Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
File: AYZ9mLBSF68a-spyJrvWEzcHSfA.mft (raw, json)
Hash identifier: rrd946EGySxOJi3o84KnTSZZBIkGW3eD3/DwGLidySc=
Subject key identifier: 1C:9F:EC:96:86:A9:B3:A4:5C:AA:32:FE:A8:46:05:A2:8B:61:75:68
Authority key identifier: 01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
Certificate issuer: /CN=01867d98b05217af1afaca7226bbd613370749f0
Certificate serial: 01976B864D883595E09A2DD67BF3636C2848
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
Manifest number: 0274
Signing time: Fri 13 Jun 2025 23:00:53 +0000
Manifest this update: Fri 13 Jun 2025 23:00:53 +0000
Manifest next update: Sat 14 Jun 2025 23:00:53 +0000
Files and hashes: 1: 1ENw1gcCvt1Pmax0p8zhB7SKAEg.roa (hash: 1qhYf9E0Pe4/V/O+LSKzrT8cldjvFnxKyFJ5/QtS500=)
2: AYZ9mLBSF68a-spyJrvWEzcHSfA.crl (hash: b4hoWJlERZJiDFTentJ2j0G+SHBMirZ9fVooYQ1utGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 23:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:86:4d:88:35:95:e0:9a:2d:d6:7b:f3:63:6c:28:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01867d98b05217af1afaca7226bbd613370749f0
Validity
Not Before: Jun 13 23:00:53 2025 GMT
Not After : Jun 14 23:00:53 2025 GMT
Subject: CN=1c9fec9686a9b3a45caa32fea84605a28b617568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a3:02:3e:76:94:2c:1f:da:36:ed:b8:bf:72:
5b:ea:36:47:35:16:4a:79:ac:0b:f1:84:cc:e8:83:
96:89:df:49:d8:3d:4c:56:0c:4f:83:84:57:ea:5e:
e6:3a:01:74:5e:72:3d:3c:ac:d3:20:21:03:f5:8d:
9e:08:ac:f0:ea:0c:17:21:6b:e3:72:02:78:90:e3:
61:65:79:0d:17:91:90:53:c6:54:f4:62:45:78:84:
36:be:a1:fa:4e:5b:2d:b0:01:68:7a:bb:7d:39:b4:
63:50:d1:7c:6c:7e:a8:38:64:4a:82:61:a1:b1:5d:
42:35:cb:1e:50:01:28:ea:92:2b:7c:82:6a:81:3a:
72:d7:18:8c:f0:82:af:2b:3a:b5:6d:bf:c7:ff:fd:
ac:e1:38:55:c4:0d:d1:3b:71:87:df:54:f8:f6:d7:
5d:02:0b:dc:ce:3e:b8:6b:87:a8:6f:62:04:74:a4:
63:a2:98:5f:4e:49:fe:31:57:78:39:b7:29:b5:ef:
2f:34:f8:e1:04:2f:c0:ae:d4:8d:07:2c:f2:d9:95:
b2:e0:2c:e8:cd:d1:80:cf:b6:c7:36:a5:8d:13:ea:
57:2b:e0:62:a5:41:80:96:a9:c9:1c:c7:7c:ac:6b:
cf:0d:40:a8:54:27:94:44:53:46:13:73:70:d5:1c:
d8:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:9F:EC:96:86:A9:B3:A4:5C:AA:32:FE:A8:46:05:A2:8B:61:75:68
X509v3 Authority Key Identifier:
keyid:01:86:7D:98:B0:52:17:AF:1A:FA:CA:72:26:BB:D6:13:37:07:49:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYZ9mLBSF68a-spyJrvWEzcHSfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/52bea4-0abd-4719-a64b-e47c58ce533c/1/AYZ9mLBSF68a-spyJrvWEzcHSfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:2c:5e:4c:59:02:8c:39:4e:fe:3d:e1:36:a3:b0:eb:69:33:
73:20:45:1d:d0:99:8f:93:73:e5:d5:89:8a:33:de:be:e9:0f:
42:a2:89:cb:d4:2e:9d:07:00:44:10:0c:bf:fc:f1:62:af:30:
48:a6:40:0a:b1:9c:3a:45:e2:8d:9f:23:33:d2:94:88:85:c7:
8f:60:5e:64:3f:4f:81:a3:a8:b2:a8:ab:9b:8d:23:e4:e0:ef:
b1:2b:f2:61:02:f1:1a:a4:de:62:50:51:74:fc:d9:1b:f5:b9:
6b:7b:56:02:d6:ff:49:70:f9:0f:99:bd:7b:22:9c:8c:70:f3:
ae:bd:56:8a:23:a1:32:52:e9:43:a0:07:df:38:9b:48:a1:df:
29:e2:67:8e:03:f9:0e:91:63:ad:c1:3a:e6:1e:f9:22:40:87:
e6:aa:99:42:69:b5:6f:78:c7:5e:8b:ed:cd:2a:8c:ce:2e:9b:
dc:60:78:a7:6d:ad:02:3b:52:ff:8e:b8:4f:04:df:cc:0b:5b:
f8:8e:38:02:82:14:ea:67:14:c6:d7:59:aa:1b:6e:b6:f4:6b:
73:ef:17:8f:de:cc:40:4d:4c:aa:15:d5:44:33:11:43:a3:df:
9d:78:f8:6d:d8:36:d1:12:85:af:6a:44:43:69:49:7f:9d:92:
da:26:d3:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:06:49 2025 by rpki-client