Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.mft
File: 2afNm3hyoceqJis_rRqQdlAlKDI.mft (raw, json)
Hash identifier: 2Lho/K6Cz6GVt7RvO5qnCoORGabmSOfqvf48PxC5vfM=
Subject key identifier: 64:96:B1:18:38:EA:17:A6:3C:FA:5D:EC:5D:33:26:5C:33:E3:9A:7E
Authority key identifier: D9:A7:CD:9B:78:72:A1:C7:AA:26:2B:3F:AD:1A:90:76:50:25:28:32
Certificate issuer: /CN=d9a7cd9b7872a1c7aa262b3fad1a907650252832
Certificate serial: 01976A0601D5358515AB4DA71C4F5D12EEBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2afNm3hyoceqJis_rRqQdlAlKDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.mft
Manifest number: 03B3
Signing time: Fri 13 Jun 2025 16:01:07 +0000
Manifest this update: Fri 13 Jun 2025 16:01:07 +0000
Manifest next update: Sat 14 Jun 2025 16:01:07 +0000
Files and hashes: 1: 2afNm3hyoceqJis_rRqQdlAlKDI.crl (hash: IyA45qUoap4fUeV1eMf1tPH7MvWyC8cDpss17bjMmT0=)
2: 8xRb-DPzCzHiHinhBGSiJKFCfq0.roa (hash: A9plqAZ6tW823XWa6YGs85LIMKZtOqJdz/q0S+8zYRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2afNm3hyoceqJis_rRqQdlAlKDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:06:01:d5:35:85:15:ab:4d:a7:1c:4f:5d:12:ee:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9a7cd9b7872a1c7aa262b3fad1a907650252832
Validity
Not Before: Jun 13 16:01:07 2025 GMT
Not After : Jun 14 16:01:07 2025 GMT
Subject: CN=6496b11838ea17a63cfa5dec5d33265c33e39a7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:42:f0:02:11:75:71:2c:e8:bc:41:1c:b1:1d:
cb:4a:16:fd:cb:64:a0:68:46:2e:5f:44:c5:d8:e9:
9b:89:33:be:a3:28:61:16:12:ad:7c:bf:17:07:b2:
05:5c:4c:d7:4b:a9:bc:16:8e:4f:a4:52:95:d0:ab:
07:6c:d2:6f:73:ec:ab:e6:e7:4f:de:e8:09:6d:46:
71:0f:59:e9:81:c2:24:ab:ae:0b:9f:7b:de:8b:9e:
21:80:ea:ff:b9:e4:14:f1:c1:83:fb:c4:5d:bd:b6:
19:5d:1a:2d:38:41:c2:75:d4:53:33:ea:cd:ee:37:
f7:dc:0d:a3:3c:20:74:bb:8a:07:bf:49:d2:a5:5c:
42:3d:88:9b:6d:43:84:0b:24:74:83:53:72:51:e0:
05:14:71:73:da:53:0d:1a:a0:2c:2a:81:29:5d:73:
cd:eb:4e:21:f5:e0:bb:40:f5:67:9a:70:2b:8e:f4:
cf:cb:b2:91:13:3d:28:62:0b:39:26:1b:14:c0:7f:
d0:98:5d:b3:6b:dc:a4:29:90:1f:89:1d:ac:d9:d6:
64:aa:e6:c8:f2:e2:d9:fe:86:2a:ea:f5:64:d7:22:
9c:d6:3f:07:d5:9e:17:85:cc:59:00:ac:ba:f0:b4:
5f:56:f6:26:53:98:ab:41:1e:1e:11:11:ff:f4:ff:
15:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:96:B1:18:38:EA:17:A6:3C:FA:5D:EC:5D:33:26:5C:33:E3:9A:7E
X509v3 Authority Key Identifier:
keyid:D9:A7:CD:9B:78:72:A1:C7:AA:26:2B:3F:AD:1A:90:76:50:25:28:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2afNm3hyoceqJis_rRqQdlAlKDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c06f09-9072-4d57-9b64-d05be8c5a4b1/1/2afNm3hyoceqJis_rRqQdlAlKDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:65:78:43:61:8c:f9:b4:06:81:40:8b:15:58:5e:fa:69:86:
81:ef:e1:94:a9:36:4a:e3:07:82:b2:ee:b9:7e:ba:60:fa:dd:
d1:4d:b5:73:10:bc:86:3a:3b:48:5c:26:d0:35:07:a1:2b:33:
18:88:b3:a4:ce:79:5d:14:06:48:ae:51:c2:3d:48:c7:a7:4c:
4f:2a:4c:44:3f:94:d2:e9:23:78:e1:ca:f8:38:ff:de:cf:e0:
9a:b2:ec:65:a1:d2:7c:da:23:89:c7:80:14:2f:b8:f8:4c:2e:
12:32:2f:48:76:e4:da:62:50:85:44:35:60:c7:0f:62:1b:43:
dc:97:58:9c:61:c4:bb:17:54:84:ce:6c:79:ff:d4:46:11:17:
fd:40:e3:b0:2b:7c:54:c5:59:95:89:c7:2c:46:51:28:3b:22:
cb:5a:e9:a4:08:c3:62:ad:1c:5d:cb:03:ab:2f:25:e2:b4:f8:
f7:2d:3a:5e:82:f0:55:15:30:a4:84:7c:fe:83:bc:df:e7:57:
6c:1b:d8:1f:03:be:54:8d:39:8d:2e:dc:58:25:56:5e:81:7f:
40:a8:80:71:70:06:8b:44:f9:7d:0e:f4:eb:8d:52:ae:51:67:
d8:ea:bf:9e:87:42:1b:c0:86:72:5a:ad:58:c7:a1:f2:c6:9b:
74:a1:61:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 18:58:19 2025 by rpki-client