Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
File: Afp6rPiShM693j1MEkYvxE3rw4Q.mft (raw, json)
Hash identifier: zTs8OraAmHRd84hYvx+Sn0+1iTS6nLSS07kKW3zqG1k=
Subject key identifier: 40:93:B9:5A:16:6C:F8:50:68:AE:83:6E:44:07:6B:9E:6C:CA:B9:36
Authority key identifier: 01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84
Certificate issuer: /CN=01fa7aacf89284cebdde3d4c12462fc44debc384
Certificate serial: 01965DCDAEC4DBDFB5010D15208D4383DBE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
Manifest number: 0A9E
Signing time: Tue 22 Apr 2025 14:01:22 +0000
Manifest this update: Tue 22 Apr 2025 14:01:22 +0000
Manifest next update: Wed 23 Apr 2025 14:01:22 +0000
Files and hashes: 1: Afp6rPiShM693j1MEkYvxE3rw4Q.crl (hash: s6ve+lSsw0/xoZo8SGqqATHQomw/H55ulVnsuOpzUAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:cd:ae:c4:db:df:b5:01:0d:15:20:8d:43:83:db:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01fa7aacf89284cebdde3d4c12462fc44debc384
Validity
Not Before: Apr 22 14:01:22 2025 GMT
Not After : Apr 23 14:01:22 2025 GMT
Subject: CN=4093b95a166cf85068ae836e44076b9e6ccab936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cb:4e:3d:a4:51:9d:a7:de:01:e2:db:fc:23:
4f:5e:e6:4c:83:8b:b4:ab:a8:c1:96:dd:dc:0b:76:
1b:7d:a2:f8:df:ff:70:9d:b3:37:b4:d6:75:42:5a:
09:bd:8d:4d:e0:47:f9:ac:76:ad:80:54:a4:ac:ab:
c8:2f:a9:0e:03:60:dc:fe:08:ec:9e:1c:1e:fb:32:
dd:5f:27:23:54:6c:31:ab:23:34:22:61:2c:47:75:
05:e8:64:d1:4e:06:9b:30:a5:cd:6b:87:d8:47:f9:
6c:7d:84:2c:79:43:eb:e0:c4:2e:6e:30:bd:fa:20:
cf:c9:cd:ea:bc:9f:86:45:76:75:e2:4e:62:44:fd:
e9:8a:f1:8e:f4:6f:80:37:ca:4f:20:1d:fb:ed:2f:
5e:f2:92:09:70:25:ee:79:ca:86:23:46:69:95:ee:
e3:48:5a:9d:dd:58:31:29:95:81:7d:a4:01:e2:e0:
bc:90:7e:ef:85:dd:3c:13:3c:98:a2:a8:59:6f:d0:
22:c4:b1:51:89:8a:ac:24:f5:0d:ae:f4:c7:df:47:
86:b0:82:2b:43:34:10:47:ef:89:cc:d9:35:5e:f1:
c0:01:57:98:43:65:e3:62:d7:b3:60:6b:a5:e0:86:
78:41:55:70:fd:f5:01:7f:f9:b1:b3:50:60:83:22:
4d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:93:B9:5A:16:6C:F8:50:68:AE:83:6E:44:07:6B:9E:6C:CA:B9:36
X509v3 Authority Key Identifier:
keyid:01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:4c:db:9e:44:51:e8:e3:62:2e:12:11:7a:59:7b:5e:35:e4:
06:0c:6b:64:d7:ed:c1:c0:19:09:90:e2:e9:f7:8c:6e:16:30:
f3:9d:ed:d5:10:29:a3:5d:52:cd:de:f8:9b:d3:7f:20:7f:73:
f6:48:45:42:87:78:0a:f1:8f:08:2e:25:b2:25:56:37:18:8b:
e2:bf:37:ef:df:61:f1:2c:fc:19:af:d1:bb:85:1d:3a:10:a8:
bf:84:14:28:38:66:92:39:e9:b5:7f:bd:06:f2:00:ee:ed:7d:
1d:a3:d0:f9:e1:c3:e6:98:e8:02:52:01:69:73:8b:7e:c2:8a:
7f:d9:f3:30:ca:b8:f7:6f:f1:b1:15:0e:69:f3:d1:57:75:c5:
38:ac:07:6b:a6:d0:88:c1:4c:74:74:01:62:88:e2:00:89:0f:
f5:df:6f:23:c9:ee:a7:b5:6b:98:ea:57:42:76:cd:35:8a:06:
14:64:4e:04:46:2f:16:9c:93:d9:10:59:08:69:67:a7:59:2b:
e8:10:3e:db:91:3f:4e:9b:91:04:87:01:b2:e0:1d:07:5f:bf:
6c:10:8b:1a:87:b1:e8:47:36:c7:ee:42:f6:40:d0:75:14:6f:
d3:7f:fa:ef:f2:65:da:e8:3f:be:58:46:26:d1:42:07:71:c8:
37:ea:c1:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:26:29 2025 by rpki-client