Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
File: aKfCyE_6STTPD3PvGhoaM3hzGCY.mft (raw, json)
Hash identifier: 7+wLSRCaO7d66OIrVFKfSsuNFiu9O/9zBZs1d5/6H/o=
Subject key identifier: 5C:4E:EE:32:67:7F:50:55:57:AD:EE:35:1B:AD:9F:B4:A2:AB:8C:A6
Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Certificate serial: 0196A766546356C601613B6F14307C660F94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
Manifest number: 0C0E
Signing time: Tue 06 May 2025 21:00:23 +0000
Manifest this update: Tue 06 May 2025 21:00:23 +0000
Manifest next update: Wed 07 May 2025 21:00:23 +0000
Files and hashes: 1: KnUOYk5bdwDOyPRpWUFQ6FTo7gs.roa (hash: oV64n7K/Nu3TxpzkL+waUqCMMUTsVFeqTi3s1yY0Zn0=)
2: aKfCyE_6STTPD3PvGhoaM3hzGCY.crl (hash: 9lWgu6PHIDSNtZA68lAAo+BrQo+q5D8V7UnpHttVEAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 14:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a7:66:54:63:56:c6:01:61:3b:6f:14:30:7c:66:0f:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Validity
Not Before: May 6 21:00:23 2025 GMT
Not After : May 7 21:00:23 2025 GMT
Subject: CN=5c4eee32677f505557adee351bad9fb4a2ab8ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:96:c9:40:79:ed:d5:bf:1f:37:09:bf:e0:f9:
9a:8e:c8:7e:a2:36:11:11:cb:7d:49:86:62:54:c7:
40:a0:53:34:97:0a:6a:b4:bf:db:b4:52:cb:0c:e3:
08:ff:b2:90:15:6e:7b:59:9b:c6:16:6b:99:e6:5b:
86:46:68:df:95:1d:9c:39:1e:3d:2c:e6:ab:8f:5f:
e2:37:bb:d4:f2:4e:ba:a9:96:ca:1d:a8:ee:19:0d:
ef:20:e6:63:e5:4d:89:9f:8f:c4:22:c5:67:f4:e5:
fa:19:e7:a6:cb:f6:d2:50:21:86:0e:7d:af:da:da:
96:3d:3a:52:8c:99:bf:e6:0a:6c:52:11:e9:38:6f:
ae:31:d3:28:9c:25:6e:a9:7e:1b:65:e5:19:b1:af:
4b:3e:35:3a:ca:b4:52:2f:3b:2e:8c:d8:4b:53:34:
b2:28:21:5c:b1:4c:cb:df:55:f3:d3:0f:7b:9b:6e:
ae:31:6c:fd:03:25:60:ff:a8:35:01:31:4a:e4:38:
45:a0:40:bf:eb:33:bd:fe:82:b2:80:30:48:e5:bb:
76:32:50:44:21:07:9c:bc:fd:20:5d:cc:28:64:39:
22:13:05:06:2c:dc:29:bc:45:0b:22:df:15:91:ae:
ae:7e:af:77:d6:1d:d0:a0:30:83:36:d5:62:9e:6f:
d5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:4E:EE:32:67:7F:50:55:57:AD:EE:35:1B:AD:9F:B4:A2:AB:8C:A6
X509v3 Authority Key Identifier:
keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:fc:9c:cb:ea:ec:c4:a9:6a:80:18:f6:b4:95:28:f7:97:c1:
49:dc:c0:8c:a6:44:7a:a4:eb:1a:38:e8:0c:03:2f:46:86:e5:
36:fe:7e:c0:1f:f1:bd:87:1f:48:ec:20:de:9e:1c:51:98:12:
4f:8a:42:5d:c8:8f:93:77:a5:c7:56:d3:13:e2:38:20:85:c4:
42:4f:92:af:85:0a:ad:34:78:7a:1c:4d:3a:09:db:77:77:42:
d1:9b:33:e2:f3:7f:50:a6:86:0a:a9:2f:46:4e:74:ab:17:5a:
f4:30:92:cf:49:02:6a:1e:85:28:e3:87:ae:2a:11:88:a2:bf:
5b:fd:12:ef:7f:e8:ae:70:c0:85:1b:e4:dc:cd:d4:45:52:e7:
a9:fe:8c:af:0d:0d:ae:f9:ec:76:7f:81:87:15:ff:ca:85:e6:
74:63:fa:20:3b:16:91:ba:49:86:2c:48:b5:66:fc:e4:2a:fb:
a6:6e:75:e7:9a:87:4e:03:33:a7:1b:8f:01:3d:d2:3b:8b:8d:
1e:e7:c5:ac:c4:fc:e4:59:22:1b:36:08:bc:98:4f:53:6c:b1:
ee:2f:5e:fc:7f:48:ac:71:6c:a8:72:64:26:de:5e:53:82:91:
49:4a:29:5e:bc:a4:db:90:5c:cb:07:be:2a:c7:0c:65:1d:a1:
75:e3:f1:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 23:50:50 2025 by rpki-client