Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
File: aQomMkmEfPlzRHQiE2RPkpvqqZc.mft (raw, json)
Hash identifier: ktUiaJl6G0Ei9JraiihQs42Gh0ZPRWjhlUxdEWkmBOk=
Subject key identifier: 0A:9E:42:A4:89:73:C5:3D:4D:2C:0F:A1:FB:70:AC:59:24:AA:80:C0
Authority key identifier: 69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
Certificate issuer: /CN=690a263249847cf97344742213644f929beaa997
Certificate serial: 01976D3DACCF07B4248BE52681E3E0DE9492
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
Manifest number: 07EE
Signing time: Sat 14 Jun 2025 07:00:47 +0000
Manifest this update: Sat 14 Jun 2025 07:00:47 +0000
Manifest next update: Sun 15 Jun 2025 07:00:47 +0000
Files and hashes: 1: DY21Bg3oUbtzm77wQkCwRHIkQQk.roa (hash: qZIMcnP47zIIcLpWesPleUJ2XdB9zCYyYyzYWyBj/nk=)
2: aQomMkmEfPlzRHQiE2RPkpvqqZc.crl (hash: e42BtF9XxMxD5n7Q9FIE2utiixEt60xITyYC7Itl2+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:ac:cf:07:b4:24:8b:e5:26:81:e3:e0:de:94:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690a263249847cf97344742213644f929beaa997
Validity
Not Before: Jun 14 07:00:47 2025 GMT
Not After : Jun 15 07:00:47 2025 GMT
Subject: CN=0a9e42a48973c53d4d2c0fa1fb70ac5924aa80c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:87:95:fb:45:8a:8f:4a:41:6b:cf:cc:a4:64:
c1:d8:58:4b:69:e4:00:9d:c3:42:06:3d:6d:f8:a1:
8a:7f:c3:92:b1:06:1c:fa:db:d3:90:26:26:ad:81:
31:66:5a:70:56:26:7b:26:f4:fd:ce:b8:db:db:8c:
92:e0:9e:67:ef:e6:cb:ff:ca:6d:90:1d:10:ec:0c:
8d:59:9a:43:2f:8f:8c:18:fa:67:97:b9:e3:12:31:
18:d9:9d:a8:23:9c:68:85:96:ce:4a:e6:87:c5:d4:
7a:8c:5e:50:b4:c8:21:8e:eb:4d:de:00:84:23:ef:
d4:a1:55:93:ce:84:b1:d6:bc:a6:cc:da:77:1b:9c:
d9:3f:f0:0a:bf:78:43:4b:9d:f3:22:f9:e0:b8:8d:
57:89:a8:71:a5:44:59:79:40:dd:dc:63:cc:49:84:
33:c6:4c:99:60:60:37:48:51:e8:16:e3:f7:66:43:
b8:05:a7:1b:d9:bb:f0:70:d6:f1:df:82:26:d4:16:
61:c6:33:c7:9e:87:06:ae:5f:9c:7d:70:29:43:9d:
16:1d:e2:1d:18:3f:9a:c5:48:cf:81:17:7d:1d:92:
8e:08:fc:7d:18:f5:45:a3:44:2e:76:53:71:80:6b:
bd:af:b6:2b:90:61:ae:f6:fd:6f:d4:b3:83:ca:df:
f0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9E:42:A4:89:73:C5:3D:4D:2C:0F:A1:FB:70:AC:59:24:AA:80:C0
X509v3 Authority Key Identifier:
keyid:69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:e4:e0:61:12:65:47:2e:ab:c8:5e:21:82:4c:3e:99:91:2c:
1e:ea:1a:71:8d:be:49:b1:72:9b:32:4d:6f:75:12:a1:45:2c:
10:ca:5b:4a:08:89:b1:ae:38:35:7c:34:55:de:75:c4:bd:d9:
24:da:a4:30:6e:58:e5:3f:13:0d:a4:aa:73:04:29:c9:de:22:
8d:42:00:b3:81:9d:99:f4:9b:fd:9a:39:4e:29:5f:52:b8:be:
8f:7d:a3:23:bf:09:22:f5:d6:20:a5:3b:1e:83:17:c7:9a:7c:
1f:0d:3b:8e:68:00:93:d6:c2:85:6a:2b:3e:dc:be:52:03:3c:
00:02:c7:79:16:37:72:0a:6e:2d:86:12:c9:52:54:f6:67:0a:
d2:9e:3a:4c:27:ef:6b:e8:e6:1b:8f:86:75:65:ed:88:59:09:
49:d5:14:c3:1d:41:bc:e1:da:95:bb:f9:21:ef:d9:e9:b5:f8:
22:a9:06:53:95:f6:a7:f2:de:0a:a0:1f:57:00:00:a6:fa:52:
74:d1:1a:6b:d1:f2:38:15:e7:9d:ef:a2:4a:f8:73:88:4c:6d:
86:e0:1d:f4:88:9e:18:e6:0c:6e:01:d4:3b:d9:d6:eb:35:f0:
9e:62:76:a2:42:91:dc:63:c5:68:71:1c:2c:d1:c7:c4:ef:63:
1c:9b:df:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:07:24 2025 by rpki-client