Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
File: aTHX56mXSaOF6usn-FCridqPLuA.mft (raw, json)
Hash identifier: 1Qp5G04gD26BHroKLT12rccy5smo+z7T/FBTK/S85cQ=
Subject key identifier: 8D:FB:02:4A:4D:C5:AF:B6:84:9A:D4:69:C3:49:CC:E2:CC:49:6C:70
Authority key identifier: 69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0
Certificate issuer: /CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0
Certificate serial: 0197B70F17F81DCE69599886AF8815F6701B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
Manifest number: 04F2
Signing time: Sat 28 Jun 2025 15:01:49 +0000
Manifest this update: Sat 28 Jun 2025 15:01:49 +0000
Manifest next update: Sun 29 Jun 2025 15:01:49 +0000
Files and hashes: 1: NluQuRsgOiFaIXTWt3y3rez6Bh4.roa (hash: JKkT06F430W2THw9Cv6TXAFRcJ7i7LHFoCLoKhmOqSc=)
2: aTHX56mXSaOF6usn-FCridqPLuA.crl (hash: H/YHVTxBGxREPtJ2pV3zgKWzIeFzup7UPbZ+zHOwYm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:17:f8:1d:ce:69:59:98:86:af:88:15:f6:70:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0
Validity
Not Before: Jun 28 15:01:49 2025 GMT
Not After : Jun 29 15:01:49 2025 GMT
Subject: CN=8dfb024a4dc5afb6849ad469c349cce2cc496c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:63:a8:83:c3:03:f0:a0:62:9e:e0:df:3e:43:
c4:f4:f0:14:3a:d0:9a:33:38:66:b6:c8:62:8d:2c:
2f:79:ca:c4:72:aa:4c:fe:02:48:26:74:44:5f:35:
2e:be:b5:d6:36:f1:3f:76:28:7e:0b:0d:22:c2:0c:
37:58:61:85:1c:f4:c2:69:6a:e6:0d:42:16:be:a5:
ac:55:8b:b5:a5:dd:b2:b5:64:5e:3e:7b:2d:bf:4b:
99:a3:2e:3e:23:9b:87:62:cc:d2:20:e6:a4:c4:b2:
64:f4:39:de:4f:44:1d:8d:97:2a:a0:08:7a:92:27:
49:c6:48:55:2a:d9:44:6a:86:e1:2c:86:9c:cc:f1:
8e:3c:3d:2b:88:4c:87:66:1b:c5:2d:ca:c1:d5:a0:
e3:1f:a1:70:02:5d:d0:c0:96:2e:c6:32:6e:35:81:
8f:55:be:4e:a8:dc:f4:41:17:66:11:a2:82:71:e2:
29:19:33:97:9c:e3:77:37:6d:fb:50:7c:35:9d:85:
db:d2:97:3a:3c:45:28:0d:8c:d5:d8:11:78:47:a9:
bf:84:e2:23:01:10:67:69:22:8a:46:96:04:44:03:
db:51:74:c2:44:3b:b4:58:99:9d:59:7c:21:06:7d:
b6:fe:f9:12:a5:03:0f:ac:a7:d7:8b:ec:eb:48:8c:
e8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:FB:02:4A:4D:C5:AF:B6:84:9A:D4:69:C3:49:CC:E2:CC:49:6C:70
X509v3 Authority Key Identifier:
keyid:69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:e1:24:a2:32:11:92:06:6d:7f:d9:f2:ac:98:7a:61:24:2b:
c1:6a:78:1b:60:7f:3f:82:da:53:22:de:18:4e:4f:87:99:26:
ae:c1:89:84:97:87:8d:20:24:3b:d2:3b:80:9d:b1:fb:85:86:
21:71:1e:7a:35:a5:b8:4b:43:4b:d6:61:62:16:53:39:0f:8b:
84:09:f0:bd:82:5e:8b:31:d6:d1:15:87:f0:ad:82:30:2c:b2:
83:04:f6:8c:72:66:c3:6e:77:08:a7:3a:7d:a6:c5:a5:68:ca:
7c:b9:e9:47:d6:10:f8:08:02:9c:20:df:74:21:f2:69:5c:4b:
44:54:29:9a:ed:a0:94:09:13:ed:31:ce:ff:d8:77:99:71:65:
b8:0f:72:11:86:59:34:2c:18:1f:3e:01:a1:2c:22:66:02:2a:
62:4d:12:d7:95:4a:65:e0:28:8f:8d:b7:d8:a8:c3:44:e4:04:
29:44:0f:3f:6f:52:77:f9:cb:8b:73:c6:2b:83:12:e8:1c:7e:
11:21:46:d2:5c:ad:0e:1e:00:dc:b0:17:75:fd:e5:69:5d:47:
d2:1d:1c:ae:e9:4c:c0:f4:84:7a:a0:80:d7:2a:4f:3a:83:17:
99:34:97:18:de:b9:5e:75:fe:dc:f2:69:a1:94:d0:1f:88:5b:
84:c5:9a:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:34:58 2025 by rpki-client