Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
File: a1zOqpdLKQWssmKvRSwCKAMWqrs.mft (raw, json)
Hash identifier: kwaDN2YakDE1BV7ngxFBXsaKdw2qvFvgYh/gkZGT/mY=
Subject key identifier: DF:E0:0A:6B:2F:D2:3C:3C:07:F5:BD:B2:E0:CD:BA:FA:7A:D6:23:32
Authority key identifier: 6B:5C:CE:AA:97:4B:29:05:AC:B2:62:AF:45:2C:02:28:03:16:AA:BB
Certificate issuer: /CN=6b5cceaa974b2905acb262af452c02280316aabb
Certificate serial: 01975121CFCD2F68FF798A496D447124B253
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
Manifest number: 04BE
Signing time: Sun 08 Jun 2025 20:00:59 +0000
Manifest this update: Sun 08 Jun 2025 20:00:59 +0000
Manifest next update: Mon 09 Jun 2025 20:00:59 +0000
Files and hashes: 1: a1zOqpdLKQWssmKvRSwCKAMWqrs.crl (hash: 2pJ7++L6pqxZjk+GrBLHbMZRiHR7TPHBVmiYwdz7Ws0=)
2: bItIvz4oTSzEDWqrAWUpQQfUMhI.roa (hash: F1ATAeaXzdv7TC8vaBAXGNSvaND60c6EFcHFAEWNuFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:21:cf:cd:2f:68:ff:79:8a:49:6d:44:71:24:b2:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5cceaa974b2905acb262af452c02280316aabb
Validity
Not Before: Jun 8 20:00:59 2025 GMT
Not After : Jun 9 20:00:59 2025 GMT
Subject: CN=dfe00a6b2fd23c3c07f5bdb2e0cdbafa7ad62332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:67:06:f0:c4:ef:a3:18:00:22:fb:db:a7:fe:
f1:9f:ac:cc:9f:42:9e:df:04:17:a8:5a:dc:af:a3:
76:f4:80:47:a6:82:63:d3:1a:5a:3a:a2:b7:9b:bb:
d4:00:14:b1:64:44:98:37:76:85:fa:c5:ff:df:f8:
f9:d8:b8:7b:f2:42:cd:46:c8:8c:30:4e:bd:40:13:
38:d8:49:76:1e:85:23:c6:42:35:19:bc:0d:51:e3:
11:d8:13:0a:cf:da:0d:0c:b7:51:3e:7e:33:ab:31:
f0:27:19:19:ba:f5:95:6e:6a:5e:7f:90:ef:70:24:
ff:be:d7:4a:07:c7:b9:18:24:8b:3a:27:d0:b4:a7:
23:93:e1:e4:26:6e:b4:b4:17:42:96:82:8d:7e:15:
1c:6a:47:37:5e:85:1f:6e:85:33:81:27:ed:a2:ad:
a7:9a:49:64:26:99:a1:49:43:20:a7:fd:03:8a:4d:
8b:bb:34:98:3d:51:a2:5a:3d:a9:1d:52:b5:df:6a:
ba:27:70:d7:3d:56:40:fe:54:cc:43:92:7e:00:aa:
54:de:9f:11:55:97:84:e6:91:a2:e2:0b:ed:17:58:
bc:bd:7a:5a:3d:51:00:60:4d:a0:c3:e2:44:3e:89:
66:14:19:39:a5:aa:88:80:a0:ef:ac:3a:c4:dd:f2:
21:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:E0:0A:6B:2F:D2:3C:3C:07:F5:BD:B2:E0:CD:BA:FA:7A:D6:23:32
X509v3 Authority Key Identifier:
keyid:6B:5C:CE:AA:97:4B:29:05:AC:B2:62:AF:45:2C:02:28:03:16:AA:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:4b:c9:35:6d:55:9f:2c:cf:a5:30:d0:56:fe:e5:f2:0a:5b:
50:70:b3:81:86:f4:e9:d1:9e:1a:3a:5e:ef:0c:4e:41:50:e6:
36:ad:85:ff:8e:22:5a:dc:dc:85:96:12:89:d4:e0:70:38:e7:
4c:03:38:49:6c:ba:a8:c2:b2:9b:af:fa:54:97:c7:99:78:bf:
86:99:bf:04:c2:50:04:45:2d:74:58:ce:a6:c9:c7:17:4c:d7:
28:44:78:6c:80:8d:7c:1d:2d:3f:60:44:12:8b:55:b6:a2:1a:
e8:e5:d7:23:83:06:be:18:d0:41:9e:bd:e3:95:a3:53:15:fb:
7b:46:50:d5:5b:ab:99:36:60:ce:76:65:2b:5b:62:13:c5:6c:
37:7f:c3:9c:e5:86:f8:50:ca:14:aa:69:5f:6d:13:27:ac:1c:
0b:f0:1b:52:01:97:c6:63:ba:81:43:04:41:80:4d:99:af:e2:
4c:ee:9c:d6:5e:2b:5e:37:5f:df:3c:20:80:1a:20:3b:08:9f:
44:d5:0e:2c:a1:41:13:70:b2:13:b7:24:c2:80:48:7c:ff:75:
76:a1:af:fb:fd:d8:5d:b8:a5:1b:9e:20:44:c0:45:08:8d:65:
11:6e:1e:dd:af:cf:a3:d3:f3:17:32:10:4f:02:7f:89:1d:21:
3d:9d:cb:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 02:01:41 2025 by rpki-client