Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
File: a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft (raw, json)
Hash identifier: Y2ow8Ux+bul+cOMuTvbJeHCuflgPIZYoxrviZUlAqkA=
Subject key identifier: A1:35:43:47:F5:CE:E6:D5:05:A6:F7:9E:E0:6F:B7:FE:E2:01:B0:67
Authority key identifier: 6B:EC:4E:29:C6:84:9C:5F:80:84:28:E6:68:58:F4:F0:EC:F4:A6:54
Certificate issuer: /CN=6bec4e29c6849c5f808428e66858f4f0ecf4a654
Certificate serial: 01976B8616C5DC68E16075C82520728E51BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-xOKcaEnF-AhCjmaFj08Oz0plQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
Manifest number: 0CFB
Signing time: Fri 13 Jun 2025 23:00:39 +0000
Manifest this update: Fri 13 Jun 2025 23:00:39 +0000
Manifest next update: Sat 14 Jun 2025 23:00:39 +0000
Files and hashes: 1: a-xOKcaEnF-AhCjmaFj08Oz0plQ.crl (hash: 9p4R3EhAyyjmqX08yzINEWYgV8CEwJIfnBlz/npRFaM=)
2: y1CXud9r4_KJCPJy5YSEoyYl1eg.roa (hash: kuTX8hxg4+tvv3VjP1J6iCQyHiFE3dinO8w9j6x97BA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/a-xOKcaEnF-AhCjmaFj08Oz0plQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 23:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:86:16:c5:dc:68:e1:60:75:c8:25:20:72:8e:51:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bec4e29c6849c5f808428e66858f4f0ecf4a654
Validity
Not Before: Jun 13 23:00:39 2025 GMT
Not After : Jun 14 23:00:39 2025 GMT
Subject: CN=a1354347f5cee6d505a6f79ee06fb7fee201b067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:41:e5:90:a6:91:43:bc:49:53:a9:06:b7:8b:
d0:24:13:02:39:07:98:53:46:5d:13:58:1a:b0:50:
ae:3a:9a:62:24:07:a5:19:85:f9:1b:77:9b:b2:75:
9e:7c:5e:70:01:32:bc:10:72:93:14:37:ea:d8:b7:
c6:0b:81:9c:b7:09:5f:1c:d0:34:8b:72:fb:ce:9d:
6e:64:e9:aa:b6:e9:34:19:7e:bd:c2:9c:1c:44:fb:
77:2e:64:f5:06:02:68:5b:f0:21:38:f7:8b:ad:39:
28:83:fc:0d:85:a0:a7:89:1d:f5:a1:77:57:13:f6:
8b:a3:df:6d:5d:0f:e9:70:20:7b:7a:f7:fe:aa:76:
1a:d9:0c:f0:a1:55:0f:74:a2:a2:74:93:8c:ce:3e:
33:c6:9f:20:c5:a7:0d:d8:f6:4e:41:50:cb:e8:6a:
3a:7f:2f:25:fe:2e:3c:e5:0e:76:3f:a5:43:87:91:
83:5f:47:86:80:e0:a6:0a:53:23:2f:ad:b1:c5:45:
d0:06:eb:c1:81:4f:24:59:9f:36:ff:b5:b7:e3:ed:
ca:2a:4a:ac:1c:64:45:98:5f:94:2b:1a:a2:10:32:
7b:ce:47:de:c4:85:e8:f2:1a:ce:92:15:15:69:47:
01:b6:3f:bc:39:77:f7:5c:e5:48:e3:5a:2c:24:fa:
94:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:35:43:47:F5:CE:E6:D5:05:A6:F7:9E:E0:6F:B7:FE:E2:01:B0:67
X509v3 Authority Key Identifier:
keyid:6B:EC:4E:29:C6:84:9C:5F:80:84:28:E6:68:58:F4:F0:EC:F4:A6:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-xOKcaEnF-AhCjmaFj08Oz0plQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:3f:c7:8c:4b:f6:a5:78:d5:f9:f4:39:fd:c0:28:ab:0b:de:
dd:5e:e5:56:a4:8f:aa:ed:64:c8:50:0f:ce:d5:2c:ed:c5:bc:
c0:e4:9c:67:de:78:f8:55:d5:e1:a3:87:d4:01:b6:37:12:c9:
20:0c:ee:4f:89:ad:ae:f8:29:d8:aa:49:c5:03:09:f6:7b:a0:
e3:90:e3:59:bd:00:0d:ab:27:79:ab:87:bf:f5:99:4a:cb:ba:
e8:cd:74:d7:cf:d6:42:79:2a:0b:da:d4:65:fe:58:0c:f4:c4:
99:eb:26:26:94:8a:23:8b:8b:65:7b:6d:69:f7:2c:72:55:94:
c5:4b:bb:b7:90:97:27:e3:37:73:5e:c0:50:e5:c1:06:57:7c:
8f:09:33:35:f8:2a:bf:1c:5c:eb:cf:1d:6f:0c:fc:6a:ed:66:
13:60:1f:9c:03:69:81:7e:62:9c:47:43:fb:ab:27:d1:48:bb:
a3:43:fe:86:a5:0a:16:8b:f9:70:7a:68:c5:18:61:a6:43:f2:
a8:64:d5:8a:c5:bb:26:83:c0:95:3a:0f:08:32:76:c8:2d:cc:
fe:2f:f7:63:63:ef:a6:97:9e:38:d6:79:9f:b1:76:eb:ba:1c:
fa:9a:d7:7c:e7:e0:4f:6b:37:49:9e:b1:6b:2f:59:e2:af:5c:
f2:96:d1:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:07:44 2025 by rpki-client