Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File: 4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier: /hmuYArFZkA+5TM47EHbVUZ2PJS1w456RZ3pOh2uMVc=
Subject key identifier: F0:A2:A0:A1:17:CE:6D:80:16:1E:13:9B:DE:C8:28:C1:B5:F1:48:C0
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer: /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial: 019645203B61FCF469F1CF2B735CB1743962
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number: 04BF
Signing time: Thu 17 Apr 2025 19:01:02 +0000
Manifest this update: Thu 17 Apr 2025 19:01:02 +0000
Manifest next update: Fri 18 Apr 2025 19:01:02 +0000
Files and hashes: 1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: +9+4eTPtMADaCLmEAkeYIL3k9fTsN56B/VR78ykuHGQ=)
2: IrEzCg-L6ChV6NO0z_pSKTvObkE.roa (hash: BAxTmTfKNgnausi613sLgqp7n2C4MuqhHvDS7/1g8aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:20:3b:61:fc:f4:69:f1:cf:2b:73:5c:b1:74:39:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Validity
Not Before: Apr 17 19:01:02 2025 GMT
Not After : Apr 18 19:01:02 2025 GMT
Subject: CN=f0a2a0a117ce6d80161e139bdec828c1b5f148c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:00:7a:e0:b9:69:75:4a:7d:30:e4:d5:1b:52:
2e:e5:f4:f5:f9:7e:a2:4f:b9:45:03:da:cc:f7:40:
a9:aa:6e:3d:20:f6:f6:85:d9:96:f0:22:fa:f8:c3:
5f:7c:a8:aa:80:2c:7e:37:26:0a:db:af:ad:89:a6:
27:d6:56:f8:d7:44:d7:da:ce:a8:29:8d:66:c2:d0:
d0:e2:f0:73:d2:ff:a0:7c:99:33:e1:47:ff:05:da:
be:98:bf:42:4f:8e:ef:c1:b9:81:b1:fb:b3:7a:ed:
b7:8d:37:6c:b3:db:ac:7d:2e:85:9e:6b:a6:60:2b:
ae:db:39:30:71:35:f5:48:ca:77:c6:10:f7:31:35:
a5:bc:4a:d4:4a:e6:c4:93:d4:4a:63:9d:a0:79:e7:
7b:ea:57:5b:22:05:bc:4a:25:2d:ca:5f:c3:fe:7f:
80:db:61:77:53:fd:f8:e1:e8:5c:5e:76:b6:5e:fa:
ba:37:14:9b:9e:1e:53:63:ba:22:55:1f:d4:9a:81:
a8:03:7d:cf:61:50:ae:22:0c:42:c6:a3:91:3f:06:
e9:8b:3a:05:f9:b4:70:39:84:b8:0b:36:1c:bf:c6:
9e:0e:50:2e:0f:51:ad:da:56:0c:d3:a8:db:47:8c:
83:fa:59:ec:5e:d2:79:8c:0e:57:5a:54:c8:48:4a:
6f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A2:A0:A1:17:CE:6D:80:16:1E:13:9B:DE:C8:28:C1:B5:F1:48:C0
X509v3 Authority Key Identifier:
keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:76:58:43:2e:4b:66:bf:42:83:8e:87:ef:7e:ac:fe:6a:5d:
97:58:64:e8:59:3d:ae:7b:3f:b0:83:48:7e:3a:9a:39:94:a2:
78:99:39:fb:a4:a4:ad:47:64:36:04:29:db:3d:2c:52:c1:37:
f9:32:4e:e2:29:d4:eb:79:d9:04:4d:bb:f0:42:d2:fe:9d:b6:
3f:42:7a:e7:e0:24:90:f4:24:8b:36:34:05:cc:2a:23:4b:0f:
89:ef:9a:71:4e:48:b9:9e:fb:b3:3f:7d:ca:96:cc:26:23:75:
84:b4:48:15:67:68:9d:ec:b2:a0:9b:12:dd:6c:b9:56:74:b1:
44:ba:1a:b6:ac:8b:7b:ba:67:7f:7d:88:cf:ca:6a:0f:ed:70:
9e:97:a9:1d:a0:19:ab:98:6d:59:86:d8:27:f6:8b:08:64:04:
4c:ed:18:5d:41:f1:07:90:a6:a2:1a:12:19:88:f6:8f:dd:df:
a7:48:62:d5:6a:fc:06:13:9f:fc:55:4a:66:05:ad:3d:0e:75:
3a:58:59:e3:e8:38:68:04:d6:e5:a7:72:29:48:aa:a0:2e:af:
59:84:15:90:6b:9d:3b:fd:57:be:76:78:01:2d:f8:8c:44:ef:
f3:fc:d5:19:99:ae:0e:3f:8c:9e:f0:9a:3e:39:05:3c:c8:7c:
ab:14:84:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:46:23 2025 by rpki-client