Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json)
Hash identifier: O6dbj3Zolov7M2lZNu61V5ha+TZl3hANgpS2lg/jTec=
Subject key identifier: 87:19:BD:5C:44:8C:08:43:63:D8:5F:2D:04:08:AE:3A:F6:CC:A3:5E
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 0197684E6EC5FF25DDACCE0FA370B8051E7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
Manifest number: 1007
Signing time: Fri 13 Jun 2025 08:01:00 +0000
Manifest this update: Fri 13 Jun 2025 08:01:00 +0000
Manifest next update: Sat 14 Jun 2025 08:01:00 +0000
Files and hashes: 1: 6zOYtzjXBD-DYg3_-ZbwFYlxy-U.roa (hash: bndS1Tzx6VzHh/lOs3pK1BLzPGIXQ0EzQwN4Ak3MXSs=)
2: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: 8QK+0UMAyF1gHmQu/iubPOMmwnsBTsC9UIluS8WqBCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:6e:c5:ff:25:dd:ac:ce:0f:a3:70:b8:05:1e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: Jun 13 08:01:00 2025 GMT
Not After : Jun 14 08:01:00 2025 GMT
Subject: CN=8719bd5c448c084363d85f2d0408ae3af6cca35e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:61:31:48:d0:82:28:b5:77:b1:f9:46:96:89:
7f:93:d4:16:a7:ea:45:48:19:b9:f7:61:33:a6:53:
b6:f7:ee:b7:e5:61:6b:e7:bf:0a:71:f4:fc:77:0d:
0f:49:d1:80:43:df:08:8e:6c:09:14:13:84:42:08:
35:d0:77:b6:56:76:eb:9c:f6:5f:67:53:5f:9e:51:
ac:25:8c:b7:eb:cf:71:10:53:df:f4:fc:f5:4c:53:
28:db:25:6f:d1:98:e8:e7:95:3d:56:b9:ad:5b:33:
a0:d4:c4:fe:98:5e:c1:7c:2d:3b:15:a0:f1:af:98:
1f:1e:49:85:5e:78:53:49:ae:60:3d:7a:c5:50:d7:
e2:c1:ec:24:2d:57:b0:70:26:4f:93:64:c6:14:fc:
cc:7c:94:63:49:75:6a:d1:84:c2:27:47:3d:95:a7:
f1:ed:99:a2:94:85:bb:ba:6e:09:80:01:40:28:4d:
03:6c:27:e5:9d:f6:cb:d3:f3:4c:3f:7a:68:3b:6e:
4f:0d:46:9c:b3:34:d9:84:32:19:17:4c:73:51:8d:
77:a2:11:68:eb:ea:a5:2d:26:5f:6d:bc:1f:2c:05:
60:4b:63:01:cf:b6:d4:72:ca:6b:91:38:94:8f:31:
75:6d:de:f9:5c:31:c9:b3:3a:9c:cb:59:37:6a:be:
d7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:19:BD:5C:44:8C:08:43:63:D8:5F:2D:04:08:AE:3A:F6:CC:A3:5E
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:75:06:6d:76:31:e6:59:5e:ff:c7:f4:14:20:67:8c:b7:dd:
34:f1:a4:2b:3a:b5:64:2a:90:6e:39:ea:c5:5a:d1:f6:bf:42:
dd:75:c5:bb:01:5d:7c:c0:7f:72:52:b3:4e:91:65:07:15:3e:
ed:cc:a4:41:c9:f5:3f:85:5f:c9:ff:88:00:e3:c6:f6:4c:ac:
1f:a7:db:31:26:1f:31:96:4d:56:d8:a9:4b:30:8f:f5:72:de:
c1:2c:ab:2d:27:7c:9a:48:6e:68:d7:60:c4:c4:8a:53:76:b3:
4b:7b:0a:26:04:c8:4f:0c:2d:c3:6c:5c:85:88:08:67:22:48:
cd:22:2b:f5:1f:46:eb:34:53:ea:ad:5a:06:a6:bc:ee:75:2e:
4d:b0:68:6d:ac:80:87:a8:cb:dd:9e:3d:11:ef:5e:c6:1c:c5:
60:c3:a5:21:76:b6:89:ac:de:af:bc:c1:7e:31:ca:2d:2d:76:
58:43:fa:c0:0b:2a:13:14:9c:04:b4:a6:8c:80:60:4d:99:2f:
fd:b9:ed:99:3f:a2:6a:99:bd:d4:bb:8f:1e:6f:21:1e:c1:69:
9c:68:f4:53:2d:e5:74:6c:2b:a8:d1:c0:ce:52:f9:15:09:02:
f0:24:72:9f:79:5d:a0:7a:f3:bf:89:55:4e:b7:46:3b:0e:45:
cd:c9:dd:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:28:24 2025 by rpki-client