Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/47e909-7744-4db3-b691-a7b9c7115c1e/1/AMz6LBZvhsPNAcbrrhk3ReHrDyk.mft
File: AMz6LBZvhsPNAcbrrhk3ReHrDyk.mft (raw, json)
Hash identifier: JdmSiyEoCEVchOfjjUkD9SSsUja/E5w7b0To5Gu4YZ8=
Subject key identifier: DF:EE:23:80:85:C7:77:9B:33:3A:3C:B7:A4:55:6A:99:4A:B8:20:E0
Authority key identifier: 00:CC:FA:2C:16:6F:86:C3:CD:01:C6:EB:AE:19:37:45:E1:EB:0F:29
Certificate issuer: /CN=00ccfa2c166f86c3cd01c6ebae193745e1eb0f29
Certificate serial: 0198D583AF4E8A534C1DD9E9D51BB9BCC641
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AMz6LBZvhsPNAcbrrhk3ReHrDyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/47e909-7744-4db3-b691-a7b9c7115c1e/1/AMz6LBZvhsPNAcbrrhk3ReHrDyk.mft
Manifest number: 05B7
Signing time: Sat 23 Aug 2025 06:00:33 +0000
Manifest this update: Sat 23 Aug 2025 06:00:33 +0000
Manifest next update: Sun 24 Aug 2025 06:00:33 +0000
Files and hashes: 1: AMz6LBZvhsPNAcbrrhk3ReHrDyk.crl (hash: 62xVk0wS70MDxaynzj8MzvbIkdHp81qouaz72xw/KDQ=)
2: e0RKB6c0KB07YznYp0xB1MsPmzk.roa (hash: qPmTA1Xz3mqQ1fzxdYI8NmB7dWpfMeJeVGXYLIJQJaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/47e909-7744-4db3-b691-a7b9c7115c1e/1/AMz6LBZvhsPNAcbrrhk3ReHrDyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/47e909-7744-4db3-b691-a7b9c7115c1e/1/AMz6LBZvhsPNAcbrrhk3ReHrDyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AMz6LBZvhsPNAcbrrhk3ReHrDyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:af:4e:8a:53:4c:1d:d9:e9:d5:1b:b9:bc:c6:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00ccfa2c166f86c3cd01c6ebae193745e1eb0f29
Validity
Not Before: Aug 23 06:00:33 2025 GMT
Not After : Aug 24 06:00:33 2025 GMT
Subject: CN=dfee238085c7779b333a3cb7a4556a994ab820e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:99:be:2a:5f:0c:e7:d4:d7:cc:ff:72:87:de:
3f:6b:3a:af:0f:56:a7:c9:81:75:f0:6b:98:ec:32:
fb:ab:1b:79:95:0a:ef:a5:63:6b:42:fa:f1:9a:94:
1a:9c:27:d6:6e:72:6a:86:68:d0:4f:b5:52:a0:e5:
a9:26:81:ee:56:b8:8b:cd:00:97:7a:26:c0:22:4d:
b6:d8:44:12:03:e5:4b:18:3a:1b:ea:44:8d:28:8a:
53:0a:f7:4c:51:db:c7:c9:04:49:9c:91:37:c6:67:
d0:40:29:10:bf:15:ef:c0:c3:6d:4f:0c:16:2f:4e:
1a:b7:db:b1:40:86:0c:63:d0:ef:37:c5:b6:87:e3:
9e:7b:01:29:a1:58:f1:36:1c:d2:58:5f:72:2a:6d:
35:c2:c6:dc:fe:66:ee:08:1c:f0:4c:bd:43:29:ba:
4c:fc:7a:77:b3:85:70:97:ec:54:8e:0b:e0:c2:5b:
31:43:b8:25:06:d0:3f:34:c1:da:6c:20:4f:3b:8f:
91:b4:f7:81:be:a5:38:1b:c8:de:90:83:03:77:2d:
b4:99:46:72:db:99:c4:1b:7d:95:b4:ae:9b:52:f7:
67:84:2f:99:cb:85:8b:89:78:83:c2:84:5b:46:a4:
db:ec:cc:5b:23:d7:35:06:ae:b8:6d:26:31:18:9e:
9b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:EE:23:80:85:C7:77:9B:33:3A:3C:B7:A4:55:6A:99:4A:B8:20:E0
X509v3 Authority Key Identifier:
keyid:00:CC:FA:2C:16:6F:86:C3:CD:01:C6:EB:AE:19:37:45:E1:EB:0F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AMz6LBZvhsPNAcbrrhk3ReHrDyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/47e909-7744-4db3-b691-a7b9c7115c1e/1/AMz6LBZvhsPNAcbrrhk3ReHrDyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/47e909-7744-4db3-b691-a7b9c7115c1e/1/AMz6LBZvhsPNAcbrrhk3ReHrDyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:0e:11:02:16:b9:f9:21:2c:4a:bf:e9:3b:f9:68:73:3d:38:
8a:e8:56:37:d9:89:e3:dd:61:c1:7a:81:13:9d:d3:be:54:e6:
0a:a1:b2:31:32:9c:36:8a:9b:cc:56:26:45:9b:de:32:e5:54:
16:ee:33:94:a8:30:9b:41:f4:4a:8a:aa:f0:4f:28:91:2a:62:
3e:41:2a:80:08:b9:a5:08:ed:51:09:66:86:77:26:0e:c9:c5:
e4:28:32:7f:9c:05:e0:ad:be:8e:d3:48:17:9c:80:b4:9f:90:
80:26:c1:4d:71:0c:52:47:f1:d0:5f:d3:71:38:b7:08:84:e2:
8b:17:96:cb:97:1a:65:c1:77:0d:17:77:b7:d2:7b:6b:a1:fb:
81:9d:1c:a3:99:95:cc:cf:12:ed:c6:2e:e1:45:38:eb:b9:2a:
a4:7b:89:4b:76:15:66:d1:a6:f7:57:cd:2a:36:77:2e:6d:8c:
fc:de:74:f0:b8:20:bb:a6:00:b5:4b:4e:dd:fb:fb:3f:c8:21:
6b:cc:12:e4:2d:fb:b0:41:8f:cb:5d:a3:5c:80:33:70:a8:88:
01:d6:68:79:05:85:47:1b:6f:45:86:87:92:e4:80:35:cc:47:
43:61:1f:4f:24:08:8d:7f:d5:fd:83:8f:b0:83:8d:f4:c3:35:
2f:d1:ed:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:38 2025 by rpki-client