Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
File: aJQuPste6nkqdvray-wBqFaOl_Q.mft (raw, json)
Hash identifier: EwdgpuXe3zigb1ySGXZJZNAnFLTQ1NUj9QCKgzZ5kIM=
Subject key identifier: B2:34:12:B2:9B:88:0E:22:E5:99:62:E1:82:D3:6A:A9:4F:F8:56:04
Authority key identifier: 68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
Certificate issuer: /CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Certificate serial: 019654C9988FA4E1A8C3C45B2711F09F02D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 20:00:20 +0000
Manifest this update: Sun 20 Apr 2025 20:00:20 +0000
Manifest next update: Mon 21 Apr 2025 20:00:20 +0000
Files and hashes: 1: 2I7Ug_0TKUirYBKdCRFB3X-yPVM.roa (hash: OuAKBuCtiZrdtqQo3Ia+YQ9DdlyXDqDuhn9BW+I9wGc=)
2: aJQuPste6nkqdvray-wBqFaOl_Q.crl (hash: MA7BtADVOH9NQ5XScwnYkYvwFaUhifnDQ1YQzZnqhl4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 20:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:98:8f:a4:e1:a8:c3:c4:5b:27:11:f0:9f:02:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Validity
Not Before: Apr 20 20:00:20 2025 GMT
Not After : Apr 21 20:00:20 2025 GMT
Subject: CN=b23412b29b880e22e59962e182d36aa94ff85604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:35:db:cc:95:67:8d:f6:7a:ff:d7:c7:ba:7a:
c1:c3:5e:f0:06:2a:cb:9b:09:ec:6c:34:e5:b7:11:
5b:4c:61:78:15:d5:52:91:e8:ba:fb:eb:25:63:60:
bc:9f:9c:2e:28:b9:bf:8f:14:e7:fc:24:25:31:c0:
9a:21:de:ad:4b:ef:b3:ac:eb:35:56:7d:5b:ea:45:
f6:76:de:7f:c2:67:54:c0:ed:8a:40:0d:5e:fe:10:
e7:7a:8a:97:b9:e5:e6:1d:50:92:e3:9b:6c:5d:a6:
1c:34:f2:52:83:8b:d8:e3:97:26:d0:aa:72:08:0e:
09:2d:ae:ac:f9:76:17:ef:ba:2e:a6:b4:fd:77:03:
42:c7:49:00:3c:e1:02:b6:0a:45:5d:c5:12:3d:8b:
9f:0b:1d:81:59:4c:39:bf:92:b5:97:b6:32:df:ad:
f0:b8:bf:e0:21:98:bc:46:a4:7f:62:3d:40:fc:08:
b4:3f:2c:4b:77:28:60:2a:17:c4:da:b7:31:dc:a4:
bc:f4:a8:fc:62:68:b8:11:23:dc:ed:03:86:29:b2:
17:16:df:6f:c5:2c:44:06:65:d0:9f:ff:54:3a:fd:
55:8b:4c:0d:d9:e4:1e:57:ea:a2:28:fa:1b:44:c6:
83:55:f5:00:f8:e6:19:42:55:b8:8c:cd:42:bd:f5:
f4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:34:12:B2:9B:88:0E:22:E5:99:62:E1:82:D3:6A:A9:4F:F8:56:04
X509v3 Authority Key Identifier:
keyid:68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:1c:fd:96:9a:c1:58:fe:bc:f8:01:fa:64:77:d3:19:96:c3:
a9:3e:c1:fd:82:10:3a:9f:6b:d7:2b:08:ba:d3:ef:16:52:c6:
f8:d4:dd:3e:bb:a4:ef:85:be:8a:74:00:cb:75:dc:59:95:a9:
bf:e6:f6:af:30:04:f5:36:b9:42:4c:81:f1:eb:a4:ec:12:02:
b2:ce:64:63:8c:12:c8:9f:ee:d1:07:c7:1d:a2:f6:5d:7e:27:
a1:c8:99:b7:6a:56:5a:f3:c7:fe:f3:cf:5a:ab:e0:a1:6d:be:
ba:e1:85:9c:8b:64:be:db:d9:8f:89:98:ed:4a:6b:c8:36:67:
00:58:49:30:b6:16:9b:3e:7a:b3:52:bb:90:25:fc:96:30:69:
c2:4b:9e:e9:50:ab:23:fd:5f:99:1a:7c:ac:97:04:a2:d6:f2:
ee:f2:d0:f9:64:ce:45:9c:05:84:6c:36:47:73:40:bb:1b:7e:
a0:2a:2d:d6:74:4c:9f:15:a8:90:0a:4e:e3:2b:fc:b9:4e:be:
1a:12:d8:1d:2f:63:7e:53:2f:a5:f6:2a:64:71:a9:a8:e4:62:
13:43:5b:28:77:f1:ea:dd:a0:93:75:62:7a:09:59:2f:98:d3:
73:5e:28:89:df:ae:32:da:02:0a:ba:19:55:4f:85:af:23:41:
c6:9a:4a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:50:59 2025 by rpki-client