Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
File: paimkAmtLokJhr3XbGM8GzHwbzo.mft (raw, json)
Hash identifier: qHRgtcqfW7J4z3aHpuystxQXD+kkOE7Pu1ERVPCbYl8=
Subject key identifier: E0:D8:DA:5B:5D:F8:FF:81:93:F5:25:71:BB:D4:49:AC:51:AD:57:E1
Authority key identifier: A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
Certificate issuer: /CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Certificate serial: 01975F4AFF9729D77EE37FD22AE9818A3DD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
Manifest number: 0670
Signing time: Wed 11 Jun 2025 14:00:39 +0000
Manifest this update: Wed 11 Jun 2025 14:00:39 +0000
Manifest next update: Thu 12 Jun 2025 14:00:39 +0000
Files and hashes: 1: 6FOwPkcLo51Q3D-jQMVy5DzuCjo.roa (hash: ZMfa+VC1JK7r5J2BdtywNHEZxOWql9OfKZrNLteanPw=)
2: paimkAmtLokJhr3XbGM8GzHwbzo.crl (hash: uDuHo4H3GP9Xu8+1lkWQ2ExYjiByaDcMQzwFPrrSOFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 14:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:4a:ff:97:29:d7:7e:e3:7f:d2:2a:e9:81:8a:3d:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a8a69009ad2e890986bdd76c633c1b31f06f3a
Validity
Not Before: Jun 11 14:00:39 2025 GMT
Not After : Jun 12 14:00:39 2025 GMT
Subject: CN=e0d8da5b5df8ff8193f52571bbd449ac51ad57e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d0:f5:76:06:1e:af:49:70:c2:01:ed:7d:2e:
fb:5d:dd:39:bc:ab:5d:9a:8a:eb:a7:53:a0:d4:4e:
3a:97:fe:9a:00:31:21:98:69:89:c9:5f:d4:87:a5:
61:ea:78:5b:e5:02:f2:f2:ec:fe:ad:5c:21:7c:b4:
6c:3b:a9:d1:27:2e:87:ef:de:f7:41:5f:5f:b8:01:
5c:79:b6:54:da:15:10:f8:db:f8:93:f6:dc:ae:8b:
f8:20:67:bb:71:3c:d2:5d:b0:b0:fe:77:44:46:7d:
51:46:8a:79:de:df:bc:01:65:10:e4:f7:a4:65:2c:
c4:1c:fa:7d:52:7b:70:8f:12:ec:f4:d2:03:a8:53:
04:15:18:1e:40:63:df:43:73:40:4c:16:3d:a8:fd:
6e:6c:db:bc:cc:7e:64:94:a0:84:0a:a5:da:3e:83:
5e:9d:cf:4e:81:dc:f5:59:6c:88:d8:01:9e:50:56:
1b:3e:44:d1:56:eb:41:63:20:de:6d:d6:7a:83:9a:
a0:7a:10:78:57:c0:3d:e0:ee:e4:06:b7:11:b0:5b:
47:87:99:1b:2e:69:b6:f1:d6:c0:bd:5d:84:e2:de:
86:54:ff:1d:31:f6:52:d7:25:32:3c:79:7b:fe:c5:
0e:44:07:13:31:3d:c2:eb:3f:bb:4e:8b:ca:6e:ed:
b9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D8:DA:5B:5D:F8:FF:81:93:F5:25:71:BB:D4:49:AC:51:AD:57:E1
X509v3 Authority Key Identifier:
keyid:A5:A8:A6:90:09:AD:2E:89:09:86:BD:D7:6C:63:3C:1B:31:F0:6F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paimkAmtLokJhr3XbGM8GzHwbzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/c4dada-1a29-449a-9ac6-b12ebf345bc3/1/paimkAmtLokJhr3XbGM8GzHwbzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:fd:a5:50:a2:0f:c8:5b:c9:fe:b3:6e:c4:b7:c0:be:83:d4:
36:6d:4c:d4:87:e4:72:26:7b:43:64:13:79:4d:4f:2d:be:84:
e8:05:1d:ff:2d:e3:7d:fa:d4:60:63:73:86:5c:9d:5e:9d:ce:
4b:5c:53:04:a2:bc:73:ba:e9:79:60:a7:5e:f5:f3:85:1c:62:
b7:9b:c0:58:b6:fe:ef:b4:64:a3:0e:94:3a:a2:d4:0d:2e:cc:
09:d6:ba:79:81:ca:1a:35:4e:f8:23:c8:d0:80:5f:15:f8:74:
a9:58:19:8c:58:ef:03:5f:b9:ca:ab:a8:d1:93:33:6f:ef:74:
c6:12:d5:aa:f3:74:9a:81:ae:07:54:f8:f0:aa:bf:c1:b7:c5:
4e:eb:c4:46:f6:d2:d7:36:2a:4a:bf:61:66:ef:3f:e2:0b:4d:
0c:53:02:2a:7f:73:a6:43:69:12:36:07:e5:92:cc:ce:05:90:
08:04:1a:9c:f7:f2:f5:31:1c:54:37:da:d3:56:5d:ea:8a:52:
06:49:ad:97:7f:5d:8c:fe:0a:b2:44:1e:a4:79:c0:b3:b6:69:
01:90:f8:fa:65:aa:57:99:1c:35:88:78:e3:18:a9:25:f8:97:
22:4e:0d:e0:54:e3:a3:f7:be:b3:e1:8c:85:94:79:7a:6d:c3:
8a:d2:d2:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 20:41:22 2025 by rpki-client