Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
File: ag1malTV4bw1XA1yUDpFj8Do4Gw.mft (raw, json)
Hash identifier: GFRcC9fV7BOaITPvI7qBagWf/ewk8dweQs+eQcA9+fk=
Subject key identifier: A9:4C:27:B6:4C:4E:DF:D7:1D:C0:87:44:8B:7D:BA:B9:E4:11:6B:24
Authority key identifier: 6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
Certificate issuer: /CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Certificate serial: 01976C98DB6BD45C2C74B7ED5CE21F4876D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
Manifest number: 158E
Signing time: Sat 14 Jun 2025 04:00:46 +0000
Manifest this update: Sat 14 Jun 2025 04:00:46 +0000
Manifest next update: Sun 15 Jun 2025 04:00:46 +0000
Files and hashes: 1: Zbu9lV-TXRr1mjPabkdbQi-tc2k.roa (hash: L0pLG2iq3DWnmdVA1LNHGmiPWiH4T8eZ9Q5L7k/ukzQ=)
2: ag1malTV4bw1XA1yUDpFj8Do4Gw.crl (hash: juw9DNtZ5KTsy00o4XqaOKz5kmelm9IVRma8DJoFt/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:db:6b:d4:5c:2c:74:b7:ed:5c:e2:1f:48:76:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Validity
Not Before: Jun 14 04:00:46 2025 GMT
Not After : Jun 15 04:00:46 2025 GMT
Subject: CN=a94c27b64c4edfd71dc087448b7dbab9e4116b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:61:b5:d2:cd:1e:e6:39:52:1c:24:36:d9:0b:
ac:88:a0:77:f8:8b:7e:41:77:cc:75:2b:74:28:82:
5d:8a:ba:f4:c4:7b:ed:e7:5d:7f:46:f4:2d:cf:1c:
46:7c:f6:ba:dc:d1:c8:bb:7a:6b:3f:7a:87:b6:86:
0f:b4:8a:78:ec:2e:4b:e8:19:50:0e:fc:29:54:c2:
83:b9:0b:0a:e3:a4:96:4b:a2:84:d1:fa:1b:06:a1:
a3:6b:3c:91:ce:e2:1d:41:9e:41:01:1f:b1:03:f5:
d2:06:39:e0:03:55:dc:8c:56:48:89:58:8a:cd:e9:
10:9a:ca:c8:49:5c:9e:4c:52:65:96:e7:91:af:a9:
32:ff:f7:f5:26:1d:7d:f2:50:dd:af:e0:99:bc:84:
54:6a:ec:dd:0f:25:43:65:8e:f2:15:30:ec:42:04:
e1:61:6b:9d:20:bc:06:f9:5b:9a:7d:91:56:07:7f:
30:41:c0:cd:24:24:9c:07:4b:d9:68:2c:81:53:5c:
28:b6:e0:ea:2a:29:6a:ee:b6:4b:a3:3e:1c:b3:8f:
c9:bd:6b:71:39:66:45:f3:bb:6b:e7:f2:12:01:36:
e5:e2:69:db:16:dd:2a:24:b3:6b:5f:0d:24:7f:4e:
14:15:d4:60:e7:35:86:bb:0a:95:3a:2b:cf:a5:1d:
1d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:4C:27:B6:4C:4E:DF:D7:1D:C0:87:44:8B:7D:BA:B9:E4:11:6B:24
X509v3 Authority Key Identifier:
keyid:6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:af:e4:33:a2:ef:0e:ea:7d:67:23:35:c3:26:ef:e9:72:83:
87:a5:cf:11:34:2f:2d:c1:1a:e2:00:13:08:42:65:c1:ca:75:
f2:b7:de:0f:16:c9:9b:b9:91:c0:58:bb:78:a0:a5:2c:cd:0f:
26:6c:ba:d9:8a:83:70:99:c3:e4:22:da:b7:5e:8e:10:cf:cd:
e9:d0:30:53:a1:11:f4:e0:0e:e0:81:30:18:30:0f:5a:64:a2:
1f:81:cb:2f:4f:4b:a0:e5:6f:41:ec:66:44:7a:1a:53:8d:19:
2b:4e:0b:e5:89:4f:d1:0f:ac:6e:70:f0:f6:b0:a6:13:97:a8:
84:20:82:bc:b2:48:c3:d7:24:fe:4e:33:10:3b:db:d1:01:a7:
09:05:33:59:a1:e8:09:98:26:0b:57:39:23:af:c6:3c:ae:51:
52:f7:cc:f1:23:1b:3f:ef:b6:af:79:d0:a3:02:72:7e:d2:7d:
a6:d9:70:52:ed:0e:0b:2c:6f:12:2e:20:23:58:3b:5b:4e:a5:
db:3e:d5:5a:f7:04:95:c8:c9:d0:e0:ea:a9:81:c3:24:1c:cf:
5a:e1:c5:28:a1:82:37:e6:c3:dd:c0:1a:92:fd:bb:4c:af:40:
ff:80:77:38:83:c2:a4:73:52:a0:5e:49:9a:6a:d3:16:4c:32:
7e:8c:2b:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:33:44 2025 by rpki-client