Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: dJ13Na6+dfiRxdhKQEGb7r60ALey4vecn6rPnvsw1js=
Subject key identifier: 4A:2C:44:C6:30:74:8A:28:5A:B6:AC:B1:8D:F1:E4:E4:42:6C:9C:7F
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 01964556848A90F5587F099B24203103658D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 14F6
Signing time: Thu 17 Apr 2025 20:00:20 +0000
Manifest this update: Thu 17 Apr 2025 20:00:20 +0000
Manifest next update: Fri 18 Apr 2025 20:00:20 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: 44v7fuoWkFvvzu35F2+SE0fKer0T50kjKZyErdJt/9U=)
2: nJZ2h-CE2RpObbNuUbuQAsAe9wo.roa (hash: XjXLrJ8ZAfMXOtdh84OSK02UeKqf16aa2sgmGiELBao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:56:84:8a:90:f5:58:7f:09:9b:24:20:31:03:65:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: Apr 17 20:00:20 2025 GMT
Not After : Apr 18 20:00:20 2025 GMT
Subject: CN=4a2c44c630748a285ab6acb18df1e4e4426c9c7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:09:42:26:8b:ca:b5:a8:b1:7a:76:ab:e8:c0:
a5:ce:d1:b8:b3:f5:49:cb:d9:a3:e0:37:02:be:ce:
b6:b5:8e:24:4c:b6:d2:4b:9f:a6:2f:ad:5e:85:88:
61:a2:91:9d:36:a5:16:ff:48:86:91:ea:df:9d:49:
47:e5:54:51:ab:07:9e:28:6d:22:5b:60:bf:d7:6c:
a2:0e:8a:4e:db:b8:f3:8c:b0:a1:be:be:a3:09:3c:
03:43:45:65:14:c2:02:5c:09:26:f4:3e:58:7f:9a:
c9:78:b6:47:21:93:e1:20:a2:0d:24:5f:22:99:5a:
92:d7:bb:59:a0:a9:39:03:42:f5:48:96:ff:e6:5b:
a4:d1:d0:83:cd:9f:e4:48:90:19:15:6d:ed:2c:2f:
9a:f3:bc:d9:f3:d4:a9:9d:78:c0:0a:80:d4:51:6f:
a2:f9:f0:5f:cf:76:25:be:a3:ae:87:07:2c:e7:d0:
cf:fd:7e:db:43:59:e0:dc:48:8f:29:ab:b0:f9:48:
40:44:7a:96:51:af:0f:ed:53:16:13:87:75:cf:fe:
d9:ec:59:38:13:32:9c:b1:7a:71:a9:7e:76:97:20:
1a:a9:19:45:a8:f8:00:53:da:7d:0a:db:d5:32:42:
49:6a:20:53:7a:fb:fa:34:c7:90:58:f9:23:0e:bc:
5b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:2C:44:C6:30:74:8A:28:5A:B6:AC:B1:8D:F1:E4:E4:42:6C:9C:7F
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:1e:4e:df:da:17:75:89:20:d4:4a:a7:f9:d8:6c:e3:26:2b:
22:1f:f2:69:90:66:c5:54:c6:78:95:ec:fb:f5:12:b1:75:ab:
fc:43:5b:ba:e2:86:1f:9b:a6:c9:db:50:e0:12:70:0f:62:99:
f3:90:3f:d2:37:59:85:35:3f:5f:f0:31:cd:91:db:6b:ab:a6:
9c:fc:15:50:0d:cc:d9:85:f2:fb:0c:dc:23:18:47:48:05:f9:
31:3c:05:8d:ee:1d:1d:b0:5a:28:f3:76:91:bc:fa:b3:e2:ed:
13:29:a2:94:10:b4:d7:85:7d:72:d0:53:07:94:a9:e0:17:55:
28:50:2a:90:5c:48:b1:18:db:47:60:77:46:dc:7b:03:7b:e7:
54:b5:22:cc:1c:19:58:59:6d:0c:dc:f5:31:19:c5:c6:f9:be:
a2:3d:5a:f6:92:25:98:69:e0:82:17:dc:15:89:d4:de:83:a9:
69:df:2e:3b:b3:b4:47:2c:ce:dc:ad:67:3b:45:ca:f8:3b:76:
6f:1c:e0:e2:db:0f:b3:99:5f:64:f9:53:62:2b:3e:6b:41:de:
b1:88:e0:c1:7c:7e:db:f6:b8:0c:62:f8:0c:9c:6a:2e:1d:dd:
6b:01:94:73:b7:96:e6:30:57:3e:b4:f3:c1:06:7c:e1:61:71:
4d:e6:a7:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:40:22 2025 by rpki-client