Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
File: AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft (raw, json)
Hash identifier: WbQbKJ23MrEXUjYuc6Lrt5+WXzd4jtUO4wzOaSE/JMk=
Subject key identifier: 7D:E0:D3:BF:80:7B:B6:95:1F:7E:1D:AF:79:7D:37:75:FE:07:1C:B0
Authority key identifier: 01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
Certificate issuer: /CN=017c90654653ac150028562b32431491b52147d1
Certificate serial: 01964A0F9AB9A0C1AFDC2E49C0BC741167E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
Manifest number: 0CD7
Signing time: Fri 18 Apr 2025 18:00:58 +0000
Manifest this update: Fri 18 Apr 2025 18:00:58 +0000
Manifest next update: Sat 19 Apr 2025 18:00:58 +0000
Files and hashes: 1: AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl (hash: sq7VL0lVwDrnyBGMo3/XnXeYSGrdGhCjE37HuDL8x4s=)
2: L2lE8nOnlyxmaD3x1ZRACrDCMP8.roa (hash: ZXu28qkdGNNh4liAxQWetF6CZII1uCDb6IiGf6WW5Vw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 18:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:0f:9a:b9:a0:c1:af:dc:2e:49:c0:bc:74:11:67:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=017c90654653ac150028562b32431491b52147d1
Validity
Not Before: Apr 18 18:00:58 2025 GMT
Not After : Apr 19 18:00:58 2025 GMT
Subject: CN=7de0d3bf807bb6951f7e1daf797d3775fe071cb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:03:8e:d7:30:59:a2:de:ac:ed:b4:d2:06:ae:
70:a5:01:58:a6:52:4c:c5:d6:36:ff:dd:5d:c5:ef:
2d:77:75:71:f4:8e:bd:21:2b:ca:6b:94:79:2f:88:
a6:21:08:75:3b:bc:02:00:f3:49:d1:dc:7c:b4:7b:
ba:f0:01:5a:24:42:64:96:6b:58:7b:50:f6:93:62:
e7:0e:a2:b5:65:53:8e:fd:20:69:64:dd:4b:d3:13:
f8:fa:9a:8a:f4:c5:07:9c:2d:7a:9f:ea:ef:96:97:
d3:1f:5a:68:d1:b8:c4:52:a7:1a:9c:60:48:25:03:
3e:29:5e:3e:44:39:fc:b8:ae:e1:4d:71:01:0f:a5:
3d:3f:5b:ae:54:c6:32:23:06:a1:42:68:43:25:7a:
04:df:42:d0:e1:37:c1:50:e6:27:3e:0f:87:07:a3:
62:b2:a4:36:c6:b8:82:46:2d:46:25:00:87:c9:9a:
b5:88:b2:31:9a:4f:1f:d0:cb:78:0b:52:6f:a3:e3:
06:e0:0c:ff:84:18:df:d3:32:eb:d8:d9:55:30:3d:
7d:d9:95:8c:53:43:16:a2:15:83:39:8d:0f:ae:23:
f7:9b:1e:96:ab:cc:72:b6:1c:88:6f:b5:04:46:4c:
01:2b:44:14:a3:87:d2:a4:81:66:88:0b:db:d4:b7:
98:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E0:D3:BF:80:7B:B6:95:1F:7E:1D:AF:79:7D:37:75:FE:07:1C:B0
X509v3 Authority Key Identifier:
keyid:01:7C:90:65:46:53:AC:15:00:28:56:2B:32:43:14:91:B5:21:47:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXyQZUZTrBUAKFYrMkMUkbUhR9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/35b7e5-8864-4759-bb86-7013a6c43985/1/AXyQZUZTrBUAKFYrMkMUkbUhR9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:03:81:a4:c0:64:1d:0f:de:06:c7:1e:6b:f2:12:03:d8:c2:
87:e5:70:c8:3c:49:05:33:9d:81:02:ed:a6:98:95:75:87:2d:
b8:32:36:ff:4f:9e:53:4f:36:6f:99:0a:a9:d4:94:da:51:0f:
93:b6:b0:d2:3b:02:b5:aa:31:5a:29:b1:7e:46:36:da:82:14:
df:1b:8f:8c:f1:f5:f2:e1:cd:51:70:7e:60:2a:b2:1d:46:bc:
46:a9:82:6d:a2:65:c2:47:43:bb:bf:6b:0b:a4:e5:27:89:3e:
3e:d1:f9:6d:26:05:b0:1d:a3:47:38:40:27:4c:fc:4c:cf:00:
a6:bb:d0:bc:10:39:aa:3d:13:53:b7:5f:5a:fe:db:c9:b6:df:
2f:27:b2:d7:88:65:e2:05:de:19:cf:a3:e5:fb:81:e4:a6:e1:
49:e7:87:d0:7e:cb:7f:50:f8:95:13:68:d2:fd:2c:ab:8e:a3:
3c:56:83:2e:07:15:54:6f:84:ed:26:98:af:0b:73:e8:68:0c:
da:15:b4:49:de:15:c3:ae:7e:ca:be:fb:9f:a2:1b:50:6a:96:
d1:2d:da:17:89:ff:cf:77:0a:d2:88:bc:db:c8:4b:e8:9c:b8:
25:07:5d:6c:20:f6:b4:5f:46:17:00:e5:74:eb:2f:1c:d8:ed:
9f:00:00:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 02:08:38 2025 by rpki-client