Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
File: rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft (raw, json)
Hash identifier: uqW2Agy49T/PmEJX8+xqs0IRSfvgtmqq/DeCxa85KqY=
Subject key identifier: 0B:33:80:9B:E8:FE:97:E4:33:F1:58:04:44:E8:02:82:5D:28:D5:58
Authority key identifier: AC:08:81:5E:8C:65:03:60:1F:25:4C:AB:37:1B:EC:47:1B:D7:EA:A6
Certificate issuer: /CN=ac08815e8c6503601f254cab371bec471bd7eaa6
Certificate serial: 01964444685CE970080F39A869009757E2B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
Manifest number: 0904
Signing time: Thu 17 Apr 2025 15:00:55 +0000
Manifest this update: Thu 17 Apr 2025 15:00:55 +0000
Manifest next update: Fri 18 Apr 2025 15:00:55 +0000
Files and hashes: 1: QsrgGtjjVfYUdnjVBy3FKVxOReM.roa (hash: /bct/glFTr5+fLpXRU1WLa/LnjLyQigL1zGVjyxrPQI=)
2: rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl (hash: i/K4w4MMwIFt3fSgEb7+kDTAASCT08NmO17Uj3lgiPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 15:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:44:68:5c:e9:70:08:0f:39:a8:69:00:97:57:e2:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac08815e8c6503601f254cab371bec471bd7eaa6
Validity
Not Before: Apr 17 15:00:55 2025 GMT
Not After : Apr 18 15:00:55 2025 GMT
Subject: CN=0b33809be8fe97e433f1580444e802825d28d558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5e:13:63:50:06:1e:69:87:5e:25:48:29:15:
a0:e5:d6:b6:a6:31:94:57:84:06:5c:3b:96:d5:17:
d5:d5:ca:13:9e:d4:01:32:6c:e1:3d:42:ce:7c:45:
78:5b:0b:8b:02:8e:23:64:b5:87:1b:bd:98:22:a5:
55:50:47:04:4b:95:c7:d2:15:40:90:5b:29:51:b5:
11:2c:23:14:89:c0:ad:36:e0:51:73:71:48:16:74:
83:5a:3f:df:de:31:e4:28:e0:b8:a3:04:0a:96:70:
c3:c6:94:a7:e6:a9:a4:5a:5d:d9:39:71:80:08:2e:
02:84:c2:6b:da:be:05:be:02:15:0e:b8:a7:bb:ba:
09:0d:e3:9f:4a:37:b8:c1:ee:76:00:45:a0:33:7c:
8b:db:06:89:bb:f6:39:fc:5d:a7:31:34:7f:3d:ac:
c3:ec:d2:70:11:98:22:28:ff:35:63:79:5f:61:ef:
85:ca:66:e0:93:a8:9c:ef:24:b7:08:bd:1f:32:c3:
e6:1d:41:44:12:d6:b4:af:10:d1:83:48:26:f9:5f:
89:02:5c:57:71:82:15:47:54:62:e5:8f:94:d8:2e:
61:f8:2a:f2:05:f2:2c:86:d4:bc:14:0a:0d:93:81:
28:02:cd:9b:95:74:a3:3e:cf:c2:77:ae:c6:fe:8c:
34:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:33:80:9B:E8:FE:97:E4:33:F1:58:04:44:E8:02:82:5D:28:D5:58
X509v3 Authority Key Identifier:
keyid:AC:08:81:5E:8C:65:03:60:1F:25:4C:AB:37:1B:EC:47:1B:D7:EA:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:b6:29:61:92:3f:48:81:b3:02:04:ca:cb:e5:56:b5:8d:5d:
10:78:59:48:d4:9f:3d:dd:ba:54:3a:f2:e4:37:99:3d:de:bf:
b2:c5:58:7a:cc:f9:de:4b:88:08:fa:e9:18:98:33:ec:61:df:
c3:bc:a1:9a:b0:e3:06:c3:3d:e2:31:73:a0:29:1e:73:21:41:
06:57:75:c4:0f:5d:65:09:7c:97:47:5b:6b:6c:cf:7d:56:ec:
ea:13:f1:c6:14:5b:31:7f:3e:23:20:91:ab:02:be:d1:38:46:
ad:51:b4:1e:f0:d2:d4:de:02:ad:ce:5a:e1:18:96:23:a6:14:
66:e5:07:b1:ec:e6:4d:ff:e1:4f:bf:09:69:66:75:4b:83:e1:
22:fa:66:c5:4b:85:2d:a8:57:9b:1e:94:1e:de:08:1f:e5:ea:
37:95:0f:e2:59:b5:64:3b:09:33:06:e1:81:5c:ca:79:d9:09:
8c:74:01:ee:7f:94:90:6e:46:06:fe:35:80:52:96:aa:d3:58:
a5:72:d6:fe:3a:cb:d2:8c:87:e4:4a:57:96:c7:a4:b1:03:8f:
1a:bb:9a:7d:d8:dd:01:25:77:d8:b9:bb:e8:48:f6:18:68:0e:
25:8e:46:fe:ce:77:58:12:61:29:86:d5:5e:ac:d2:21:96:b6:
b7:d0:d9:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:44:58 2025 by rpki-client