Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
File: aa24Jfn9vKDNfHkB3reiKuF5fAY.mft (raw, json)
Hash identifier: g1ElARCeMR2WjrohwMv8Pt0FHc8AsKa6ETvIIZtjPyU=
Subject key identifier: 75:60:A7:83:F2:14:3E:87:63:3E:B8:EB:3F:D2:12:B1:83:40:46:1B
Authority key identifier: 69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
Certificate issuer: /CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Certificate serial: 01977A1DBD85A72D2BA7C221F2FBE4B47016
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
Manifest number: 12B0
Signing time: Mon 16 Jun 2025 19:00:58 +0000
Manifest this update: Mon 16 Jun 2025 19:00:58 +0000
Manifest next update: Tue 17 Jun 2025 19:00:58 +0000
Files and hashes: 1: CcO4X5owbp8OTsQUAi4Se0U0bGo.roa (hash: Rjhil4a1bZ7IivISF1+emC+myyX4/SSXPPEDg9r6bJ4=)
2: aa24Jfn9vKDNfHkB3reiKuF5fAY.crl (hash: 7xbhSiQVHUYgP+TLE7465J5ASXDYNp6yhIc1wRllsPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 14:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:1d:bd:85:a7:2d:2b:a7:c2:21:f2:fb:e4:b4:70:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Validity
Not Before: Jun 16 19:00:58 2025 GMT
Not After : Jun 17 19:00:58 2025 GMT
Subject: CN=7560a783f2143e87633eb8eb3fd212b18340461b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4c:7a:7e:66:ac:44:2b:9a:2d:3d:c3:b0:fb:
20:73:c8:d2:d2:bc:63:21:9a:c5:55:3d:c6:cf:05:
ed:70:e9:3c:65:5d:fc:47:9b:4e:85:e9:7d:34:48:
30:a8:82:77:cc:f5:b8:7a:1e:66:1c:06:37:e3:e9:
06:74:6d:51:d7:84:1a:25:6f:f2:bd:2e:46:0a:21:
86:1a:91:b3:bf:95:57:be:41:f8:20:08:90:5c:bb:
19:ed:f6:84:27:f1:46:31:dc:0d:85:4e:7a:4d:b9:
fd:fd:a4:d5:a0:18:6a:6a:d7:8a:09:79:d1:d9:3d:
75:dc:26:bf:7d:31:3c:17:2a:db:20:9a:68:6a:3d:
04:bb:fc:fb:34:49:bf:cd:17:04:64:87:38:9e:9b:
50:55:d9:8c:38:48:6f:22:48:66:01:52:26:0e:49:
28:0a:7a:f1:ef:68:ad:f2:b3:77:b5:d9:93:6f:93:
0a:65:03:6a:ce:5a:df:db:3e:e2:e9:b8:6d:6e:2a:
8b:5b:f3:b4:69:eb:8d:3a:26:29:42:52:df:82:ff:
e2:1a:da:70:c9:50:dc:10:ad:19:06:0b:ab:29:de:
1c:c8:54:7c:65:37:3c:ce:ad:ad:aa:fd:26:96:03:
74:3b:e3:80:25:51:3e:0a:13:53:aa:d6:cd:d8:b7:
1b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:60:A7:83:F2:14:3E:87:63:3E:B8:EB:3F:D2:12:B1:83:40:46:1B
X509v3 Authority Key Identifier:
keyid:69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:67:cc:d0:3c:0f:fc:5b:b6:f3:86:3d:fe:25:de:dd:11:77:
ee:cd:3c:15:3f:f6:bc:25:86:3e:aa:bb:bb:88:4d:2e:d9:d2:
b3:47:2c:2e:76:e6:77:fd:15:06:3e:ef:38:f6:b3:1f:bd:66:
d3:65:f1:09:cb:7b:4b:09:de:93:42:01:18:f6:e5:12:3a:c1:
b3:97:68:43:53:52:57:a9:38:4d:17:9e:0f:d4:41:3b:01:9e:
42:69:15:c4:80:1f:8f:39:ed:57:fb:1d:a4:75:c7:e1:f0:81:
53:5b:3a:3f:bd:79:5d:dd:7c:da:df:25:ee:be:31:0a:ff:4b:
1c:a8:cf:e0:41:f6:a0:c9:03:42:f0:88:9a:28:94:69:ca:e1:
f6:e2:4d:e5:41:0d:5a:25:1b:6c:ac:47:79:13:61:d1:5f:d2:
12:e0:7b:b1:2f:91:bc:09:59:63:3a:a7:bc:f4:a1:fe:ef:70:
98:3a:1b:86:e5:94:18:b6:74:cd:f0:ca:fb:f8:68:2e:6b:b6:
8a:a7:76:57:e0:16:df:f3:db:d9:54:f4:59:7d:63:58:d3:ab:
4c:cd:d3:a7:21:28:08:d6:a5:56:03:22:cc:4d:61:11:a3:46:
67:48:38:48:0e:9c:9b:8d:76:92:f7:c7:f2:fc:cb:07:ff:2e:
15:0c:24:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 21:54:38 2025 by rpki-client