Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
File: aDjbfmmRJ9pMHFpek_RPMCtihjs.mft (raw, json)
Hash identifier: xe37enWPmP+ptjt2YJqf+j/xniW1pR+/gyav7QQvjbA=
Subject key identifier: 67:B7:55:49:E4:E4:72:F8:85:28:BA:9F:58:1D:6F:E8:C9:17:D9:5B
Authority key identifier: 68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B
Certificate issuer: /CN=6838db7e699127da4c1c5a5e93f44f302b62863b
Certificate serial: 0197B70EE44F45A1D5D7BCAB026563D43264
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 15:01:35 +0000
Manifest this update: Sat 28 Jun 2025 15:01:35 +0000
Manifest next update: Sun 29 Jun 2025 15:01:35 +0000
Files and hashes: 1: aDjbfmmRJ9pMHFpek_RPMCtihjs.crl (hash: n98B2PEvBF281XVxWT30rh6XCt06p/wx5boNAe0Sn4k=)
2: ndozZxXsqqvoYlnvn2R8eG6q9WM.roa (hash: J/bxB2F1VD9ABMhf1I4cZo/1cjeHrt4Cto7ZdYkPM28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:e4:4f:45:a1:d5:d7:bc:ab:02:65:63:d4:32:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6838db7e699127da4c1c5a5e93f44f302b62863b
Validity
Not Before: Jun 28 15:01:35 2025 GMT
Not After : Jun 29 15:01:35 2025 GMT
Subject: CN=67b75549e4e472f88528ba9f581d6fe8c917d95b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3f:08:19:9e:58:c3:28:a0:d2:f1:3f:8b:02:
2d:49:97:d8:6b:34:8e:16:41:36:90:2b:12:46:11:
c6:3a:40:7d:34:58:56:d3:11:fc:ec:55:a9:e4:aa:
3c:a3:9e:a1:62:5c:32:1b:47:93:0a:00:c9:17:45:
9e:e3:c4:26:0c:13:0c:09:fd:62:df:13:0a:57:de:
87:39:0f:d6:55:f7:ab:49:bd:93:1b:a3:18:b9:c7:
9c:35:7d:63:aa:96:41:fb:18:60:4a:d7:65:2f:4f:
f4:c4:7f:a6:be:90:a3:39:08:de:4f:ab:dc:2b:cd:
95:fd:3b:a3:85:79:75:a3:fe:11:60:93:ad:2e:94:
6e:98:fd:84:37:2c:06:9c:87:45:d7:cd:eb:5f:7d:
cd:7a:41:5f:ed:b2:86:73:a4:66:dc:7b:68:a8:4b:
d7:f9:95:b3:52:13:0b:74:1a:db:2f:8b:b8:a4:fe:
36:98:79:c3:93:5f:91:9b:ac:71:bf:74:e5:9d:85:
c5:58:f1:c8:93:9c:f4:9c:31:4d:64:14:8f:f5:4f:
36:f4:5a:3d:f8:25:66:4c:ac:0c:55:21:c9:49:17:
ee:66:94:18:e3:ec:e0:78:82:9b:a2:ed:bd:85:e9:
f1:c7:d8:04:c0:cd:41:51:28:9e:10:ee:06:34:c6:
06:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B7:55:49:E4:E4:72:F8:85:28:BA:9F:58:1D:6F:E8:C9:17:D9:5B
X509v3 Authority Key Identifier:
keyid:68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:22:c7:6e:20:7a:1f:fd:80:c8:98:84:19:b8:e7:65:c8:09:
8d:8f:c2:13:c4:6c:b1:1f:fb:7c:ef:8e:57:00:85:c6:c8:3d:
62:74:6d:a8:af:61:5b:07:17:cc:e9:91:10:11:bf:dc:69:68:
e6:b8:c2:e6:7f:2c:8a:8d:a4:70:75:c3:79:a1:a1:76:ec:0d:
52:0f:de:a5:2c:fd:d4:98:5e:1a:d1:2c:8b:87:8b:31:57:33:
84:a5:d5:98:df:97:ba:2c:e3:29:b4:0e:9a:39:7d:b8:99:c1:
ba:08:35:20:5a:a1:ba:08:2e:1b:b3:65:d3:35:b7:f6:4a:3c:
a7:51:0c:ee:ee:9b:20:5a:13:08:da:35:7b:62:e7:68:9f:dd:
9c:5a:c1:93:f5:3a:86:b2:3c:60:a2:df:15:67:ac:a1:3d:72:
85:0f:0d:ab:72:f8:29:bb:7d:70:06:60:f2:05:c7:65:33:b5:
16:55:7b:43:ec:c3:9b:8f:ad:39:3c:0b:a5:75:96:9d:e4:40:
60:f6:50:90:43:58:ce:a6:b0:02:07:3e:ab:2f:18:76:1f:53:
7b:a0:ce:75:ba:90:cf:43:cf:0d:e8:57:3d:22:79:d6:93:7c:
f1:32:76:c1:7e:58:e5:20:3c:73:31:c5:b6:03:4e:aa:f5:a7:
f5:4e:da:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:52:50 2025 by rpki-client