Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json)
Hash identifier: PVJ1YhDV+9cuvn2hQcedNYqI5toz+0laZudETxbOVLU=
Subject key identifier: 41:4C:B6:46:92:48:A1:AD:09:24:06:31:36:B6:A2:47:F3:45:94:FC
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 01977FE8F0074ACDBBBD217F92DDC887617A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
Manifest number: 159B
Signing time: Tue 17 Jun 2025 22:01:01 +0000
Manifest this update: Tue 17 Jun 2025 22:01:01 +0000
Manifest next update: Wed 18 Jun 2025 22:01:01 +0000
Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: Kxz3pn9FVwJw2g7vPEDEQQMqTGS8i2oN9D/abDKqUdE=)
2: qen-QoIAAGwgpqx4OQAF6M4rR_M.roa (hash: Pfgs1o9qvVrkxz8on7jtYneDypFRD7JuU2XED3GEHk4=)
3: sJjIi8LxyBaapUPztypafiGazB4.roa (hash: snoS7xcNMuCgLXX7PRPXvmr0bu9uS7kTUSsVN0SedsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7f:e8:f0:07:4a:cd:bb:bd:21:7f:92:dd:c8:87:61:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Jun 17 22:01:01 2025 GMT
Not After : Jun 18 22:01:01 2025 GMT
Subject: CN=414cb6469248a1ad0924063136b6a247f34594fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c8:4b:63:e3:7b:9d:b6:b4:5c:2c:36:93:01:
2e:e1:72:94:43:4f:83:1f:2c:34:f4:f8:02:c4:4d:
8d:d9:b6:aa:7c:b0:81:2a:45:ac:d1:c6:4d:f3:0a:
a5:53:95:70:66:41:bb:0d:69:de:2d:93:14:6a:30:
a6:41:f2:40:8d:27:03:85:0b:9e:46:45:cf:60:36:
c3:0c:51:dd:c5:a2:0f:f9:83:f7:b8:cd:31:49:ee:
f3:94:eb:73:bb:05:0f:0b:99:61:89:30:40:c3:70:
3f:a4:e6:b0:f4:5b:03:ee:9c:01:8a:72:9e:e5:6e:
3e:da:25:b4:50:97:92:b8:d9:80:e3:cf:bf:fa:a3:
e3:27:5d:8e:ef:8a:70:d0:79:7e:a3:b2:67:cc:9e:
62:d4:de:c3:5a:21:b4:99:ff:e5:32:b2:f4:53:55:
9b:5a:3a:f4:1d:74:3e:5b:64:73:3b:95:7d:f2:f3:
da:d4:4a:4f:28:b3:d3:01:0d:ad:36:79:3f:6e:64:
16:ee:71:c0:0a:5f:2c:e9:80:e3:2a:fc:2e:70:5f:
7e:de:d5:3b:20:39:ce:5f:35:47:2d:55:4e:96:87:
45:4f:04:10:80:92:aa:43:8c:83:03:4b:c0:5c:31:
18:e1:a3:a0:6d:f5:a5:0d:a4:ba:4b:74:1b:e0:1e:
c4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4C:B6:46:92:48:A1:AD:09:24:06:31:36:B6:A2:47:F3:45:94:FC
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:e4:1d:1d:a5:9a:d4:68:12:7f:e9:fa:d2:35:63:e4:f7:c8:
45:e1:9f:6d:fd:3a:78:d2:81:27:f2:40:44:05:10:64:8b:9a:
10:6f:9c:10:f1:3c:ef:e3:df:01:03:c2:a2:42:c4:9b:77:13:
c4:38:37:88:d9:d7:48:01:23:b2:53:ad:77:b7:36:c4:2f:34:
6b:6c:08:24:07:16:94:9f:ac:8e:7d:38:9f:f6:2d:e8:a5:6f:
c3:e5:04:02:d2:1b:ed:22:89:27:bb:6a:e8:b4:5c:d4:73:6a:
02:4e:b0:8f:00:82:48:21:b5:5f:2d:a6:27:ff:dd:aa:96:6f:
b0:da:0e:7d:9c:87:9f:d6:1a:d6:b1:e9:0e:7e:22:41:66:1b:
78:9c:0f:5a:6c:b5:62:c4:8e:a7:bd:e9:a3:93:7b:84:4f:78:
0b:e3:87:f7:4d:15:58:9c:24:34:c3:95:5c:bc:7d:29:37:6d:
65:23:a5:66:13:02:ff:ab:2f:1f:38:35:85:d3:51:aa:c2:b7:
c2:cf:5c:0d:30:e7:c3:be:8e:8b:c3:0e:b7:ee:e3:97:88:a3:
b0:0a:aa:7d:a8:73:97:b0:d7:4e:e4:80:65:74:21:c1:a1:d9:
9c:69:15:38:3a:85:e7:0c:bb:2b:21:35:6b:49:b9:90:dd:f8:
69:c8:05:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 04:12:34 2025 by rpki-client