Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
File: aYLwUTKpmJUH6_bumJUYdTuizbU.mft (raw, json)
Hash identifier: TDsMP+6mA7KA6Y/YWdcAyK1ov+fmeSRfUKTjVUo2teI=
Subject key identifier: 33:FD:46:0E:53:3F:14:31:6D:D7:10:2E:76:40:32:35:0A:BE:07:DB
Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Certificate serial: 0197684E89B02E44014EA1963A3132E83DEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
Manifest number: 0A3E
Signing time: Fri 13 Jun 2025 08:01:06 +0000
Manifest this update: Fri 13 Jun 2025 08:01:06 +0000
Manifest next update: Sat 14 Jun 2025 08:01:06 +0000
Files and hashes: 1: aYLwUTKpmJUH6_bumJUYdTuizbU.crl (hash: t+3JEdzjeNYY8gdmi2Qw6Vql4ENGgF2b8BJVnRiqAxQ=)
2: fAKnpTzt0oxsrzvaA1bygJJ8CWQ.roa (hash: cdf+GHG9jpY7S3hS2aX03Crb7b2Au3gPgbB6NvaxmuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 08:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:89:b0:2e:44:01:4e:a1:96:3a:31:32:e8:3d:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Validity
Not Before: Jun 13 08:01:06 2025 GMT
Not After : Jun 14 08:01:06 2025 GMT
Subject: CN=33fd460e533f14316dd7102e764032350abe07db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ae:e2:6b:01:17:31:ed:96:d5:28:80:1d:07:
66:94:d0:7a:d8:5f:5a:ab:f6:d1:39:b7:15:a9:b9:
41:5d:ed:1f:4a:2a:9e:60:42:1a:87:75:a3:cb:d8:
2b:74:8d:02:9e:9d:0c:77:be:34:f2:03:c5:98:7f:
09:a1:f1:8c:e5:76:4d:02:19:6c:47:a1:42:a4:84:
87:de:b4:77:e1:e4:28:12:d8:3c:a2:a4:4c:2c:5e:
df:b9:4f:98:cd:b8:49:f8:79:37:0f:ed:21:28:59:
81:e5:90:d8:bc:27:48:ff:a8:4e:ef:6d:f8:93:14:
04:73:04:9b:79:84:ce:ca:f0:c9:f9:21:1b:7e:8a:
47:9a:80:3c:a6:3f:08:df:61:a7:bc:fd:66:5b:f0:
bc:a4:d7:bb:f1:4c:23:69:74:bc:fb:bc:c5:6d:8e:
e4:8d:eb:81:2c:e2:5a:67:d5:de:8b:20:0f:5f:06:
9a:de:fe:92:5d:0a:1a:14:3b:bb:8c:f4:bd:24:23:
34:af:fb:9c:d2:02:42:7c:e4:c7:c1:2c:2d:fe:bf:
cc:17:52:5c:49:a6:de:d3:c1:1a:e1:5e:45:2f:c0:
6a:55:85:8f:9a:ba:e4:e0:a6:dd:48:73:bb:47:3c:
cf:44:76:88:31:8e:66:4c:c4:55:65:5f:ee:88:f5:
7e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FD:46:0E:53:3F:14:31:6D:D7:10:2E:76:40:32:35:0A:BE:07:DB
X509v3 Authority Key Identifier:
keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:da:92:22:2f:bd:5b:4c:7c:20:88:aa:96:23:c7:45:a5:f6:
37:5d:bc:da:f9:25:6b:d2:06:31:04:ff:b7:17:0f:0a:15:54:
41:0f:df:07:71:f7:b8:56:9a:e0:75:da:cc:de:c4:28:af:c3:
d9:00:3d:46:a0:d1:9b:ca:2d:b7:3a:f7:4e:56:15:df:3b:04:
8c:8b:1e:87:61:f4:b9:f7:7c:cf:ab:9e:4f:2c:6d:59:02:32:
ae:bf:39:38:e5:ec:4a:cd:db:e7:08:3c:e9:6a:2a:ea:d4:c3:
e2:30:20:c1:6c:2b:ee:77:fc:1b:d4:0a:b6:1d:9d:2a:60:0f:
1d:da:66:8b:39:09:62:15:ff:45:94:88:13:21:57:ef:49:3e:
83:b9:eb:28:6e:a3:d3:04:ce:1d:d4:27:f0:e3:36:96:3c:3a:
75:f6:1d:92:b1:ac:3c:aa:cc:b4:ac:c8:3e:8a:cf:ff:9f:a4:
bb:41:08:b0:f3:0b:eb:d9:27:f3:3d:96:fe:7d:3e:ec:a1:72:
a0:94:6c:e3:29:eb:6a:e2:de:66:aa:9f:71:b0:2d:1f:4e:ee:
12:d2:d0:fd:5a:c1:fa:f5:97:be:dd:ff:90:50:3d:11:9e:b3:
04:2b:83:7d:c9:9e:44:f6:ed:3c:bc:f3:de:ef:f9:ec:24:a0:
a2:4a:b5:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:24:01 2025 by rpki-client