Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json)
Hash identifier: XxRgkvFUHdh2HjJf3SMTZyUFOq0d4H/6ABdaNOCxYJk=
Subject key identifier: AF:27:E3:BB:FD:AF:18:67:E7:6E:DB:41:E4:E0:80:B2:BA:5A:AE:61
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 01965492AF8C4E2EAC520195CEC5D2BF3697
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 19:00:21 +0000
Manifest this update: Sun 20 Apr 2025 19:00:21 +0000
Manifest next update: Mon 21 Apr 2025 19:00:21 +0000
Files and hashes: 1: Q01X85MGyHMF5rr2gbqyxSbVGJU.roa (hash: 3pLndBzBIS9IcjtzdUX4XacaMZCMolKRG+4KwxWHWEU=)
2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: Z4tFB+luLdTJhQQWGreZgJ4VRup2GqmY5g/jUFkwwnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 19:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:92:af:8c:4e:2e:ac:52:01:95:ce:c5:d2:bf:36:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: Apr 20 19:00:21 2025 GMT
Not After : Apr 21 19:00:21 2025 GMT
Subject: CN=af27e3bbfdaf1867e76edb41e4e080b2ba5aae61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a6:d8:d9:c9:af:3b:2a:25:5f:d6:75:4d:71:
6a:4a:a6:d2:c7:4f:11:70:d6:b9:12:13:3a:16:02:
da:ac:a5:59:ba:59:1a:90:39:63:e5:e9:3f:81:e4:
c5:5c:2e:e4:5b:4e:3f:78:f4:5a:a6:01:c2:fb:30:
b4:25:1f:0e:78:4a:68:2b:d0:bf:4c:62:87:4a:83:
08:62:11:7b:cb:07:2f:4e:85:15:d9:d9:8c:bd:cf:
91:66:fd:b9:7e:fd:30:e5:ba:38:36:89:7b:3e:8b:
a4:8a:d1:1c:79:eb:73:3f:06:f5:26:7b:28:c3:55:
40:2c:e0:0f:4d:78:2a:00:3f:c5:a6:bb:0f:13:9d:
3b:13:d7:c8:fb:f6:cd:13:a6:84:92:e7:b7:23:97:
23:ef:76:07:7b:ca:04:40:48:ce:71:72:81:b8:11:
44:56:84:01:68:c6:ce:24:ba:92:3b:ad:d3:34:84:
51:51:95:1a:b0:2d:59:1a:b1:9e:64:52:51:8e:d5:
fb:71:cf:9f:d6:d7:be:85:92:ff:83:47:dc:4a:63:
e8:cd:ac:14:82:fc:dc:a8:83:7c:8b:10:57:ce:f8:
63:6e:5d:44:d0:21:ce:0c:62:d6:9a:20:7e:44:23:
15:cd:8a:35:70:e9:f0:fb:6e:d4:da:56:a2:22:72:
e3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:27:E3:BB:FD:AF:18:67:E7:6E:DB:41:E4:E0:80:B2:BA:5A:AE:61
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:e3:c3:08:8b:4b:ad:e2:26:61:8f:ad:bc:28:70:f5:ed:83:
85:b8:6a:32:43:c2:6a:6f:d0:3f:57:0d:18:18:d9:5c:56:3c:
ed:9c:4d:1e:8b:41:0c:98:af:ab:e5:47:94:7f:d5:0a:ad:0c:
ac:cf:df:2f:04:21:51:a8:40:44:04:7b:ef:10:40:f6:53:c8:
3c:8e:70:2c:4d:20:1c:96:6e:d7:48:b9:3f:0e:d3:c9:9a:9c:
6d:d4:ad:74:0c:29:9b:6c:59:6d:1a:42:f7:0c:d1:e1:70:c6:
ad:18:79:77:f6:db:97:d7:7e:54:38:ca:8a:33:c9:08:ca:a6:
53:53:a8:80:a7:bf:82:3f:ff:c4:24:64:93:d8:99:4b:13:55:
f1:37:aa:1d:0b:7c:ba:2d:eb:cc:02:85:1c:3a:9f:5e:9b:c5:
2e:d7:72:06:8b:e6:e4:8e:ff:7c:7c:dd:bb:32:35:f1:63:e9:
7c:50:fc:7b:fc:fe:ae:72:86:b3:e5:3e:62:ab:41:b1:66:1c:
06:c4:da:a0:08:ea:f4:49:89:08:79:95:f8:77:3e:ed:f5:fb:
1d:f0:99:ab:d6:0d:05:bd:ed:07:2d:db:0a:4f:81:a4:62:f5:
42:d2:7f:9e:23:11:9c:1d:e8:89:52:f3:fe:39:59:be:7f:a1:
14:a6:9a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:42:17 2025 by rpki-client