Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
File: AoNhMH79nzq-_mm9FN4OG9YLbmo.mft (raw, json)
Hash identifier: tpsFPynSNUFzzeG2IHVl4QyoT0o5r1MA/7CHytK7Cd0=
Subject key identifier: A2:D3:EE:C6:43:E5:3C:CE:06:EB:B3:6E:B0:F2:44:84:9A:EF:45:96
Authority key identifier: 02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
Certificate issuer: /CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Certificate serial: 0197B6D7A1966A6DC720735215F6F0F05F4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 14:01:14 +0000
Manifest this update: Sat 28 Jun 2025 14:01:14 +0000
Manifest next update: Sun 29 Jun 2025 14:01:14 +0000
Files and hashes: 1: 2Zm15nya-qIgvvpfAijKMsgEkJ4.roa (hash: R6UtE66nKKM8V86y41wgOOrSUcLC3hcokGTEuECcZNA=)
2: AoNhMH79nzq-_mm9FN4OG9YLbmo.crl (hash: +aoXm1Z0DTLofMJh+F6MgFPOKAtHduVC1p4Jc0+N9hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:a1:96:6a:6d:c7:20:73:52:15:f6:f0:f0:5f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Validity
Not Before: Jun 28 14:01:14 2025 GMT
Not After : Jun 29 14:01:14 2025 GMT
Subject: CN=a2d3eec643e53cce06ebb36eb0f244849aef4596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b1:65:22:27:6a:ba:8e:9c:4e:bd:89:18:ff:
85:d8:07:74:62:1e:f7:99:58:9e:18:77:94:e2:c6:
7b:b1:c0:b9:bb:79:1b:70:68:dd:09:bb:1f:39:d5:
fb:c4:9f:df:44:c2:fa:c8:62:30:5d:e4:ef:21:3d:
81:13:c9:5e:02:26:68:e2:c0:57:29:ea:31:54:6a:
7b:58:7b:35:03:00:f8:c3:af:69:35:c6:73:50:eb:
d7:c1:fe:f0:18:2a:fd:27:96:ca:7b:7c:73:28:03:
49:2e:e7:f1:cc:da:c9:37:48:f4:86:c1:65:4d:ba:
86:2d:da:d0:e1:a2:ea:27:b5:c4:17:57:81:45:cb:
dd:64:c5:70:b1:61:65:08:21:d3:f5:10:1a:e0:ce:
f8:89:6e:b8:de:ae:04:cb:9a:f5:92:62:74:b8:c6:
ea:fd:94:1a:0a:d2:21:eb:fe:36:a1:f6:37:36:7a:
f4:cd:74:9f:03:0f:cb:dd:85:77:bc:4d:fe:80:cf:
84:4a:d2:ae:de:d9:62:f2:8c:b5:3e:65:75:fb:09:
d2:5f:83:6c:06:1f:a0:ae:2d:b2:cc:de:01:9b:be:
a6:e6:ac:0e:55:eb:66:09:33:5f:54:55:bf:ef:c0:
c2:79:61:87:dd:b8:5c:78:95:f4:d0:0e:03:e2:f3:
b6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:D3:EE:C6:43:E5:3C:CE:06:EB:B3:6E:B0:F2:44:84:9A:EF:45:96
X509v3 Authority Key Identifier:
keyid:02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:e7:04:5a:ac:40:3e:a9:47:18:e9:45:e3:a4:fe:8b:98:d4:
3d:eb:94:c3:7b:7c:f9:a5:47:e1:5b:cb:9b:12:80:98:b9:82:
12:38:29:85:5a:d9:06:83:1c:33:67:25:a0:41:04:18:53:5f:
e8:fe:c6:5c:73:f5:07:0f:ad:34:9d:53:38:e5:41:0e:98:55:
ee:11:e2:21:38:cb:47:0b:b2:aa:5e:db:67:fa:3b:c2:fa:31:
f4:2b:f2:7d:9c:6a:92:92:37:a6:17:8f:ef:e5:aa:32:41:2e:
5a:25:f8:aa:0e:07:44:e8:33:18:8a:26:94:0f:28:63:f6:92:
83:54:39:ce:c7:7b:42:65:a1:b5:0a:77:35:4c:2d:16:61:a7:
a3:d4:02:ee:fc:c6:78:34:34:c8:a0:4e:1f:2f:d9:f1:31:14:
27:e8:ce:0c:15:f3:ba:23:40:cd:75:80:27:7a:eb:8a:7d:7c:
e4:66:61:68:eb:a7:1b:6d:ab:0c:b1:fc:ef:b8:0c:e0:8a:a7:
9c:2f:65:e4:50:a7:9c:5b:ba:34:08:f6:1e:b0:77:8a:7c:a8:
3c:b0:2f:0c:3a:e7:ad:f1:f9:90:75:47:bf:5a:27:c0:68:0c:
98:fd:cc:50:c8:4b:86:cb:aa:2e:31:af:f7:6d:db:c8:99:8c:
46:46:e5:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:02:44 2025 by rpki-client