Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
File: Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft (raw, json)
Hash identifier: gYYLsiE3ULx1JVtoA9j0avUMF3/5TDEYfN3vNLv7XyQ=
Subject key identifier: 42:51:BD:72:78:68:95:32:3F:F2:8B:AD:4F:06:78:E2:F0:D1:09:0F
Authority key identifier: 02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90
Certificate issuer: /CN=026d511ce3af90c4d601c7ccf8360523713e2c90
Certificate serial: 019774F6FC8194FF9B3F2CC89CCCEF0090B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
Manifest number: 020B
Signing time: Sun 15 Jun 2025 19:00:32 +0000
Manifest this update: Sun 15 Jun 2025 19:00:32 +0000
Manifest next update: Mon 16 Jun 2025 19:00:32 +0000
Files and hashes: 1: Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl (hash: ExAwbDmiLrskbQZ7JgS33UoD6a7jty2hAS9dworOtLA=)
2: PinfW_YHyw5uymC7Qg5_e_ihs1A.roa (hash: pxez1kR2olajgq0bPf5GWwA/2mx0CN85t2SDcizNJFk=)
3: q6pqSEbcTlqmRayyanV7tPyo7fs.roa (hash: EC2KtAOMCahopm9kPSQwxVqEk8+Lm5s50v5gQFz0rN8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 19:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:74:f6:fc:81:94:ff:9b:3f:2c:c8:9c:cc:ef:00:90:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=026d511ce3af90c4d601c7ccf8360523713e2c90
Validity
Not Before: Jun 15 19:00:32 2025 GMT
Not After : Jun 16 19:00:32 2025 GMT
Subject: CN=4251bd72786895323ff28bad4f0678e2f0d1090f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5e:be:eb:d7:84:c2:2d:01:99:c7:d9:a6:47:
67:81:78:3f:97:40:7b:1f:e6:f7:8b:2d:c2:41:8a:
98:bc:b8:d3:4f:05:1d:e3:00:07:d6:9a:5e:f3:36:
45:6e:b8:ad:f3:c0:7f:c4:24:a1:e2:7e:0f:8b:13:
fb:f6:a2:71:8a:c3:49:84:aa:46:91:5f:3e:66:2f:
0e:1e:06:4c:e8:f5:b3:d7:7a:d4:75:3f:96:d1:84:
51:e1:02:50:1e:fa:88:bf:10:9d:95:06:9d:2a:e5:
6a:05:f2:d3:81:78:b6:ba:7f:3a:26:77:76:ca:96:
32:5b:46:3b:cb:59:c4:ef:c2:32:86:ab:d8:36:a3:
72:dc:73:1f:e5:c1:6f:7f:23:e6:6e:4c:6d:e0:60:
2c:ce:a9:66:df:57:da:96:92:2d:57:c4:18:4c:d3:
ec:b8:8f:de:0e:de:a0:8f:cf:33:e4:24:5b:73:0a:
49:8b:3b:a6:47:8b:94:8e:cd:61:9a:e6:ab:c7:e7:
47:85:8c:b1:8a:63:fc:9c:20:97:5a:e9:0a:bc:c7:
43:e9:aa:9f:80:0c:e7:01:85:28:ae:25:97:4f:b4:
9b:b8:5b:d4:8c:36:55:ff:7f:bd:4b:eb:50:c4:3a:
36:5c:a4:45:e2:ba:78:6b:4e:c1:6d:3a:9a:39:4b:
ed:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:51:BD:72:78:68:95:32:3F:F2:8B:AD:4F:06:78:E2:F0:D1:09:0F
X509v3 Authority Key Identifier:
keyid:02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:44:53:18:4b:c6:8d:f3:6e:ed:d1:c7:e9:b2:f2:1d:ee:06:
f0:5d:02:72:50:b3:3c:28:ce:9c:01:6e:94:19:c4:89:66:60:
1b:c1:ee:be:d3:ad:e2:1c:6a:94:c5:23:d7:75:66:de:b9:90:
56:1d:63:41:84:a2:0c:3d:ed:77:73:fa:20:78:bb:51:f6:33:
d5:15:0a:82:7c:05:14:d9:22:2a:b3:e9:e6:ab:b3:dc:70:f4:
92:19:5e:85:b9:fa:56:e7:ad:0b:8f:9f:29:53:2d:de:f5:81:
9c:33:1b:af:e7:c8:f2:07:8a:84:7d:7e:05:13:46:cc:de:47:
98:5f:02:5e:4f:36:88:95:28:d6:f9:f1:f7:e5:93:99:bc:9b:
bc:d8:ef:14:61:85:51:95:5a:da:73:97:5c:45:89:df:f9:5b:
35:fb:fb:05:16:90:7d:8c:38:69:df:e3:64:31:99:81:17:7f:
39:8b:74:3c:d5:ba:4d:49:92:1d:a3:23:a2:77:dc:63:34:d8:
7f:1c:7f:31:75:7a:f3:d7:f0:15:00:2c:1b:e2:e5:05:cc:f0:
98:02:e0:2c:a6:3d:6c:8f:ff:1c:aa:07:af:ef:8d:b9:b1:92:
a7:b0:21:22:0e:11:16:66:1e:f6:87:95:db:99:8a:c0:ef:1c:
c4:fd:bd:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 04:11:46 2025 by rpki-client