Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.mft
File: afM-l5tD6I0OXsp5h5R9sh73yrk.mft (raw, json)
Hash identifier: CSuQHzqweTQMG+nr3vZpMJp1F7ckGSVjYm9ycm6Ft68=
Subject key identifier: EB:6A:BE:CC:56:65:38:F5:E3:4D:07:F9:81:1D:63:98:7A:11:7A:FD
Authority key identifier: 69:F3:3E:97:9B:43:E8:8D:0E:5E:CA:79:87:94:7D:B2:1E:F7:CA:B9
Certificate issuer: /CN=69f33e979b43e88d0e5eca7987947db21ef7cab9
Certificate serial: 019655A55492C9CF03614AB9BD8930001801
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afM-l5tD6I0OXsp5h5R9sh73yrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.mft
Manifest number: 03B7
Signing time: Mon 21 Apr 2025 00:00:20 +0000
Manifest this update: Mon 21 Apr 2025 00:00:20 +0000
Manifest next update: Tue 22 Apr 2025 00:00:20 +0000
Files and hashes: 1: afM-l5tD6I0OXsp5h5R9sh73yrk.crl (hash: a1KityHia3wYTNC9fQs6gvnDZzraAonacwTvrC3kG8I=)
2: rjuN-ZTOCGAomaycIkzHFBIupdk.roa (hash: mpitT9m9PBhweeULsMgo7mL5tvByadSSpZctsThk9Hg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/afM-l5tD6I0OXsp5h5R9sh73yrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:54:92:c9:cf:03:61:4a:b9:bd:89:30:00:18:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f33e979b43e88d0e5eca7987947db21ef7cab9
Validity
Not Before: Apr 21 00:00:20 2025 GMT
Not After : Apr 22 00:00:20 2025 GMT
Subject: CN=eb6abecc566538f5e34d07f9811d63987a117afd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fd:f1:d0:c8:fd:83:35:3c:eb:6a:ac:96:b5:
75:fa:ff:ce:98:26:6e:0b:2a:d7:50:32:07:90:47:
98:f3:b3:fe:85:39:fb:e0:8c:1a:11:c2:1a:f2:3b:
b8:94:2a:18:62:61:13:fd:94:65:f6:62:01:27:89:
a1:cd:8c:58:3f:e7:a2:75:17:e0:e6:a7:64:b0:fb:
cf:29:2a:e6:68:3b:75:0b:7d:6a:f0:b1:51:3d:4c:
37:ae:93:32:a1:42:36:01:58:e0:06:4b:c2:2f:bd:
57:c0:a5:83:40:34:34:fb:1c:7a:17:63:bf:ae:a1:
3f:a6:9c:98:95:09:cb:36:81:36:8f:29:39:b6:cf:
c4:93:c5:24:62:bb:a0:d8:e8:d3:c4:e9:a9:fe:bf:
d4:8c:9e:90:d0:35:fe:e0:9b:63:91:90:47:2e:0a:
86:b4:60:b8:c5:03:43:e0:cf:e1:59:82:95:6a:e0:
c5:3a:9f:8e:7e:33:0e:a5:bb:f9:d4:a3:18:e0:22:
73:e6:12:f2:58:09:7a:22:4e:86:e8:12:83:95:60:
ac:c2:82:38:dc:a8:35:e5:c7:1f:15:40:a3:0a:59:
31:e7:0d:3e:3a:fb:1c:f2:16:f0:56:90:c5:db:bf:
db:06:7b:29:19:77:9a:72:3f:87:47:8b:8a:39:cc:
dc:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:6A:BE:CC:56:65:38:F5:E3:4D:07:F9:81:1D:63:98:7A:11:7A:FD
X509v3 Authority Key Identifier:
keyid:69:F3:3E:97:9B:43:E8:8D:0E:5E:CA:79:87:94:7D:B2:1E:F7:CA:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afM-l5tD6I0OXsp5h5R9sh73yrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/953a61-3349-47bf-a12b-e4c69334142c/1/afM-l5tD6I0OXsp5h5R9sh73yrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:bd:b3:62:c6:34:69:f6:7a:2e:d7:23:2c:48:05:8f:37:8c:
f0:c0:44:f0:e4:8d:64:6b:5f:63:0d:9f:f1:4b:6a:92:da:1d:
1a:0a:58:d5:ef:d4:ea:cb:88:26:07:b0:1e:5f:c5:f3:ae:14:
9e:7d:97:d3:6e:84:6c:b4:69:13:63:0f:45:e8:a0:6e:46:84:
6e:53:a1:b4:9e:e8:fc:b8:b1:46:92:be:8a:b5:07:46:24:61:
b8:02:8b:c4:5c:02:5e:f2:6a:04:49:1a:63:79:ca:a0:b5:23:
c3:40:10:07:03:14:dc:91:e1:ec:f3:42:e9:1a:da:5f:cd:b7:
7b:fe:b3:05:9b:c9:0b:f4:0b:0a:99:66:a9:9f:1b:ac:fa:a5:
e1:6c:df:6c:4c:b1:cc:ae:7f:e7:12:11:04:e5:c3:74:f2:b9:
9c:49:0e:8e:3d:2f:8d:ef:5c:d5:3e:d2:1e:bf:52:a9:00:6b:
ef:72:b9:f8:60:4d:f0:1a:29:01:65:f5:1f:f9:d3:88:4f:9f:
8d:f7:d7:79:c1:42:e4:d2:e9:f3:3b:87:d6:d4:4b:2d:77:b3:
c2:66:6b:55:5a:62:60:8d:3f:2b:b8:b1:ff:37:c6:c3:1e:13:
76:70:1a:23:47:b8:bf:6c:7a:7c:bd:8f:01:5e:fd:19:ed:6b:
39:ac:c7:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:49:08 2025 by rpki-client