Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
File: M7Zai666T_YhSS6-5vweiK2yGwM.mft (raw, json)
Hash identifier: aWyP5nnYQwwd5Pk2NqsvsnTl/ht9leG14T8MYumrEq4=
Subject key identifier: 65:9A:9A:19:7E:C9:F7:65:81:99:B0:CC:C6:74:79:0D:43:36:43:1E
Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Certificate serial: 0197B70EBFCB806C02F5B2C6EE239E3699D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
Manifest number: 01CC
Signing time: Sat 28 Jun 2025 15:01:26 +0000
Manifest this update: Sat 28 Jun 2025 15:01:26 +0000
Manifest next update: Sun 29 Jun 2025 15:01:26 +0000
Files and hashes: 1: KOqyp8DhhZD3JH6K0j1zl6aQKBk.roa (hash: CehIyyDTNH2XPwU/dxmXRsBi9Cc/OKe00kUQqRs/maU=)
2: M7Zai666T_YhSS6-5vweiK2yGwM.crl (hash: ReVzhtP7rdYwX+FXr/h1t1B79n4MwDqAtBBUEfj72d8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:bf:cb:80:6c:02:f5:b2:c6:ee:23:9e:36:99:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03
Validity
Not Before: Jun 28 15:01:26 2025 GMT
Not After : Jun 29 15:01:26 2025 GMT
Subject: CN=659a9a197ec9f7658199b0ccc674790d4336431e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:d5:80:a9:f5:2a:b3:f4:38:0d:de:dd:98:9f:
6c:46:cf:3a:6a:26:25:b0:af:a2:0f:46:d5:c8:11:
b8:66:f3:34:c5:48:9d:4c:bc:fb:7e:35:fd:ac:92:
b6:0a:71:3b:d6:df:f0:a5:37:11:46:d7:91:7e:2b:
b2:bb:f6:a5:05:43:7c:08:20:7b:27:60:07:2b:52:
da:bd:40:7b:dd:f9:6e:cc:d2:00:ea:d8:fe:4d:6a:
23:f9:20:37:e7:ea:a6:2a:94:1b:6d:f7:6a:ba:a9:
20:56:5b:07:c0:68:7e:06:c4:48:16:9f:9d:88:e9:
53:c9:bd:d6:67:55:15:33:6a:30:f7:f6:5e:f9:32:
25:63:b5:65:9f:a2:e3:b1:c3:52:5f:81:9a:83:46:
90:e3:e1:95:c9:ae:17:8e:b4:b8:c2:54:78:85:b3:
5e:be:16:1b:5a:6e:d8:a6:17:c9:9f:59:b6:ba:dd:
5e:32:31:28:0a:7f:5f:d4:4e:10:5f:2e:40:d6:89:
d6:54:76:5c:50:e9:99:6e:02:5c:3b:68:af:e6:dd:
dd:6c:4a:c3:72:68:26:9e:4a:9d:9c:64:0d:d2:4c:
a1:13:b8:a2:3e:b0:9c:ab:d7:1d:ed:89:72:87:b4:
e6:bc:4a:b6:2e:78:7f:54:bb:ec:45:57:cb:b1:73:
12:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:9A:9A:19:7E:C9:F7:65:81:99:B0:CC:C6:74:79:0D:43:36:43:1E
X509v3 Authority Key Identifier:
keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:00:59:35:d4:17:93:9a:38:7a:cb:1f:d7:11:81:57:71:23:
e2:8a:01:6a:2a:1d:a4:7c:75:69:7c:88:14:73:15:2e:af:43:
17:d3:31:10:4e:13:e5:01:45:ac:d0:7e:cc:7d:78:0d:21:76:
f6:12:4e:6d:de:4e:7d:c3:b4:9a:fa:23:0e:8f:71:9c:cb:25:
cc:8e:3f:d4:89:d5:ed:02:b4:41:ec:fa:62:60:bb:5a:76:b5:
7c:08:e2:8d:f2:6e:19:7e:90:72:91:1e:00:52:b0:61:de:82:
d0:c4:5a:f7:df:a6:03:50:5c:3d:e1:f5:6e:47:72:43:e0:7c:
ee:0c:70:63:d0:9b:52:96:99:00:37:09:23:5e:69:16:a0:6a:
04:39:41:6e:ea:21:ca:89:ad:91:a8:1d:82:1d:a1:e0:3f:c3:
77:f2:ce:e0:d6:af:8e:f0:71:76:7c:41:5e:08:f8:bc:c3:49:
00:11:aa:5f:f0:8a:92:15:83:08:c2:a8:24:cd:03:2a:dd:48:
82:25:01:32:23:9a:8b:25:33:b5:26:06:d9:3f:93:00:27:6a:
09:8d:40:18:da:f9:86:ba:3a:e4:76:96:52:e2:a5:6b:c4:63:
96:53:25:e7:a1:4c:a9:d0:58:02:7f:92:7f:10:ba:cf:8c:1c:
1f:43:b7:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:20:04 2025 by rpki-client