Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
File: ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft (raw, json)
Hash identifier: 1gXZQBcdGAtsuBDDgBXDZvYBMNUlUDmw89uV1tbzOdE=
Subject key identifier: 65:75:79:BB:FF:20:65:B1:92:AA:C5:0E:88:0F:33:33:34:0E:1C:DF
Authority key identifier: 6B:20:81:8B:18:6B:0B:9C:B0:9A:F5:42:0D:1E:5A:E3:34:FE:39:74
Certificate issuer: /CN=6b20818b186b0b9cb09af5420d1e5ae334fe3974
Certificate serial: 0197B7453113EA6EE6F905BEB204C5321241
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 16:00:54 +0000
Manifest this update: Sat 28 Jun 2025 16:00:54 +0000
Manifest next update: Sun 29 Jun 2025 16:00:54 +0000
Files and hashes: 1: ayCBixhrC5ywmvVCDR5a4zT-OXQ.crl (hash: nayIcifH4h/8CQRaubYxEii0M2kqirMDlBsH3yF9GoE=)
2: o_9E0nw7QGxoWCZk4QqgNmZyf9E.roa (hash: 1PmMo5WtlImsrpdUj9rWhTyVCZubOTGK5D/YW7g4Mss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:31:13:ea:6e:e6:f9:05:be:b2:04:c5:32:12:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b20818b186b0b9cb09af5420d1e5ae334fe3974
Validity
Not Before: Jun 28 16:00:54 2025 GMT
Not After : Jun 29 16:00:54 2025 GMT
Subject: CN=657579bbff2065b192aac50e880f3333340e1cdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:bc:1d:a9:ad:4c:25:66:c9:e9:05:cc:1e:13:
e6:93:45:1d:27:9d:4c:46:70:f2:bb:f6:5b:7a:1b:
a7:49:53:86:46:e7:07:2c:05:24:2e:86:da:ae:ae:
2f:bb:06:9b:62:af:05:98:c8:0f:0d:94:6f:94:45:
0c:b6:c9:2f:2a:54:f2:e1:45:14:5c:5e:9a:05:71:
45:15:80:fc:cd:c2:68:84:8e:95:df:e0:77:17:8f:
11:5b:cc:7a:66:e9:0d:95:5c:b2:cb:27:96:10:87:
ee:49:e5:68:c1:87:ec:1b:b1:ab:d6:b5:ce:b8:a3:
76:51:aa:78:03:ff:d6:11:84:77:9a:6c:9c:15:c7:
61:13:73:a8:4f:29:22:49:d5:ad:e7:8c:c2:e0:3f:
3b:63:3d:ac:45:85:1d:77:31:29:d4:79:e4:10:5e:
1d:16:95:99:ed:41:96:1e:8d:40:5b:44:f4:9e:28:
e9:4d:3c:45:a5:e5:1a:ba:ac:d4:ba:14:94:9c:47:
52:2c:4f:f7:51:49:bc:f0:be:3c:2e:0b:c7:d4:e5:
a3:4f:cf:51:c7:ba:b0:8e:1e:a0:88:1b:d7:7b:12:
6b:21:c3:84:98:ef:9f:70:5f:73:2a:aa:cb:29:7c:
d8:f4:b1:b0:a5:de:05:63:70:e5:8a:9c:e7:d6:5f:
83:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:75:79:BB:FF:20:65:B1:92:AA:C5:0E:88:0F:33:33:34:0E:1C:DF
X509v3 Authority Key Identifier:
keyid:6B:20:81:8B:18:6B:0B:9C:B0:9A:F5:42:0D:1E:5A:E3:34:FE:39:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:0e:b9:bd:8f:49:bb:35:5c:23:60:ec:dd:21:70:93:c5:d4:
45:f6:8d:dd:3d:2e:8c:a0:ab:cb:84:9f:ba:26:35:42:ca:f6:
ab:91:ff:f0:1d:79:3f:e8:4c:c1:c3:21:79:97:b0:2d:90:fd:
ad:a4:15:32:16:c2:56:52:30:ea:89:0a:d4:e7:0a:65:fc:f8:
ef:73:44:3f:e0:77:05:a2:c9:c1:dd:bb:64:c1:5e:04:a2:63:
f3:f9:24:1b:3c:41:87:43:6b:37:c1:6b:e1:70:a6:dd:f4:86:
79:67:57:ac:b2:70:06:dc:ee:89:96:0c:32:07:98:8e:12:37:
35:6f:fd:6b:3f:88:b4:2d:95:b6:12:8b:47:a2:14:c7:57:6c:
ff:86:70:b5:16:73:d5:ca:7c:17:fd:db:64:16:3f:9d:40:38:
6f:38:45:fa:1b:34:37:86:67:0b:d7:0a:49:a4:23:af:1a:14:
cf:07:b2:30:21:c8:5d:e6:8f:59:d9:aa:17:68:ad:a1:74:38:
22:fe:0d:97:06:5e:01:88:c1:a3:60:87:3c:24:2f:8e:d3:f4:
da:6f:e4:7f:83:5c:e6:d2:b9:e8:c1:25:cf:cf:bc:c3:e7:ed:
e5:1a:09:ca:ea:d7:81:26:f8:44:5f:32:79:c5:4d:66:ad:81:
bf:9e:fc:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:21:14 2025 by rpki-client