Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
File: A1KD5iNe2yXotUdJtihfXj74U3E.mft (raw, json)
Hash identifier: 20kD8HqqhDl8aNkswfoVnhrf4+rDNMNYv1RkwjS8+W0=
Subject key identifier: 86:D7:5B:9E:77:2B:31:E9:A4:EF:02:5C:47:48:FC:C6:53:FD:3B:A6
Authority key identifier: 03:52:83:E6:23:5E:DB:25:E8:B5:47:49:B6:28:5F:5E:3E:F8:53:71
Certificate issuer: /CN=035283e6235edb25e8b54749b6285f5e3ef85371
Certificate serial: 0197722D01B7115CCA0427ECE5F4104104C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
Manifest number: DF
Signing time: Sun 15 Jun 2025 06:00:41 +0000
Manifest this update: Sun 15 Jun 2025 06:00:41 +0000
Manifest next update: Mon 16 Jun 2025 06:00:41 +0000
Files and hashes: 1: A1KD5iNe2yXotUdJtihfXj74U3E.crl (hash: yBHbB9UhKXvshlwQF/YOaLJ0I1JCFGmG9uMrKSVAdW8=)
2: z96_ZJgr9Ouwu3H857DM3qPVUxI.roa (hash: XUjlH+TkzMgkjT2OPVskc/V8eVbqCCBWMoR0ix6MWrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:2d:01:b7:11:5c:ca:04:27:ec:e5:f4:10:41:04:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035283e6235edb25e8b54749b6285f5e3ef85371
Validity
Not Before: Jun 15 06:00:41 2025 GMT
Not After : Jun 16 06:00:41 2025 GMT
Subject: CN=86d75b9e772b31e9a4ef025c4748fcc653fd3ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:9d:51:6b:c6:e7:3f:2a:37:46:bb:69:7a:ba:
ae:d9:ff:20:4c:77:e3:fd:b5:03:18:89:dc:15:e8:
fb:d6:fb:b1:8f:0d:d6:1e:78:65:cc:97:50:cf:e2:
be:eb:0d:0b:69:3c:7a:8c:49:a2:9d:87:7e:69:a4:
a7:0d:fb:68:d0:75:95:63:41:94:0a:a9:0f:62:85:
74:9e:e5:74:78:a8:f4:dd:7e:a3:86:54:b1:15:83:
52:7b:d1:53:ad:50:2f:50:cb:fd:5d:4f:bd:c0:e2:
2c:a9:4e:5f:95:43:20:01:4f:b8:d5:41:d2:56:58:
4d:31:ea:91:bd:d7:b1:e5:d5:5f:5a:3c:1d:e9:80:
9c:97:56:cc:ab:87:92:de:d7:cf:6a:03:3c:1c:ec:
5a:69:09:26:ab:bd:88:e5:a5:db:7a:86:89:f7:bc:
d4:26:2b:41:4e:a3:0d:6a:d4:dc:5e:19:ae:78:66:
c8:ac:a3:bc:a8:8e:16:1e:ec:eb:25:f7:44:7a:cd:
e9:70:0e:d4:76:25:fa:bd:56:19:ba:14:4e:e8:ec:
a8:81:b9:d5:b2:64:9e:0b:f9:dc:83:b4:65:58:15:
cd:9a:7e:7a:76:5b:74:de:70:f9:a7:ff:26:72:a4:
aa:bf:af:44:a1:0f:88:6b:2b:a6:fd:b0:fe:a9:8f:
30:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D7:5B:9E:77:2B:31:E9:A4:EF:02:5C:47:48:FC:C6:53:FD:3B:A6
X509v3 Authority Key Identifier:
keyid:03:52:83:E6:23:5E:DB:25:E8:B5:47:49:B6:28:5F:5E:3E:F8:53:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:de:d8:27:8d:77:1a:d9:fb:34:84:07:0f:8f:d0:7e:d2:4d:
7c:78:b2:4b:41:59:e6:63:f3:0e:e5:ca:6f:61:4f:ec:9c:a5:
8c:06:ac:09:95:d2:5b:13:41:e8:1f:4e:2f:ca:3c:3c:8f:bc:
db:93:60:18:fc:65:cc:cf:97:8b:49:47:b2:c0:0c:45:93:c0:
69:07:2e:52:4b:a8:c9:09:71:0c:f2:89:ed:61:fa:66:a3:31:
7d:f6:08:d6:11:00:8d:bf:9c:e5:c1:00:e3:79:71:2b:cc:e4:
f0:0e:81:86:2e:7e:f0:ef:9a:fa:d1:40:5f:2e:25:b4:64:36:
a7:9b:49:e5:8b:9e:ba:97:91:3e:13:05:9a:ad:f1:a3:dc:8a:
8e:d1:77:2d:5a:91:b1:bb:f8:bd:b4:a9:f7:a4:19:45:01:69:
c7:bf:0a:b7:73:5a:33:cb:a3:07:e8:4c:1b:4a:91:52:72:65:
bd:0e:c1:ae:04:c7:84:0c:ea:4a:47:98:e0:21:98:46:55:09:
f5:52:ff:84:06:46:c4:eb:1d:51:c3:41:87:81:de:2b:29:d6:
e1:fa:78:54:f8:3f:a0:eb:fe:72:d5:91:41:9a:cc:be:17:cf:
48:32:da:ca:4e:c6:c9:e3:31:29:8a:37:8a:e0:4d:22:de:53:
03:76:cd:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:29:36 2025 by rpki-client