Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
File: aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft (raw, json)
Hash identifier: QABIChZG8PjDypTsHe2o6ql1HD+N2AT5dtQkUKCQAVM=
Subject key identifier: 73:87:8F:3E:71:5D:1E:5E:E5:FE:69:DB:14:D9:72:CF:80:5E:52:58
Authority key identifier: 69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
Certificate issuer: /CN=6987d0047fb1d8912c63f911305a714f438b1e71
Certificate serial: 01977188ABEACFF04F0A79B2C84872EDE653
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
Manifest number: 1590
Signing time: Sun 15 Jun 2025 03:01:11 +0000
Manifest this update: Sun 15 Jun 2025 03:01:11 +0000
Manifest next update: Mon 16 Jun 2025 03:01:11 +0000
Files and hashes: 1: Atkr4h8_-iWKS-lQ1C-yvRl84ME.roa (hash: 2T7HRH5eHvmAemXfiDHO7EMODqi7SWlhFBBbiZ8y44c=)
2: aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl (hash: j1Cl5ny0yz8ovbAOElqNTe6xTTPHJgCyuudE4/dBtcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 03:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:ab:ea:cf:f0:4f:0a:79:b2:c8:48:72:ed:e6:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d0047fb1d8912c63f911305a714f438b1e71
Validity
Not Before: Jun 15 03:01:11 2025 GMT
Not After : Jun 16 03:01:11 2025 GMT
Subject: CN=73878f3e715d1e5ee5fe69db14d972cf805e5258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3b:41:c7:ab:32:d9:f1:30:c5:71:8b:c8:86:
e4:19:2b:2e:7e:2a:86:ca:5e:43:43:a9:62:8d:84:
7b:e4:1d:03:f1:22:e4:f6:80:0e:e3:2f:8c:8e:0f:
6d:66:50:a2:f3:db:35:6f:56:be:e2:20:cf:00:36:
2c:d2:15:f3:74:f1:09:75:c1:d0:94:57:00:8b:4a:
6f:ae:d5:f6:2d:33:5f:86:a1:0d:1d:a4:5b:51:84:
67:12:64:81:5b:48:b6:52:6e:73:13:4f:47:eb:ed:
de:94:10:bc:c9:79:f4:6c:b4:f5:85:67:9c:6c:2c:
2e:8f:83:aa:c3:b6:ad:9e:9a:72:45:c6:7a:b3:b6:
ee:c0:73:1b:ad:1f:41:06:0b:93:4a:9d:de:56:83:
1f:b4:39:f1:91:59:41:13:95:00:15:0d:d1:91:9f:
43:f1:1e:b4:c2:ee:a6:b1:6c:af:d3:ec:10:72:23:
92:85:5a:ba:ac:20:98:16:54:1a:2c:55:ba:ce:b4:
b1:b4:5f:03:54:03:61:10:44:41:4f:9b:f8:8f:5c:
fd:8d:25:d7:58:3e:e7:3b:97:81:f9:57:a0:6f:56:
c6:e0:72:f2:a3:b0:ad:6e:d1:75:1b:d7:99:9b:b8:
a0:1d:f7:76:ac:17:38:d0:e9:4c:27:20:57:ff:dd:
9b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:87:8F:3E:71:5D:1E:5E:E5:FE:69:DB:14:D9:72:CF:80:5E:52:58
X509v3 Authority Key Identifier:
keyid:69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:12:2b:ff:54:73:8b:96:9d:43:cc:5d:64:b6:c0:d0:14:c7:
8e:8b:dd:8d:44:5c:8e:aa:3e:48:de:5c:25:6c:ef:9a:31:1e:
5c:4c:5f:b4:a1:73:6f:90:a2:14:a5:2c:f7:a9:b2:0c:d4:5a:
2c:b8:ae:13:8a:c7:ff:71:27:5e:e4:5a:c8:21:c0:b0:9c:15:
50:5d:4d:f5:8f:89:e3:3e:21:14:18:a5:d3:ff:c0:fd:61:6b:
18:f7:fc:4a:a6:9e:e2:26:29:ba:77:af:39:bc:ed:e9:db:f7:
b8:7e:ff:8c:62:28:e2:a3:b0:0f:bc:3b:65:72:70:7f:d0:96:
7b:14:f1:32:cf:7e:50:cc:f6:85:24:7b:d8:f1:60:03:7f:67:
f2:07:29:af:eb:7b:54:21:76:9b:df:e9:83:a3:52:16:ee:d7:
b1:55:e1:23:16:13:c4:10:d8:f5:10:04:11:45:3a:95:0b:53:
cc:e5:8b:1f:6b:d9:9a:47:4a:c1:65:db:fc:76:ee:0c:9a:b6:
43:3e:1c:33:82:35:49:9b:c6:4b:6e:ff:0a:35:52:61:19:63:
d8:86:07:2e:ea:59:9c:4c:35:cc:66:db:95:6e:6e:13:1f:94:
a8:ce:35:3b:1b:c0:b3:cd:5c:0a:30:ea:dd:0b:57:ae:82:6a:
a9:2f:ae:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:19:48 2025 by rpki-client