Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
File: M7Zai666T_YhSS6-5vweiK2yGwM.mft (raw, json)
Hash identifier: WpSXzp6/tHh1lXOtxufStN7Obwc45Jyub5U3on1gxM0=
Subject key identifier: 8C:A4:51:1C:A3:17:E5:4B:DB:2A:59:E5:E9:3D:65:15:72:64:EE:D4
Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Certificate serial: 01977B300A8A00BDF12487232888D20BBF5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
Manifest number: 01AD
Signing time: Tue 17 Jun 2025 00:00:35 +0000
Manifest this update: Tue 17 Jun 2025 00:00:35 +0000
Manifest next update: Wed 18 Jun 2025 00:00:35 +0000
Files and hashes: 1: KOqyp8DhhZD3JH6K0j1zl6aQKBk.roa (hash: CehIyyDTNH2XPwU/dxmXRsBi9Cc/OKe00kUQqRs/maU=)
2: M7Zai666T_YhSS6-5vweiK2yGwM.crl (hash: p0/MwCgjr9V3kccsXT8rk/dkP7fGYNPa2K41TYWptoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 00:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7b:30:0a:8a:00:bd:f1:24:87:23:28:88:d2:0b:bf:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Validity
Not Before: Jun 17 00:00:35 2025 GMT
Not After : Jun 18 00:00:35 2025 GMT
Subject: CN=8ca4511ca317e54bdb2a59e5e93d65157264eed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:34:a3:4a:64:70:36:03:ac:e3:ff:08:56:21:
f7:ca:23:bc:54:e1:43:e0:7c:8b:0b:fd:2f:26:32:
5b:d1:a4:e1:68:b1:39:6b:44:55:81:c9:a6:87:18:
89:28:26:97:20:ca:66:74:12:08:9c:a3:34:ba:85:
0e:59:72:57:cf:53:6e:aa:92:7a:35:07:b4:74:7b:
4b:f1:dc:28:da:6d:82:57:8c:3b:99:39:66:0e:2a:
c2:33:50:7a:d0:20:eb:f6:35:77:a8:a9:79:bc:2e:
bb:f6:d3:72:3a:04:1f:45:87:bb:cc:0a:23:76:59:
98:34:53:ce:6b:50:09:a7:2f:1f:7a:b7:80:7c:70:
ac:f6:58:a3:b2:35:9e:06:6a:41:24:52:18:f2:f0:
a9:bf:9f:fd:a9:cd:6e:4a:20:cb:49:38:76:f4:85:
b2:cd:79:c5:4a:e0:aa:97:a3:8b:61:5e:fa:aa:12:
4f:37:2b:2a:5f:1a:89:1b:12:7d:9a:5d:cf:e3:58:
f5:fc:61:c1:9e:59:d5:50:f1:d7:a6:73:30:c4:bf:
93:db:78:a3:31:b5:fc:5d:7f:39:50:8c:74:cf:5e:
19:4e:12:a0:b3:e9:95:2e:8d:4b:6b:0b:99:a1:f1:
84:28:62:c3:6c:a9:0b:73:ad:71:3e:62:eb:cd:23:
47:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A4:51:1C:A3:17:E5:4B:DB:2A:59:E5:E9:3D:65:15:72:64:EE:D4
X509v3 Authority Key Identifier:
keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:19:78:60:b1:4f:d0:13:75:d3:ef:39:d5:f0:5c:12:cf:5d:
42:c9:23:0e:68:af:cd:60:41:ac:6f:55:d5:25:08:6c:9c:a1:
12:5a:00:29:ba:21:fd:53:d5:dc:91:3e:7f:d0:c7:4d:ce:2a:
89:f7:5d:93:11:3e:9e:71:6a:a8:25:eb:2d:b4:d1:da:90:5e:
9d:c3:e1:a8:e2:5d:cd:0f:8a:52:d9:22:32:a4:40:68:63:26:
9d:10:1b:d7:ea:08:66:38:95:3f:2d:82:9e:04:29:5f:93:7d:
b5:9d:af:79:c0:d3:b8:ce:b1:48:e1:11:c2:53:a0:79:a6:06:
6c:3f:22:cc:53:1f:8c:10:65:5e:a3:e1:ae:73:3e:14:68:7d:
13:f2:17:58:9a:14:ab:ae:88:ed:75:26:77:65:b2:37:fc:59:
bd:59:69:e0:84:df:af:f1:e2:8f:b0:cb:26:f4:53:a9:07:ed:
ac:89:b6:7f:93:eb:98:c8:5d:0d:8f:56:0f:c2:9c:0a:1e:c0:
85:ee:bf:a2:37:16:c6:2e:cf:cf:41:d0:20:f1:8d:d6:ae:27:
f5:c6:9a:c2:06:de:b3:c8:9c:b8:26:3f:2c:87:e8:20:0d:a0:
18:02:0d:16:cb:33:9c:6e:71:84:7b:dc:1b:4d:0f:0f:dc:c4:
47:48:9b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 10:19:23 2025 by rpki-client