Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
File: paimkAmtLokJhr3XbGM8GzHwbzo.mft (raw, json)
Hash identifier: OAvq2UwKDasf2f2LGjzvH7XD9DvTCvrmZMbX8oIGLl8=
Subject key identifier: 89:7C:33:09:8C:45:8B:73:BD:E0:FC:EB:60:5F:08:9C:D3:69:D4:3C
Authority key identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
Certificate issuer: /CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Certificate serial: 01975791ACAEDCD99F2CC96D60D608D8A01D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
Manifest number: 066C
Signing time: Tue 10 Jun 2025 02:00:54 +0000
Manifest this update: Tue 10 Jun 2025 02:00:54 +0000
Manifest next update: Wed 11 Jun 2025 02:00:54 +0000
Files and hashes: 1: 6FOwPkcLo51Q3D-jQMVy5DzuCjo.roa (hash: ZMfa+VC1JK7r5J2BdtywNHEZxOWql9OfKZrNLteanPw=)
2: paimkAmtLokJhr3XbGM8GzHwbzo.crl (hash: MsE3fVairBDmn4+oMJ9V0L94VouCbG1sbOi1Gjj6cJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 02:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:91:ac:ae:dc:d9:9f:2c:c9:6d:60:d6:08:d8:a0:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Validity
Not Before: Jun 10 02:00:54 2025 GMT
Not After : Jun 11 02:00:54 2025 GMT
Subject: CN=897c33098c458b73bde0fceb605f089cd369d43c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:36:c8:eb:41:23:d7:e0:91:d0:63:ee:70:26:
98:f8:06:1b:c2:d1:5e:24:43:32:69:de:21:1f:5d:
6c:65:48:9d:32:d1:6e:9f:1b:38:2f:b6:16:12:48:
5b:ad:87:4a:d7:58:f9:87:10:de:47:31:34:4c:b6:
c1:e2:7d:9a:5b:92:bc:1e:a6:f2:a6:b6:8a:1a:9e:
f2:8d:ab:60:33:7e:43:2b:35:e1:0b:89:90:78:85:
2a:4b:90:0e:9f:99:a9:08:0f:2b:58:89:bc:c6:74:
6f:8d:db:7a:78:c9:91:ff:98:9b:2c:dd:2c:97:f2:
92:31:3a:7e:17:45:5d:17:a5:31:0c:99:65:c7:f3:
b5:0c:d2:3c:e6:16:0e:10:29:02:10:db:1a:0a:75:
76:00:64:72:e7:50:f3:1e:d5:a8:8d:1d:e1:11:8b:
71:97:33:d0:dd:66:fb:97:b5:28:05:f4:5d:88:fe:
6f:3b:4c:b9:45:c0:36:98:03:0c:e7:75:fe:52:a1:
92:82:de:90:9c:69:47:90:45:78:74:b8:49:60:92:
c4:17:eb:8b:76:79:ea:5c:a5:6f:12:9f:5d:72:6f:
17:7d:d4:5b:82:5d:44:4c:2b:5d:3c:98:1b:22:23:
1c:25:16:43:70:4a:73:f5:ba:31:0c:c9:e2:d8:15:
11:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:7C:33:09:8C:45:8B:73:BD:E0:FC:EB:60:5F:08:9C:D3:69:D4:3C
X509v3 Authority Key Identifier:
keyid:A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:6b:1c:c8:b4:bd:b0:3b:5f:2d:b0:1e:9e:56:3f:85:83:ad:
32:4e:b4:89:47:07:6c:16:f9:f6:0c:39:cf:88:10:d6:91:f3:
45:11:16:56:4d:60:ab:40:56:8b:bd:a9:3b:95:9e:5e:c0:74:
d5:5f:01:f7:97:db:90:41:16:43:51:ab:91:e5:6a:8a:0a:72:
51:5f:09:8b:b0:51:95:c4:f3:a7:f4:70:49:26:fb:f6:94:f4:
23:ee:17:41:5d:ac:9a:5b:55:7b:f5:d2:e3:73:4a:af:52:34:
75:30:81:f5:bd:96:b9:0d:fd:c8:76:13:95:f0:3f:56:5e:9f:
3a:a7:e0:5c:8e:9f:0f:35:42:c0:03:30:ec:13:5d:09:68:86:
2d:18:7c:c6:23:2c:ca:6f:8e:8a:eb:03:bb:54:ff:07:67:a6:
d9:b8:c1:a9:05:fc:ad:4e:51:37:a0:40:34:f5:f3:24:85:05:
52:8a:2e:7d:fc:1b:62:e1:e3:cc:08:94:32:0b:48:38:47:fd:
63:b9:d5:e3:ed:ec:eb:bd:f4:a5:ad:06:ef:5d:6b:15:1b:82:
a3:84:41:29:74:dc:a5:66:c8:b7:30:80:e4:42:61:1d:e1:b5:
b0:36:45:e4:ef:ad:15:f6:4b:d3:0f:41:4d:f4:b1:26:4b:31:
1b:5e:15:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 12:36:07 2025 by rpki-client