Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
File: a0I7KaGCk2si34-YJt1YOgBZE0o.mft (raw, json)
Hash identifier: LXmClZL43olqxUMCPQe8KR2bgxwNe+m4yXEqOLkKXKs=
Subject key identifier: 05:17:08:7A:E5:E8:5C:E0:CB:67:51:4C:A1:E0:D5:66:ED:B2:98:FF
Authority key identifier: 6B:42:3B:29:A1:82:93:6B:22:DF:8F:98:26:DD:58:3A:00:59:13:4A
Certificate issuer: /CN=6b423b29a182936b22df8f9826dd583a0059134a
Certificate serial: 0197692A1E512018AC5ECD4AD8AED0EC744D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
Manifest number: 06B2
Signing time: Fri 13 Jun 2025 12:00:57 +0000
Manifest this update: Fri 13 Jun 2025 12:00:57 +0000
Manifest next update: Sat 14 Jun 2025 12:00:57 +0000
Files and hashes: 1: U_Lbl4dQRImqSP6zV_MXvnCzVro.roa (hash: k+fOfvjUjOj8hU8vOKkhlBwBO0V4NXX3JC8vdkG/viY=)
2: a0I7KaGCk2si34-YJt1YOgBZE0o.crl (hash: KonSDMp2OQ4/6DUB7ZcH+261I9MR/SOMSywAxDXD0YE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:2a:1e:51:20:18:ac:5e:cd:4a:d8:ae:d0:ec:74:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b423b29a182936b22df8f9826dd583a0059134a
Validity
Not Before: Jun 13 12:00:57 2025 GMT
Not After : Jun 14 12:00:57 2025 GMT
Subject: CN=0517087ae5e85ce0cb67514ca1e0d566edb298ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:19:22:d1:98:cf:d1:b1:73:e7:80:e6:95:e2:
fa:5e:d7:69:69:fa:4b:ce:31:01:79:d4:2d:d3:99:
42:8a:19:81:8c:3f:88:c2:f0:83:f0:81:85:55:9e:
7d:c6:42:59:14:e1:21:7c:94:39:0b:e4:85:43:1b:
d5:e0:eb:b7:68:e2:dd:bb:91:04:e9:9e:23:ed:92:
32:7e:44:f6:f5:b2:b6:dc:99:57:58:96:78:08:61:
7d:af:df:4f:d0:9f:4b:7e:d7:a7:a5:ea:cd:ad:cd:
b7:04:eb:ce:2f:7d:44:89:bc:b0:fc:12:b4:5e:25:
6d:86:e9:cf:b8:af:f6:9a:fa:16:6f:0c:45:22:f2:
de:b2:ff:7c:55:88:19:b9:5f:a7:45:78:48:76:ca:
c4:12:ed:86:15:b9:14:3c:4a:99:47:fc:ea:ee:c7:
74:51:d0:b8:0f:3a:5f:b6:30:62:69:20:00:53:1a:
d5:ea:9e:0d:a4:1f:e3:30:75:6f:4a:bd:a4:90:87:
1c:7d:8b:9c:3f:83:d9:b6:67:19:9a:51:fa:5a:75:
1d:58:ec:b4:2c:f0:92:d6:c0:5c:4e:76:9a:1e:f8:
71:e3:78:9c:c3:a5:2a:1c:e9:84:8c:a5:ed:d4:b0:
af:95:0f:83:3e:51:93:7f:d7:33:39:f4:99:8c:69:
52:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:17:08:7A:E5:E8:5C:E0:CB:67:51:4C:A1:E0:D5:66:ED:B2:98:FF
X509v3 Authority Key Identifier:
keyid:6B:42:3B:29:A1:82:93:6B:22:DF:8F:98:26:DD:58:3A:00:59:13:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:8c:81:50:2e:3f:5d:cd:7c:a6:3f:9b:b0:16:09:43:07:65:
63:a5:16:51:77:05:fa:7a:b6:e1:5d:61:0c:b8:93:60:f1:14:
9e:36:1c:b8:38:0b:cd:38:da:72:8a:38:cb:52:b9:6a:de:1a:
b3:bd:16:60:19:20:e2:27:b8:d1:2b:87:67:fb:61:b8:9c:d9:
3f:43:e6:9c:32:98:45:75:85:16:97:31:12:65:2e:f4:b9:c6:
4f:10:5b:3b:06:c4:f2:8a:94:b5:93:40:d4:23:cc:5c:0c:95:
13:07:7a:b2:87:57:39:4c:be:af:08:62:42:2c:9b:2c:9f:37:
73:2a:bc:4f:8a:d9:db:45:6e:bc:01:6e:0f:31:8c:ac:82:b6:
a5:6c:0f:96:b0:4a:52:cb:48:ab:bc:47:77:ed:bb:f7:94:d8:
02:35:5d:ea:81:4e:e0:2c:0f:e3:dd:85:62:bf:68:cc:c3:30:
aa:f0:11:35:d3:0e:10:fe:c7:a4:6c:a2:2e:2e:91:b0:03:bc:
b9:80:4a:b2:bb:69:1e:ab:d3:02:d4:21:66:d1:1b:da:e5:31:
61:ad:a6:2e:6d:c8:7a:cc:16:17:ab:c8:bf:f7:a3:24:fd:71:
01:89:6a:52:c8:a1:c5:d1:24:c0:14:c4:de:4f:4b:8b:25:41:
eb:a9:37:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:20:02 2025 by rpki-client