Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
File: aKfCyE_6STTPD3PvGhoaM3hzGCY.mft (raw, json)
Hash identifier: xFL8uqVwcZh5z8RaUcIucseRK1uoyf13xU14HCZJHSw=
Subject key identifier: FC:22:FB:86:98:D6:64:6F:61:67:45:A0:E3:1B:C9:AA:89:95:AC:0C
Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Certificate serial: 01976C61E765BEC18365298D5E9CC2C152C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
Manifest number: 0C74
Signing time: Sat 14 Jun 2025 03:00:44 +0000
Manifest this update: Sat 14 Jun 2025 03:00:44 +0000
Manifest next update: Sun 15 Jun 2025 03:00:44 +0000
Files and hashes: 1: KnUOYk5bdwDOyPRpWUFQ6FTo7gs.roa (hash: oV64n7K/Nu3TxpzkL+waUqCMMUTsVFeqTi3s1yY0Zn0=)
2: aKfCyE_6STTPD3PvGhoaM3hzGCY.crl (hash: XMmQnlxk89wKEabB20MMORnXh+12BfOoDbjJXST/GXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:e7:65:be:c1:83:65:29:8d:5e:9c:c2:c1:52:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Validity
Not Before: Jun 14 03:00:44 2025 GMT
Not After : Jun 15 03:00:44 2025 GMT
Subject: CN=fc22fb8698d6646f616745a0e31bc9aa8995ac0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8d:56:8f:80:e0:33:32:55:5a:27:2a:09:f1:
b2:94:50:ef:4e:78:08:f8:82:73:46:23:07:61:06:
cb:c6:a0:89:2a:e2:13:1c:f9:55:4d:e9:33:32:63:
b3:1b:05:5c:dc:7d:6e:d7:b7:bd:ab:38:fd:d3:c5:
a4:6f:91:1e:2a:19:20:7a:19:82:00:99:ef:83:46:
02:d7:9d:2f:7f:c3:e0:c5:a6:79:58:7c:7b:cd:db:
be:76:e4:2d:91:f5:95:b2:31:34:be:68:14:87:44:
57:6a:2e:18:f7:a8:73:aa:f4:24:54:fa:6a:b8:8c:
8e:3d:d4:d4:8b:23:26:24:93:da:7a:20:86:02:50:
ea:0a:70:82:95:f9:32:3c:f5:2e:74:e9:33:e1:52:
26:ab:ed:71:fe:aa:1a:87:52:d8:91:9b:c1:85:c8:
8c:65:c9:95:41:f9:29:b5:8b:6b:db:fc:c4:7e:3e:
e4:2a:ae:7c:48:4c:ef:fc:33:0f:8f:30:de:55:0f:
ae:de:09:4d:ce:d3:ec:f7:83:ed:2b:85:3d:c6:0d:
71:dd:4e:67:0a:91:80:58:7c:9c:c2:16:0c:de:8f:
26:52:d4:25:24:d1:68:fe:49:15:90:33:10:f4:ab:
5e:3e:b8:e8:68:0a:7c:90:33:47:ef:35:f5:d1:dc:
74:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:22:FB:86:98:D6:64:6F:61:67:45:A0:E3:1B:C9:AA:89:95:AC:0C
X509v3 Authority Key Identifier:
keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:ce:0a:60:b0:dd:91:1c:ee:c0:bf:82:01:12:4f:c4:d3:3d:
e3:53:42:58:08:b1:8d:0d:2d:6b:b1:59:82:b5:d8:23:6f:80:
c0:18:91:3c:e5:f0:9c:b9:8b:d2:2d:c3:ae:ed:3c:46:6a:1d:
69:e8:e2:6e:26:41:d9:a6:ff:01:16:22:43:39:98:3a:d7:fe:
5b:88:e9:85:74:d2:e2:96:22:81:5b:4b:62:ab:40:69:e0:91:
d8:64:2c:be:9e:36:3d:21:f9:ed:1d:11:e0:ec:15:c3:92:5d:
ef:16:c5:03:29:9e:e4:16:9b:62:44:32:6d:17:4c:00:ae:15:
a7:12:ea:32:e5:3c:0d:09:3f:d9:e0:4c:c8:69:f7:ab:01:81:
cb:b4:16:8d:58:ee:bd:15:ba:88:29:8c:db:6d:7a:0f:e5:81:
f9:fe:4f:9f:f1:00:54:b5:33:80:ea:97:0e:c6:17:1c:a3:b5:
29:ad:6c:7f:80:9e:35:cf:dc:eb:52:82:77:7a:c4:d4:fe:ec:
89:a9:b0:b5:71:f0:d2:bd:17:d5:04:37:75:91:fa:5f:33:d6:
2c:1d:49:53:8b:07:55:93:65:c6:1b:66:66:2c:cf:56:38:b5:
b1:02:ea:62:cb:7e:6d:2a:44:68:cb:2a:20:d1:84:8f:33:24:
e3:8e:c7:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:05:48 2025 by rpki-client