Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
File: ajqLdK1O1nN5ep9rd0nCI0VpedA.mft (raw, json)
Hash identifier: +q86t2q4WtcCiThxPjMlOrw9ptRwzmetUh4hsLb93II=
Subject key identifier: BD:F0:91:8B:C1:B7:56:FC:3E:FA:0A:A7:D5:90:4A:76:BA:E6:DC:BB
Authority key identifier: 6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
Certificate issuer: /CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Certificate serial: 0197692991925A9786F6D2C7F5B9A3EDDA0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
Manifest number: 1450
Signing time: Fri 13 Jun 2025 12:00:21 +0000
Manifest this update: Fri 13 Jun 2025 12:00:21 +0000
Manifest next update: Sat 14 Jun 2025 12:00:21 +0000
Files and hashes: 1: ajqLdK1O1nN5ep9rd0nCI0VpedA.crl (hash: EU1thLG+q3knF5RjTTosPSOo9BdFlEe0oYlzy+FIXC0=)
2: jkQdp6EX7jHh6f31YxZYZhR0C8U.roa (hash: FmayEZ/+k7yvcImZRXEurVZdNlGpk+kZM2DFLPiqTu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:29:91:92:5a:97:86:f6:d2:c7:f5:b9:a3:ed:da:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Validity
Not Before: Jun 13 12:00:21 2025 GMT
Not After : Jun 14 12:00:21 2025 GMT
Subject: CN=bdf0918bc1b756fc3efa0aa7d5904a76bae6dcbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:32:e5:9f:b0:6c:52:78:1b:d2:db:a8:78:02:
06:c1:8b:3f:20:89:f5:2e:ba:a3:8c:fb:34:14:c5:
10:91:69:16:02:44:c2:44:32:3c:3a:de:f0:fa:6c:
d2:9a:ec:86:60:97:c7:65:13:e0:c4:6b:86:a2:9f:
b4:56:18:65:88:47:d1:46:00:96:39:e0:b3:08:15:
ea:6e:1e:63:b5:96:14:8f:ff:ff:15:25:b3:4e:19:
57:15:7d:30:58:a1:39:09:89:7a:59:0e:38:0d:03:
9b:61:7a:7b:68:f7:8a:0e:6c:05:fe:14:43:df:e9:
34:a2:b4:2b:cc:e1:e3:1b:4d:08:08:f6:7b:9a:6b:
01:07:ae:81:1f:4b:e0:10:3a:4d:ed:2f:e2:cd:64:
42:64:db:73:6a:5d:dc:0e:24:b5:8b:b8:61:e7:6c:
a1:93:a0:59:10:68:a8:2f:d7:a3:7f:2e:04:f6:5a:
a2:79:22:ce:9f:fe:ef:f5:95:f6:8e:10:1d:a3:9f:
b6:68:0f:c2:50:91:32:0d:20:ad:bc:3a:e1:fa:b5:
18:69:3e:e6:26:73:5a:4c:b3:c6:91:33:a1:6a:8f:
8c:a3:44:7e:0c:af:60:db:3e:fb:54:58:53:5f:cb:
1b:cd:57:e7:2d:88:e5:af:18:22:64:ed:5f:03:f0:
07:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F0:91:8B:C1:B7:56:FC:3E:FA:0A:A7:D5:90:4A:76:BA:E6:DC:BB
X509v3 Authority Key Identifier:
keyid:6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:3e:44:29:c2:45:34:2c:48:29:7a:d8:b7:78:d9:29:4d:e1:
11:7e:82:af:da:f3:3c:af:0b:91:c3:01:e3:ed:d1:67:3a:60:
27:c4:fd:75:56:eb:6c:0d:98:07:e0:4a:47:4b:66:7c:bf:57:
9c:33:26:36:1b:f5:0a:c0:bb:ca:88:fa:b3:9c:85:04:55:d8:
f3:00:94:7e:38:81:c5:3d:0c:60:74:7d:8a:12:c3:93:79:b1:
4b:09:c4:6d:14:a0:48:1e:2b:35:20:2d:44:e3:2c:22:0b:0b:
dd:d8:34:a5:5f:ba:2d:47:8a:b0:b2:2a:97:ae:d2:c4:e7:b6:
91:10:32:74:3d:4e:97:72:b2:35:6d:5d:62:60:17:75:c8:d8:
47:91:ff:f4:a9:6f:fe:1e:e2:58:ac:6d:18:51:93:4d:41:9e:
7d:28:c7:49:50:5e:f5:53:12:e9:30:d1:4d:64:75:6a:21:ac:
42:de:22:e1:7d:58:ba:7c:df:c4:51:5a:8d:40:33:99:d4:39:
bc:45:c6:fa:62:b0:3c:71:4c:c5:f5:58:b1:7b:ed:ee:0d:6c:
21:69:45:da:7b:21:b8:2e:9d:40:db:ce:9e:f1:5a:6a:73:e4:
b6:6a:2c:d5:c7:5c:47:d0:67:d4:4d:8d:a7:84:ec:a7:61:cb:
a2:a4:ee:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:18:46 2025 by rpki-client