Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
File: o52_aHirAKRS-LB_iQ06s0g3Yns.mft (raw, json)
Hash identifier: fVXoPyqOs7V1ozML+D/cx/I4rkW+4R3q6/0P8QoxId0=
Subject key identifier: 64:02:AC:0D:81:95:00:A0:45:E1:60:61:DF:FB:F6:19:59:34:27:FA
Authority key identifier: A3:9D:BF:68:78:AB:00:A4:52:F8:B0:7F:89:0D:3A:B3:48:37:62:7B
Certificate issuer: /CN=a39dbf6878ab00a452f8b07f890d3ab34837627b
Certificate serial: 019773092788101CC5E32DB72973ADD6D781
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
Manifest number: 0455
Signing time: Sun 15 Jun 2025 10:01:09 +0000
Manifest this update: Sun 15 Jun 2025 10:01:09 +0000
Manifest next update: Mon 16 Jun 2025 10:01:09 +0000
Files and hashes: 1: ExGaGMHRMHV6Wwq7HUUBGaTmIOs.roa (hash: GrRPycpKBiqBeJAl7ze1jROyMQik0DJu7nFgEpAVFB8=)
2: o52_aHirAKRS-LB_iQ06s0g3Yns.crl (hash: JR/4tVwlkL3KMV+pGoV5OzsCZchjigLPHnqXWVuEF0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 10:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:09:27:88:10:1c:c5:e3:2d:b7:29:73:ad:d6:d7:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a39dbf6878ab00a452f8b07f890d3ab34837627b
Validity
Not Before: Jun 15 10:01:09 2025 GMT
Not After : Jun 16 10:01:09 2025 GMT
Subject: CN=6402ac0d819500a045e16061dffbf619593427fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f7:4a:11:91:6e:12:c4:55:f4:84:64:93:51:
ff:23:ca:96:cd:18:a5:aa:b1:d4:7e:19:c6:50:f7:
f1:cc:4f:c9:bd:4e:0d:5e:84:c8:c0:3b:d6:32:4a:
1a:db:77:0a:44:05:27:df:57:e2:c1:3e:d9:93:ea:
2a:9d:9e:2e:35:15:e1:58:a1:29:94:2f:eb:e4:cc:
94:ef:ea:e5:8f:9c:3b:bb:ee:b2:9d:1b:71:12:0b:
99:7f:29:f3:21:7e:54:3d:58:db:fd:f8:f6:f2:74:
45:e1:32:65:11:7e:cb:3b:0e:77:db:b2:77:a1:a0:
fd:e1:6d:36:58:38:8e:b4:50:84:1c:eb:79:d0:0e:
cb:89:86:5c:21:7a:74:95:3c:d4:d2:f4:b8:40:d5:
3b:fe:4f:4e:12:11:ac:ed:0b:c9:bd:b4:b3:0f:f5:
82:38:c3:cc:ab:ce:bc:ba:48:35:de:4c:0b:04:2b:
3b:30:90:57:e8:2c:dc:d0:42:b4:74:e1:8d:d7:ae:
5f:d0:44:28:26:61:11:47:b7:0d:62:e3:e5:7f:21:
d3:91:79:e9:27:54:db:b5:51:10:96:30:42:75:be:
e6:93:e4:05:da:78:09:89:a0:87:59:78:59:65:10:
02:d2:c4:57:bc:78:20:b0:3a:70:2b:ca:4b:32:05:
5c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:02:AC:0D:81:95:00:A0:45:E1:60:61:DF:FB:F6:19:59:34:27:FA
X509v3 Authority Key Identifier:
keyid:A3:9D:BF:68:78:AB:00:A4:52:F8:B0:7F:89:0D:3A:B3:48:37:62:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o52_aHirAKRS-LB_iQ06s0g3Yns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/22696d-e72f-4cfd-bae0-ad4423765892/1/o52_aHirAKRS-LB_iQ06s0g3Yns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:3e:e4:12:8d:14:2c:f7:ff:87:90:df:b7:78:6e:6c:28:dd:
66:69:d0:3c:65:fb:89:94:54:a0:ed:ef:88:82:29:a4:40:6c:
b5:b1:2b:06:92:15:b4:df:6c:0d:4e:a2:03:3e:b4:45:58:96:
59:73:e1:99:05:b3:66:ab:eb:28:57:5e:0f:96:2a:0e:6e:7b:
10:92:85:75:1c:11:07:b5:f9:30:db:59:26:62:e6:23:4d:31:
8a:0a:21:20:67:f6:65:38:ca:46:b2:42:cd:05:6e:1e:0e:dc:
56:46:a9:46:ca:a4:99:03:76:6c:7c:4e:90:51:93:21:8e:c2:
eb:47:09:26:c8:20:12:bc:ad:4f:8b:de:c3:25:13:c4:b9:49:
de:03:c0:30:72:99:61:df:74:fe:5b:26:1d:22:2b:0f:84:4c:
c3:48:52:f4:83:b5:08:dc:27:bb:b8:10:53:2e:20:37:7f:68:
b1:49:a5:e7:a1:19:d4:b9:14:09:d2:16:fd:bc:a8:9c:f9:87:
26:bf:78:52:62:f9:5e:50:b7:e2:e8:c4:15:af:98:74:8c:01:
93:16:1a:08:8b:96:5e:a7:a8:8c:4f:5c:c9:c3:6f:e4:6d:79:
a2:74:07:e6:34:8d:f4:a9:f9:5d:ac:35:7e:0b:71:bd:46:a2:
35:f0:2e:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 20:06:35 2025 by rpki-client