Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft
File: a1Y13TgCFaA8kwfaViBsVms4o88.mft (raw, json)
Hash identifier: 7rSqHj7QSJX/XLRo8moifDjjv/Ylb48kbTRDOvJyMOc=
Subject key identifier: CC:7C:E4:5B:00:60:08:79:31:AD:22:80:90:94:FB:62:E0:A1:18:FE
Authority key identifier: 6B:56:35:DD:38:02:15:A0:3C:93:07:DA:56:20:6C:56:6B:38:A3:CF
Certificate issuer: /CN=6b5635dd380215a03c9307da56206c566b38a3cf
Certificate serial: 0197B6A1B62F0AB1FC623A1FC3FBCB686896
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft
Manifest number: 12F0
Signing time: Sat 28 Jun 2025 13:02:20 +0000
Manifest this update: Sat 28 Jun 2025 13:02:20 +0000
Manifest next update: Sun 29 Jun 2025 13:02:20 +0000
Files and hashes: 1: a1Y13TgCFaA8kwfaViBsVms4o88.crl (hash: qmjg4Kw9VH38ioz3dQJb2S+qR8nLyjrp4gXMyc8GJes=)
2: pXEOVL3s29ntjLGWnEad02SClcY.roa (hash: 5uijVm/LhBI/XgHLC1W0ZRQPeN6iEyHoyVbJwCUVIKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:b6:2f:0a:b1:fc:62:3a:1f:c3:fb:cb:68:68:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5635dd380215a03c9307da56206c566b38a3cf
Validity
Not Before: Jun 28 13:02:20 2025 GMT
Not After : Jun 29 13:02:20 2025 GMT
Subject: CN=cc7ce45b0060087931ad22809094fb62e0a118fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1d:53:21:2b:4d:a8:92:35:bd:e8:e9:27:49:
0f:00:24:5b:a1:cf:ad:c2:93:1d:bd:ec:ea:0b:b3:
58:94:db:90:41:46:cc:30:b2:3c:76:6a:6e:9f:51:
c3:66:d4:44:72:92:9a:ca:9d:73:16:d4:91:49:17:
d1:0c:ef:2e:ff:28:73:d0:92:1f:74:a2:f1:07:66:
66:73:55:8e:96:35:dd:c4:0c:b5:b6:8d:b8:96:e0:
cd:9e:bd:74:84:d4:fc:74:69:c0:85:82:26:64:f0:
3c:18:35:9f:e8:29:7c:91:b8:2d:64:ae:5d:a6:ce:
42:4a:57:08:b0:11:4c:0e:ac:8f:c5:61:ea:6e:8e:
5d:16:3e:a5:cc:b8:91:0e:01:04:e4:21:ce:6e:bf:
13:2c:26:34:32:37:27:67:de:d3:3f:1b:14:d2:12:
22:65:fb:ed:4d:ea:fc:c0:6f:52:ea:46:88:c3:08:
1a:a8:bd:8c:c4:1f:0c:f6:57:07:fd:f8:6f:da:55:
1e:f0:24:b4:bb:13:5e:9a:71:33:50:0a:2f:b7:be:
10:4f:f1:40:96:b5:e4:c0:a4:e8:bd:4c:d9:6a:2d:
ab:89:43:e0:a9:ac:ee:3e:72:7e:5c:31:04:53:89:
16:b9:01:58:94:d3:6d:ac:92:3a:24:d2:5f:a7:32:
3f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:7C:E4:5B:00:60:08:79:31:AD:22:80:90:94:FB:62:E0:A1:18:FE
X509v3 Authority Key Identifier:
keyid:6B:56:35:DD:38:02:15:A0:3C:93:07:DA:56:20:6C:56:6B:38:A3:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:da:1a:3a:9a:f7:7d:4c:93:40:9b:10:4a:53:6c:35:4d:d0:
cb:21:e6:8c:bd:ca:0f:4a:19:c2:85:21:d0:3b:6e:d3:b3:a6:
78:9a:1e:28:7a:0c:ca:92:3e:e0:a0:c1:a4:c3:e9:4b:7e:e8:
7a:85:d6:21:d5:3a:dd:6e:f2:ac:e1:15:49:3b:fa:b3:df:35:
1b:5a:ca:21:8b:df:6d:31:51:ab:ee:f6:fd:78:d4:45:0c:e0:
1d:4f:04:af:8d:5c:24:2c:7b:c3:f3:ce:59:c1:5b:38:57:37:
6f:ed:5a:11:70:df:ae:05:8f:5a:3c:b1:4e:fe:90:16:5b:af:
5a:60:b5:21:34:c1:dc:23:13:96:63:13:20:5f:08:dc:78:6f:
d1:90:f4:e4:9c:60:2f:e1:6e:1c:69:d2:24:32:f5:f8:16:3f:
3c:59:5b:ba:2f:ef:0a:10:43:e6:c2:64:f4:01:8d:2c:56:b8:
38:6e:d5:64:bd:ab:16:95:ce:99:43:c7:54:0d:96:e9:17:02:
6a:fa:6f:f9:6d:44:0b:8d:a1:2a:ef:6f:e4:89:71:7e:9f:d7:
96:35:5c:1a:2e:40:4f:b6:3b:69:47:24:85:c3:2f:f9:84:f3:
f3:ea:78:12:ca:3a:db:fe:87:5a:68:10:90:44:1d:a0:e0:a3:
4f:56:25:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:23:25 2025 by rpki-client