Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
File: aKfCyE_6STTPD3PvGhoaM3hzGCY.mft (raw, json)
Hash identifier: hwS5wdYsrmBYi6vs9XTKk4JLMidSNOGD+GxWggZDogk=
Subject key identifier: D1:24:54:6C:8A:7A:EA:BF:06:C3:07:A7:9C:1F:2F:CE:6E:2D:0D:5A
Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Certificate serial: 0197B5C49CBF908B5EAB561DB8C270A6F230
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
Manifest number: 0C9A
Signing time: Sat 28 Jun 2025 09:00:50 +0000
Manifest this update: Sat 28 Jun 2025 09:00:50 +0000
Manifest next update: Sun 29 Jun 2025 09:00:50 +0000
Files and hashes: 1: KnUOYk5bdwDOyPRpWUFQ6FTo7gs.roa (hash: oV64n7K/Nu3TxpzkL+waUqCMMUTsVFeqTi3s1yY0Zn0=)
2: aKfCyE_6STTPD3PvGhoaM3hzGCY.crl (hash: 04UWeaKkLeHvivmIvGsjP5mTR/NSe/tuhj4ra1RU8Fg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:9c:bf:90:8b:5e:ab:56:1d:b8:c2:70:a6:f2:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Validity
Not Before: Jun 28 09:00:50 2025 GMT
Not After : Jun 29 09:00:50 2025 GMT
Subject: CN=d124546c8a7aeabf06c307a79c1f2fce6e2d0d5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:83:23:04:48:41:78:ad:ec:ab:7f:f1:47:19:
f4:55:8f:f2:2f:52:f0:41:54:b9:dc:86:9d:b5:be:
90:2e:6d:39:f3:cb:4c:be:7d:de:f7:c5:45:cf:29:
36:d2:d4:7f:7e:38:8a:d7:a7:d6:7c:a1:5f:3b:b3:
e0:1c:96:cb:5c:eb:56:46:f3:3b:af:fc:8c:23:9e:
eb:1c:f4:67:42:4f:22:a5:be:5a:59:d0:17:72:b2:
56:be:a3:0b:af:42:15:26:89:0f:d2:30:8d:9b:0d:
2e:59:0c:ae:61:bb:3e:13:ab:62:74:5f:67:e8:33:
c3:82:f4:14:32:0b:82:6c:8b:6a:28:80:18:65:d3:
84:f4:11:6d:82:d5:b9:4b:d3:55:a2:3c:57:83:84:
8e:80:a0:12:2f:8a:9b:c9:3f:ba:bc:f7:c6:b6:aa:
70:6a:ac:4c:4e:6b:af:8b:4d:18:84:12:7f:d6:db:
b8:89:56:ae:c4:46:dd:59:1e:50:9f:44:fc:11:da:
6b:cd:37:71:ed:b2:7b:ae:0f:7b:d4:57:9a:b2:03:
48:6f:3e:63:5d:0b:e3:86:5b:54:b1:12:08:a5:22:
73:f7:5f:7c:62:18:48:95:d5:62:b7:af:3b:7d:28:
78:89:b5:27:83:33:0b:6d:7e:a1:a4:bb:d1:3f:96:
a6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:24:54:6C:8A:7A:EA:BF:06:C3:07:A7:9C:1F:2F:CE:6E:2D:0D:5A
X509v3 Authority Key Identifier:
keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:b2:c1:a7:ca:c6:5f:0e:a1:2d:8c:e6:c2:3b:93:23:42:41:
68:8d:80:ca:fa:c3:78:f7:c5:b8:9a:13:ad:36:4f:11:e6:bb:
e2:7e:1e:86:f9:6f:a2:8a:cc:43:4f:c9:47:15:c4:f0:f0:cd:
1e:b0:14:ce:93:e7:08:a7:5c:c2:c3:2a:76:c1:27:b2:ce:d1:
fb:7b:4f:70:d3:ff:7e:d8:ff:6d:36:2e:b9:90:e8:4f:5b:f2:
50:aa:a7:bc:50:86:7a:00:f9:c6:3f:03:f2:7c:6a:ff:d6:24:
1a:f1:43:bf:cf:6d:53:8e:c7:d6:17:ef:fd:1b:dc:75:61:47:
54:00:d4:8b:9f:b4:0f:9d:47:a4:39:f3:32:5d:67:b7:01:67:
68:82:58:31:45:04:2d:ef:a4:35:f0:f5:32:51:f7:a3:36:2d:
8f:3f:ac:0c:9c:cb:06:31:cc:b5:61:85:d2:ac:98:db:a2:6e:
9a:d0:4d:26:c6:79:8a:3f:18:0e:4c:6d:e0:64:2f:d4:2c:ce:
f6:f8:4f:ca:2f:18:ac:00:be:67:28:71:0f:11:af:2b:99:ef:
44:b4:f2:e6:32:f9:ec:87:ba:56:3d:24:c1:ab:3c:fd:35:96:
be:2a:9c:b2:12:ee:fb:a4:75:e3:d3:75:55:9b:fd:6d:64:ca:
fc:3c:64:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:54:08 2025 by rpki-client