Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
File: ajqLdK1O1nN5ep9rd0nCI0VpedA.mft (raw, json)
Hash identifier: XThvaOaiZaUYcypftk0GdS+aVUkCouU4kzg5BuJnTfo=
Subject key identifier: A7:AC:0E:24:FC:2F:43:D6:64:BA:BD:65:5F:5E:61:9B:06:74:1A:D3
Authority key identifier: 6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
Certificate issuer: /CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Certificate serial: 0196458DC3B030FAC4E5182A9402B49D7E1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
Manifest number: 13B9
Signing time: Thu 17 Apr 2025 21:00:40 +0000
Manifest this update: Thu 17 Apr 2025 21:00:40 +0000
Manifest next update: Fri 18 Apr 2025 21:00:40 +0000
Files and hashes: 1: ajqLdK1O1nN5ep9rd0nCI0VpedA.crl (hash: UMVHYqVV3yXEzN+0YitrxQ33PU8MV9104zt9XYWxRE0=)
2: jkQdp6EX7jHh6f31YxZYZhR0C8U.roa (hash: FmayEZ/+k7yvcImZRXEurVZdNlGpk+kZM2DFLPiqTu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:8d:c3:b0:30:fa:c4:e5:18:2a:94:02:b4:9d:7e:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a3a8b74ad4ed673797a9f6b7749c223456979d0
Validity
Not Before: Apr 17 21:00:40 2025 GMT
Not After : Apr 18 21:00:40 2025 GMT
Subject: CN=a7ac0e24fc2f43d664babd655f5e619b06741ad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a2:f5:e2:fb:a5:b9:61:95:76:43:27:dc:84:
30:4b:a9:0c:42:1b:d2:65:b2:50:ff:af:56:55:d0:
3d:e6:83:ae:90:1a:44:83:1a:c9:e4:af:d2:4e:fa:
1f:e4:b0:7b:04:63:02:e5:97:3d:a3:09:99:30:07:
c2:95:fa:e0:43:78:2b:df:f2:3c:b6:45:54:b5:33:
6a:b1:80:e8:9c:0f:bf:c5:0e:27:1c:d3:71:15:fc:
3e:77:fe:96:db:37:db:ec:17:1f:e2:6e:ef:cf:4e:
07:44:27:6b:b6:9b:88:74:15:86:8d:f5:6f:4e:d5:
b6:eb:5b:bd:97:bf:87:84:49:a9:ea:ee:93:34:b5:
47:dc:5b:4b:1c:78:7e:6d:e0:8b:3f:4e:d6:42:c6:
a8:09:6f:10:59:36:79:52:00:52:0b:d0:5c:1d:85:
10:d7:c4:8c:d9:af:9f:a9:96:c0:e5:52:8b:87:55:
77:f1:df:26:8c:26:c9:e1:45:34:72:fa:c0:ac:c7:
62:d5:64:9a:93:aa:1f:29:15:6b:e8:b4:30:2b:53:
fa:83:22:45:ad:cd:bd:2f:a9:49:a2:e4:6a:9d:4b:
67:3d:71:29:79:d5:66:ef:f3:b6:45:69:f1:10:de:
bc:46:0e:a3:a8:b9:83:c5:6e:1b:5d:65:ca:4b:c4:
30:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:AC:0E:24:FC:2F:43:D6:64:BA:BD:65:5F:5E:61:9B:06:74:1A:D3
X509v3 Authority Key Identifier:
keyid:6A:3A:8B:74:AD:4E:D6:73:79:7A:9F:6B:77:49:C2:23:45:69:79:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajqLdK1O1nN5ep9rd0nCI0VpedA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/53aca2-e888-421c-b59a-c958bf4f8991/1/ajqLdK1O1nN5ep9rd0nCI0VpedA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:34:45:0d:9b:72:36:f1:98:f9:76:bc:06:42:8a:ca:c3:14:
41:26:c8:56:43:7f:c5:d6:cc:d2:5d:0f:5f:d3:3a:d0:af:e3:
b6:b0:dc:f3:de:93:cb:2f:f5:a3:17:da:90:2f:72:fe:86:04:
bf:f8:45:b9:e6:e3:77:af:7f:df:db:12:c4:cd:17:f7:6a:a5:
62:e2:75:e7:8b:92:a8:49:99:d9:e4:74:0a:85:ef:a1:f7:da:
99:b3:78:02:be:41:0d:48:dc:87:e0:07:a1:fc:b6:d7:47:93:
d6:13:48:9f:0f:66:74:7d:51:fc:dc:3b:2c:73:2c:0c:24:34:
82:02:e8:b4:c8:53:d0:0f:74:4e:82:61:89:f5:c5:04:90:01:
f9:31:c6:bd:dc:37:78:b5:89:4d:dc:5a:21:0f:15:c6:23:38:
10:4d:fe:09:aa:eb:e4:ec:cb:dd:22:2f:de:f4:eb:aa:b7:47:
ed:fd:1a:35:4f:9a:09:83:4d:ac:f0:a3:3f:87:4a:73:a1:6c:
24:df:59:2e:f4:ec:0a:69:2c:95:e7:3c:79:e4:24:f9:19:87:
70:e3:fe:0f:ae:69:d9:09:e4:c0:11:d4:9a:c8:29:d6:ea:57:
e5:dc:cf:37:5e:d6:c2:68:fd:9e:e0:f0:82:87:bd:f6:31:de:
cc:d2:24:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:37:53 2025 by rpki-client