Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
File: aM_hqssnjBMjGzEORe5XaTL-m04.mft (raw, json)
Hash identifier: DJKaBezVJBo5YGpmO8fvszQO7x/sj0o1ZMksorMyDd0=
Subject key identifier: D6:B3:2C:BC:CD:82:BA:C8:0A:07:1F:DF:1C:81:E4:21:00:10:B9:54
Authority key identifier: 68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
Certificate issuer: /CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Certificate serial: 01976884D50596AC1E55E320B0921B2D17C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
Manifest number: 1221
Signing time: Fri 13 Jun 2025 09:00:25 +0000
Manifest this update: Fri 13 Jun 2025 09:00:25 +0000
Manifest next update: Sat 14 Jun 2025 09:00:25 +0000
Files and hashes: 1: NAg_2lUwiNc2BXVWx1ALPDBcGK0.roa (hash: I6Xgg/yTyhGgk1wwRR5vfbPkXPHDlymI7Asksvi+yR4=)
2: aM_hqssnjBMjGzEORe5XaTL-m04.crl (hash: j3hH88tL14N/6oobZHYtCdxGDzveOkc2ew3QYTPda0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 09:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:84:d5:05:96:ac:1e:55:e3:20:b0:92:1b:2d:17:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Validity
Not Before: Jun 13 09:00:25 2025 GMT
Not After : Jun 14 09:00:25 2025 GMT
Subject: CN=d6b32cbccd82bac80a071fdf1c81e4210010b954
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6c:65:33:5e:1c:45:ce:21:88:93:5a:38:73:
6a:61:6f:7d:42:19:4c:79:d5:6d:59:61:86:77:28:
79:c9:6e:7f:36:e4:e0:5e:af:da:9b:dc:ec:11:ff:
99:ee:20:d5:a3:02:f0:2f:a6:f9:fb:a9:56:9f:46:
38:b3:05:a1:ed:e8:ad:12:56:91:d0:00:ab:d3:de:
da:76:ae:c8:ea:cf:5b:ce:32:21:8b:c8:ef:2e:5c:
40:7e:9b:45:d2:8d:51:c4:bf:a5:55:72:f6:43:d8:
1a:ad:88:21:db:26:7e:7a:b5:7e:8c:6e:61:90:54:
26:5a:c4:7f:ff:2d:87:c7:c8:12:ef:98:88:ed:c4:
16:e1:a1:ed:55:86:96:0f:dd:a5:8a:b1:7d:7b:e2:
9e:78:d7:a1:c9:e3:cb:e3:f2:cf:08:8b:72:f8:aa:
fe:27:fe:ab:c3:64:15:20:a0:a4:ce:04:de:c5:d7:
da:eb:d8:38:02:54:a3:f9:7f:78:81:70:cd:85:dc:
14:f8:8a:75:47:2e:71:7a:81:52:11:d0:c5:f5:b1:
65:8f:15:1f:52:95:cd:04:c3:b8:17:0c:43:e7:58:
17:42:0b:05:23:3c:a4:91:55:74:8f:dc:5f:2b:ac:
d0:1a:f2:32:57:28:bc:97:59:c7:da:71:02:63:58:
34:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B3:2C:BC:CD:82:BA:C8:0A:07:1F:DF:1C:81:E4:21:00:10:B9:54
X509v3 Authority Key Identifier:
keyid:68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:98:8e:87:2f:73:f0:d7:37:13:52:97:f9:cb:47:69:9a:be:
23:7c:5a:23:ee:a0:d6:83:d8:c5:e2:de:4d:72:54:c4:84:43:
55:0b:57:97:2b:29:77:10:03:7a:91:81:64:e1:e0:6e:3c:48:
75:54:d0:f7:b5:ac:13:3e:2e:e9:42:73:d1:cd:81:7c:1c:20:
3a:9e:95:1e:b0:8b:5b:30:63:37:a0:37:9c:ee:36:5f:b2:d9:
a0:86:7e:8d:f4:7c:18:d7:99:6f:55:a8:23:62:eb:8f:59:d3:
99:95:ab:26:9a:bc:97:5b:27:d2:af:85:4e:1f:c0:95:7f:0d:
76:19:84:d0:61:46:f6:39:46:6e:00:46:0d:99:2b:b2:78:3e:
4e:01:27:fc:dd:df:60:a3:80:00:1b:b0:75:2a:54:fc:48:de:
7d:1d:b2:8a:18:ac:85:e2:5e:b5:46:bd:7c:f7:0a:94:f1:65:
ab:f8:b1:c5:f9:81:f7:71:03:37:8b:39:e6:76:46:00:28:09:
f9:83:6c:15:bd:b9:f8:19:43:c8:39:ae:23:88:f1:dc:90:29:
e5:a0:26:ea:4b:ed:51:24:7e:52:dc:41:b1:09:84:d2:44:43:
4b:c8:94:4f:f0:fb:37:4f:51:a5:fd:d2:2d:c6:50:6b:cc:af:
13:3c:60:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:26:40 2025 by rpki-client