Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
File: AsLBh9mLRgOATtEWWttFCbYwqDo.mft (raw, json)
Hash identifier: trXDn8aXtujdDUBSrOLkcr6B6qCIFll9ErUM3yF8gw4=
Subject key identifier: 7B:48:77:15:AB:D2:17:DB:58:E1:1F:FE:1A:C1:E8:5B:E8:91:3F:B9
Authority key identifier: 02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A
Certificate issuer: /CN=02c2c187d98b4603804ed1165adb4509b630a83a
Certificate serial: 01976E5086E0B4745DD601FE8B6E7B3C51CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
Manifest number: 0A84
Signing time: Sat 14 Jun 2025 12:01:00 +0000
Manifest this update: Sat 14 Jun 2025 12:01:00 +0000
Manifest next update: Sun 15 Jun 2025 12:01:00 +0000
Files and hashes: 1: AsLBh9mLRgOATtEWWttFCbYwqDo.crl (hash: U7icMuI4Jrrjq4+d7InA6Bd6McQOkoiE/PXxeUvs07Y=)
2: vSD8XToST3_PVTIy1XwVerhMPWI.roa (hash: Yvhr0/CtepPwOm3ynZwacKeoADnHcOUi9JQFKNsVsJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:50:86:e0:b4:74:5d:d6:01:fe:8b:6e:7b:3c:51:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02c2c187d98b4603804ed1165adb4509b630a83a
Validity
Not Before: Jun 14 12:01:00 2025 GMT
Not After : Jun 15 12:01:00 2025 GMT
Subject: CN=7b487715abd217db58e11ffe1ac1e85be8913fb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e7:19:bf:6f:0b:c6:8c:0b:75:ae:e5:89:c5:
20:92:a8:fc:ab:80:eb:44:e5:1f:f6:a1:04:83:8b:
5b:28:a4:27:e9:04:99:e2:75:29:f2:33:15:4b:1d:
bc:9c:42:a8:0e:e5:f5:e6:0c:ea:e7:d7:14:c1:73:
25:88:8c:95:41:fc:3e:ff:5f:ef:b8:b6:aa:37:eb:
f0:b0:b1:44:2e:0a:50:f3:08:45:90:9d:66:2c:55:
8e:0f:46:86:6e:53:ec:51:91:83:f4:61:14:31:c5:
76:40:66:fc:d9:29:47:db:16:81:c0:f0:cc:a1:32:
88:92:1a:41:14:1c:f4:4c:12:7d:52:be:e5:17:96:
3e:73:6b:34:5e:43:f5:33:d0:da:34:bc:5c:38:22:
55:de:21:e4:bb:9a:fd:ca:ca:e6:bf:fc:1d:82:59:
10:1d:05:ec:7b:0b:2b:94:5f:4f:61:45:15:2b:ec:
fe:43:34:52:f2:a3:70:5e:fd:07:42:64:f3:55:88:
03:64:5d:f0:6b:ef:64:df:38:13:1d:b0:94:ac:e4:
3f:70:49:cb:84:46:7b:de:e4:10:fc:2d:57:67:1b:
fa:3b:bf:a7:2a:93:7c:5e:b2:e0:11:39:63:51:5b:
74:3a:9a:fe:dd:b8:a4:b1:e4:ae:d2:a5:fe:04:f0:
6c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:48:77:15:AB:D2:17:DB:58:E1:1F:FE:1A:C1:E8:5B:E8:91:3F:B9
X509v3 Authority Key Identifier:
keyid:02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:f0:99:16:3c:37:b1:f1:b1:94:2b:53:a1:e1:07:37:35:ba:
ba:ed:51:2a:7e:1c:e4:3c:3d:16:48:2f:f3:a5:a5:a9:c1:46:
39:dc:0e:59:3b:fc:b3:2e:20:af:97:f5:db:db:c5:a7:07:81:
d6:26:89:8a:4e:73:5c:24:13:21:7d:54:ee:53:9b:73:39:53:
5f:bb:f1:9d:a6:f1:cf:2d:cd:2f:5f:83:4a:4c:92:c5:6f:78:
e4:f8:fd:a2:f3:b9:70:1b:3f:e0:ab:cd:e0:26:45:1d:11:f3:
50:7c:c0:50:75:bc:ec:b8:b8:cd:45:06:05:c0:7f:aa:b7:0a:
b9:99:c0:d2:a6:96:b6:fb:9e:34:fa:67:a1:c6:08:7a:6a:c9:
88:34:c6:34:76:0a:40:99:ca:ce:be:dd:ef:be:5f:a4:1c:12:
6b:f5:05:70:12:97:69:eb:d8:3a:8b:ef:f0:54:22:0e:62:f8:
36:85:9f:ce:51:81:30:45:4e:c3:28:b6:0e:72:8a:9b:8b:76:
07:aa:e6:56:4a:20:5f:fd:59:9c:85:4d:53:0a:a6:c5:35:95:
90:c0:dd:78:69:17:e7:60:0a:7f:39:98:74:e8:ab:56:44:09:
0e:18:61:ea:08:c3:c7:b7:e3:22:88:60:7a:a7:b1:29:15:ea:
fc:ab:16:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:17:58 2025 by rpki-client