Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
File: 1AYg6l2vilSq6hfyy57N8114UwY.mft (raw, json)
Hash identifier: 9ATf7/tU4NezmL4xEcTBk4CQ6R0QJx0KoZX+EqrEsZ4=
Subject key identifier: C2:40:B4:29:DB:F3:18:4E:B5:37:83:81:9C:27:10:F5:61:AB:BD:F8
Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Certificate serial: 01976D0689E6B440EE7532DCF86D5456F864
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
Manifest number: 1067
Signing time: Sat 14 Jun 2025 06:00:34 +0000
Manifest this update: Sat 14 Jun 2025 06:00:34 +0000
Manifest next update: Sun 15 Jun 2025 06:00:34 +0000
Files and hashes: 1: 1AYg6l2vilSq6hfyy57N8114UwY.crl (hash: MbS9P7ZOuHYrGz8YSwlexckLJ5dazUHcUNh4KAgUBuI=)
2: gGx-x2iRamyRfnlhx5me1YxCw6s.roa (hash: JLnMtxeLdoGYGRa/pvkNkIdX/aY0zlXxd7zsjwME0tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:89:e6:b4:40:ee:75:32:dc:f8:6d:54:56:f8:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Validity
Not Before: Jun 14 06:00:34 2025 GMT
Not After : Jun 15 06:00:34 2025 GMT
Subject: CN=c240b429dbf3184eb53783819c2710f561abbdf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ca:ba:ba:bb:0b:af:ee:67:77:c0:05:77:a8:
e7:62:20:31:0a:e3:55:4b:13:b2:ba:83:df:bc:2c:
8e:d6:22:82:14:bb:f3:71:8c:a8:61:3a:c7:99:01:
e6:af:0d:c3:5f:e2:ee:bc:7f:63:ba:06:e9:c7:c3:
a3:68:73:29:7f:54:6e:7b:74:bc:ea:2f:7c:a8:c3:
db:c5:0c:d3:d1:39:8d:59:35:72:67:0a:48:c0:3d:
28:58:c5:5e:55:ec:bb:af:d1:0a:79:73:c9:6c:6c:
72:41:30:b6:a3:47:9c:54:37:b7:01:1c:d8:02:4f:
6b:74:73:40:42:9b:f3:51:3f:28:a8:17:d4:9e:41:
46:1a:9b:d4:96:93:49:8a:85:7a:70:0e:5f:e1:f7:
49:37:8a:77:ca:65:5c:7e:8a:21:1e:2a:6e:10:87:
01:2d:0c:41:57:4f:8d:cc:a5:06:8c:02:c0:dd:32:
31:37:91:65:d1:19:fa:6a:df:8e:e1:ee:a2:f6:c5:
0c:88:84:ea:d1:90:24:27:c7:8e:e9:65:fc:fb:e5:
8d:3a:6c:06:e9:c2:b0:47:d5:72:88:d0:6d:08:b0:
80:1a:34:ae:37:bb:3c:05:d9:b9:b5:e5:f0:36:a0:
9c:59:5a:45:dd:33:92:59:b0:d4:c4:44:6f:58:e2:
ea:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:40:B4:29:DB:F3:18:4E:B5:37:83:81:9C:27:10:F5:61:AB:BD:F8
X509v3 Authority Key Identifier:
keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:db:a3:6f:12:b0:0c:aa:00:7f:c3:2e:64:7f:86:27:c6:9c:
b9:47:db:8b:30:49:fa:8d:8d:b7:64:9f:8e:c6:07:54:03:7f:
bc:e1:8b:f5:6e:05:0f:4e:2c:6d:f3:dd:36:34:84:24:b6:2b:
a3:25:08:69:69:16:27:f9:af:a7:92:44:ca:34:7c:1f:85:54:
87:eb:bd:4d:1b:72:b0:37:6a:cc:38:13:d7:bc:2d:dd:04:61:
fc:d1:7d:ec:de:58:a8:10:46:f0:3e:82:c2:98:25:dc:11:1c:
79:06:fe:d3:af:6f:b9:33:d5:b0:20:98:a4:94:43:52:77:48:
11:38:0d:91:42:90:60:4e:81:03:84:8e:c1:a7:fb:82:92:3f:
78:53:c2:be:4f:e0:91:40:e1:24:27:9d:41:24:9f:3b:3c:80:
2f:74:69:56:fa:3d:20:0b:f8:17:80:0b:75:44:d0:1f:97:20:
fa:e6:10:42:2a:bb:f6:43:9e:a1:c3:f8:0d:e1:44:db:88:a8:
32:2b:50:6e:7b:19:99:a0:7c:b9:fd:42:55:e5:9b:88:a7:0f:
cb:4e:87:a4:bf:ab:0b:24:c9:9b:38:22:a4:39:de:08:1b:3b:
32:63:09:ca:18:78:c4:8d:67:68:d3:5a:36:ea:f8:77:68:50:
26:88:47:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:24:37 2025 by rpki-client