf:95:bb:5b:50:5c:1b:3d:37:e1:bd:94:a7:d5:d9:35:3a:94:
a4:d2:82:b7:1c:b0:71:86:07:42:50:29:7b:88:28:72:1d:e2:
c5:a4:10:70:4a:5e:30:9d:53:f8:26:0e:66:1a:14:44:48:3f:
77:83:82:8f:35:56:6c:67:7d:57:ec:19:36:33:86:34:de:b5:
4c:3f:35:8c:be:02:43:88:66:fb:29:bf:21:37:15:a1:ee:d9:
89:d4:b2:b9:0f:02:80:a7:f1:ad:dc:71:52:f8:c5:96:ee:42:
3b:80:3e:51:77:6a:7f:e4:2d:de:19:80:e0:e9:f4:67:31:6a:
70:66:80:10:9f:29:1f:57:df:e1:31:8b:56:a1:1b:f0:4e:48:
dd:fe:85:c5:6e:1a:eb:ba:e5:67:74:aa:37:6e:a8:ec:e7:30:
88:e7:99:c3:33:f2:97:21:9e:1e:da:45:f0:46:37:36:27:f5:
fe:61:4d:7d:8d:da:62:0d:1f:ab:a4:7b:8e:a1:af:82:21:17:
a3:dc:c2:56:2e:08:4e:10:9c:68:0a:ed:3f:ab:3b:50:22:cd:
e6:6c:d5:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 02:42:09 2025 by rpki-client