Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
File: AhfGZs2iPpINFLkK6TY3EzUKrB4.mft (raw, json)
Hash identifier: uWpAkEn39WWpt+8e1d/ZOCSeFO81vnGqbAWUrWGDKpA=
Subject key identifier: EB:8E:1D:F0:2E:9F:D9:0C:8B:72:2A:43:76:46:D7:DB:86:5A:56:49
Authority key identifier: 02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
Certificate issuer: /CN=0217c666cda23e920d14b90ae9363713350aac1e
Certificate serial: 0197B77C07D5D7DFCA2E2DC1490A01A83904
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 17:00:48 +0000
Manifest this update: Sat 28 Jun 2025 17:00:48 +0000
Manifest next update: Sun 29 Jun 2025 17:00:48 +0000
Files and hashes: 1: AhfGZs2iPpINFLkK6TY3EzUKrB4.crl (hash: EXh1tPjVRr6qXmeMYWIqq40hYzrzmkCFpqHF+jIuY5Y=)
2: osyzbtU7GZmaeY_CNmdQy5Vz8jw.roa (hash: /Wf83f8E6EuxQUr3auZsag/VGfFdi1UD8Jonkresr4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:07:d5:d7:df:ca:2e:2d:c1:49:0a:01:a8:39:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0217c666cda23e920d14b90ae9363713350aac1e
Validity
Not Before: Jun 28 17:00:48 2025 GMT
Not After : Jun 29 17:00:48 2025 GMT
Subject: CN=eb8e1df02e9fd90c8b722a437646d7db865a5649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:2c:d6:f7:89:ab:8d:73:f2:a7:da:2e:e7:0d:
02:42:2d:cb:d1:c0:44:59:17:f9:94:60:c6:b4:74:
63:dc:11:63:da:8a:50:4a:6f:d0:78:89:ae:ef:d9:
9f:95:23:9a:65:73:a8:a4:a7:c1:69:6c:57:13:97:
26:53:fd:1b:3a:2c:67:d2:da:af:83:c6:6b:46:a3:
99:2a:14:75:5a:e0:dc:4c:b9:55:16:fa:c8:2f:c2:
ab:98:ef:59:2d:d6:f4:2a:31:53:b8:eb:43:07:9d:
e9:51:5a:79:44:5f:26:01:1c:2e:f2:1e:ab:3e:c0:
74:d1:07:b0:35:d2:3c:e3:4b:80:0b:14:12:97:54:
9b:9f:c5:a7:01:51:ac:47:d2:e2:fa:eb:3c:82:7a:
f6:ea:f7:3a:f1:9c:90:7d:a7:de:1f:df:ab:d9:01:
cb:8f:6e:24:e2:c8:15:d0:0c:d2:0f:50:5a:a1:7b:
f6:2a:df:60:38:9f:76:44:1c:62:c8:6b:4b:1b:5b:
ba:0f:56:24:cd:2c:a8:0f:cf:ba:e2:fc:f3:2f:67:
61:c6:c0:1a:bd:68:86:81:80:48:43:44:87:44:50:
dd:73:d9:84:d6:8c:d5:05:56:9e:a6:4f:ee:a8:80:
39:58:2d:6f:b7:d3:ce:2c:36:0b:31:2d:5d:9d:96:
a5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:8E:1D:F0:2E:9F:D9:0C:8B:72:2A:43:76:46:D7:DB:86:5A:56:49
X509v3 Authority Key Identifier:
keyid:02:17:C6:66:CD:A2:3E:92:0D:14:B9:0A:E9:36:37:13:35:0A:AC:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhfGZs2iPpINFLkK6TY3EzUKrB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/cfa0b5-e1a1-41ff-88cb-029715de4c6f/1/AhfGZs2iPpINFLkK6TY3EzUKrB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:61:ed:03:cc:0c:98:f9:85:03:f1:c6:7c:d0:62:a5:c0:a9:
34:a0:49:a1:46:ed:26:f5:49:9f:1c:82:c2:84:92:f7:2f:95:
28:58:da:f4:80:0b:de:0f:c5:bd:c4:18:6d:27:23:b8:6a:87:
a0:ce:42:46:df:a4:f2:d6:b6:93:1b:da:27:40:45:fe:af:f8:
a8:b2:2c:65:e0:7e:b5:f4:fb:cc:7a:2c:3e:bd:82:f5:d8:d8:
5a:39:87:92:0c:dd:29:73:32:32:78:23:91:f4:42:d8:38:a3:
28:cf:8a:1c:91:05:6f:a3:95:05:0f:65:36:4a:52:48:cd:2c:
c7:2d:88:ef:e8:5a:d5:ea:39:3d:3c:ac:a5:b7:66:2a:9a:70:
82:06:36:48:61:70:8c:99:02:8a:18:31:70:bd:4c:42:36:64:
ce:7a:86:aa:70:db:45:47:4e:ab:09:73:84:12:d4:88:e7:cf:
03:fd:e7:1b:57:e2:e0:5c:f8:8b:4e:1b:16:53:aa:16:b2:0b:
32:46:b0:74:27:e5:68:8a:85:fc:dd:42:d9:cc:6f:46:bc:14:
91:33:bc:51:0f:7a:ee:9c:05:a9:8a:76:73:a5:8a:13:fa:b6:
8d:e0:a3:6a:e0:25:91:e3:04:9d:34:5e:0b:9e:66:a4:f7:de:
d1:15:61:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:37:20 2025 by rpki-client