Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
File: aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft (raw, json)
Hash identifier: XmKVYGuOK99BypIYENzwVWgJaEQTBMgXQXvED1KJ+TA=
Subject key identifier: C5:83:89:40:CF:F9:20:F5:5A:F1:D3:3D:07:F8:BB:0B:4B:7F:7F:4A
Authority key identifier: 68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
Certificate issuer: /CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Certificate serial: 019747E73BABFFC53B403E43ED08310794D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
Manifest number: 04E6
Signing time: Sat 07 Jun 2025 01:00:25 +0000
Manifest this update: Sat 07 Jun 2025 01:00:25 +0000
Manifest next update: Sun 08 Jun 2025 01:00:25 +0000
Files and hashes: 1: AJ5wMI6kFAAGgXfPHZAVtLCSnP8.roa (hash: O5F5OKdgmFhYvl6NemyAslo9muG5v3CdZb38avB1q8I=)
2: aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl (hash: vHcnD9LcE4oxbe4A7EppCR4lidhLIqMDHn4m513Z/00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:3b:ab:ff:c5:3b:40:3e:43:ed:08:31:07:94:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Validity
Not Before: Jun 7 01:00:25 2025 GMT
Not After : Jun 8 01:00:25 2025 GMT
Subject: CN=c5838940cff920f55af1d33d07f8bb0b4b7f7f4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:57:a8:38:f8:b9:e9:96:45:fe:75:2b:7b:8c:
f5:a5:74:55:30:67:be:fc:12:ed:dd:b1:ab:a1:9f:
80:82:39:71:93:41:0b:ea:1e:2c:0e:7e:36:11:40:
7b:30:2a:d8:cb:f1:20:db:48:15:cf:46:0c:30:11:
b8:ee:95:0a:cf:a2:39:91:89:d0:34:66:6b:b0:5e:
53:03:b7:26:a3:d2:54:a2:34:6a:75:74:d2:37:d9:
d9:8a:e0:2d:39:81:fb:21:06:27:0d:b0:10:05:c4:
22:2c:ee:a1:0c:eb:92:02:30:65:c1:33:0f:6a:a7:
f9:46:0a:3c:34:dd:81:30:1b:93:17:3a:3d:ef:94:
11:a1:ec:1c:6b:1b:99:b2:ac:06:4e:38:90:fc:08:
3a:f1:db:0f:91:ce:e8:fb:c4:25:fe:dc:58:77:68:
43:66:8d:cb:2b:67:26:e9:48:84:da:c4:fa:71:05:
e4:3f:93:a3:66:36:1a:56:13:b8:6a:fa:2c:5c:87:
ea:4b:97:4c:f0:38:b3:ce:bf:46:08:e0:52:32:72:
41:0e:2e:81:90:1d:fa:83:69:41:2c:39:17:3d:c7:
09:c2:53:2f:6c:f6:9d:68:e3:42:98:31:c3:60:e5:
f7:c1:df:5f:4c:cd:ad:e3:2a:a3:5d:62:bf:9b:8c:
86:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:83:89:40:CF:F9:20:F5:5A:F1:D3:3D:07:F8:BB:0B:4B:7F:7F:4A
X509v3 Authority Key Identifier:
keyid:68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:47:e2:86:8d:fd:79:dd:d3:20:7d:fc:23:03:ed:90:84:c9:
32:69:41:1b:9c:34:47:1d:bb:50:8d:ab:be:c4:ba:49:9d:87:
bb:cc:a9:fc:4e:ba:35:44:77:71:4b:b6:e8:4b:ec:3c:5f:6a:
e6:4d:4b:41:72:d7:7f:36:0d:c1:0a:17:64:d7:ac:a1:bd:48:
4f:67:28:ea:6a:b9:cf:7e:86:b3:c5:3f:7f:02:39:6e:0e:22:
e4:52:b1:61:b4:78:cb:2b:83:9f:ff:ba:8c:39:5c:a8:40:23:
3d:de:37:7a:cd:fc:52:d5:40:ac:e6:b1:b1:7f:80:bb:11:d8:
76:f9:16:85:6b:7e:03:60:8e:3a:db:5a:84:2f:6c:f7:09:fd:
11:14:33:bc:44:39:4f:26:5b:e4:f8:07:ac:08:ca:fe:a0:ee:
39:af:0d:4b:30:8e:f9:3b:b1:85:bc:f1:b8:7c:b7:bc:6b:e6:
e1:df:f1:d3:62:9f:72:86:51:2e:36:92:c4:e5:47:fc:25:9a:
c2:bb:0e:e6:06:7e:24:a7:8f:55:5a:e4:0e:7e:81:8a:ae:08:
45:74:2f:b5:fe:69:0b:6e:12:83:b8:b7:10:12:f5:1e:d7:d8:
a4:8a:a7:e4:79:1c:ce:a4:b0:98:81:22:8f:cb:19:77:31:c0:
57:64:ed:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:29:28 2025 by rpki-client