Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json)
Hash identifier: uxlTWey337qieIgH6FtYgjYP/hR0UKNvOEpnlUExjgQ=
Subject key identifier: 61:98:49:B0:A7:6E:EE:18:0A:D1:91:FC:45:AD:64:9C:F6:89:2F:5A
Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Certificate serial: 01976CCFA18DA8064FC981C89DADD14D62AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
Manifest number: 14E2
Signing time: Sat 14 Jun 2025 05:00:35 +0000
Manifest this update: Sat 14 Jun 2025 05:00:35 +0000
Manifest next update: Sun 15 Jun 2025 05:00:35 +0000
Files and hashes: 1: 5gxDURtK1rmOAdh1eWuh-NkY76k.roa (hash: QaQOgPlbLBzFETMJyWwYJQCd8vML1MyClKfr5uYQDoc=)
2: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: mg4lCaYE5BmoV/JfTvZ0V3sdGBVarBiQPoZxVAmj0iE=)
3: svZ0I0CIbPuXgkYBH_VdeOt4OII.roa (hash: qDnNSem+sBmAuaKOVojckKZEahJzHvEbGjkFY5x9Sqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:a1:8d:a8:06:4f:c9:81:c8:9d:ad:d1:4d:62:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Validity
Not Before: Jun 14 05:00:35 2025 GMT
Not After : Jun 15 05:00:35 2025 GMT
Subject: CN=619849b0a76eee180ad191fc45ad649cf6892f5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1e:ca:60:c9:c3:4d:c2:8a:ca:a2:69:1c:12:
5b:10:87:1a:b4:2e:27:63:fa:ad:b6:1d:7f:da:2f:
f9:c1:e6:24:45:24:b9:f6:22:e3:53:99:44:53:fd:
ff:8c:cf:dc:94:41:b6:14:9d:a9:be:8c:54:c7:6b:
db:42:7d:17:b3:9a:ae:9c:c6:9f:f5:10:43:b0:86:
29:c8:f7:d6:43:35:c5:0e:6f:92:59:3d:b4:42:b4:
6b:bc:4c:a9:02:54:63:43:be:e5:58:26:f6:a6:c2:
b4:5e:c0:95:76:e3:40:ea:67:d0:7e:9d:51:06:6c:
ad:2b:22:4d:44:32:1b:66:f5:49:37:6f:8a:aa:6d:
ec:45:b9:98:4e:77:c1:83:4b:96:e5:58:af:e5:62:
3f:4b:af:9e:64:bf:92:ec:b6:37:6f:87:42:ec:60:
da:30:c6:0f:7f:3c:36:69:17:8d:37:f9:be:fc:d8:
37:a3:d0:0b:4a:1f:eb:07:17:42:b9:4c:af:75:70:
1c:90:fa:e8:d8:d3:7a:35:d2:ee:89:a2:58:2d:da:
25:0b:93:95:2d:e8:99:f5:86:b0:1b:72:b7:ed:91:
9e:d4:f5:51:6d:b8:1b:12:a0:db:89:f8:ac:71:6e:
ad:1a:5a:81:73:70:20:91:61:a9:48:7e:48:75:60:
fb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:98:49:B0:A7:6E:EE:18:0A:D1:91:FC:45:AD:64:9C:F6:89:2F:5A
X509v3 Authority Key Identifier:
keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:bc:b1:3d:6e:9e:80:ca:7a:11:60:18:da:f1:db:1d:1c:ae:
fb:dc:7b:ae:c4:6e:b7:be:7a:04:a5:eb:de:2e:7c:b9:fd:a9:
5e:b0:92:89:75:97:34:64:ae:d5:27:91:ac:9b:ba:dc:1b:96:
c5:bb:f6:e1:ad:3b:e6:16:dd:a3:f6:63:1c:0d:70:67:cb:d6:
c7:3e:2f:97:0d:e9:94:e5:28:2d:38:a6:40:0f:f5:e0:08:af:
51:ad:07:5d:08:e2:e1:02:69:b0:b0:b0:b7:cc:2e:39:4d:c0:
06:d1:eb:6a:0e:f0:c0:6b:f7:4b:39:4a:1a:44:43:1e:d1:19:
12:84:c4:aa:da:24:e2:14:9a:5e:a9:49:77:ba:ae:08:83:88:
6e:fa:50:f4:67:e5:52:5b:99:6d:b3:c7:eb:e2:9a:83:c2:11:
d1:55:70:11:88:0d:f2:89:1a:c7:a0:e9:e1:f0:98:0d:16:0a:
97:58:81:3f:c8:66:a4:0b:01:19:3f:86:a5:b5:e5:89:e5:02:
f4:7e:9c:86:69:d2:f5:17:55:dd:b3:d4:04:7b:78:7c:94:9f:
f9:ed:71:d9:a7:e0:ed:9c:3c:aa:e9:2d:77:4e:7b:0b:3c:32:
a1:96:e7:e5:70:4a:37:cb:31:59:9c:40:95:52:26:01:b0:a9:
13:84:33:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:34:46 2025 by rpki-client