Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
File: ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft (raw, json)
Hash identifier: lbBSYHfbTFvy4d2IH1aeAMimCrKRVwocUASv/OSlDxA=
Subject key identifier: FB:E5:2C:FA:05:10:65:97:D0:16:FF:F7:27:A0:5C:E9:08:6E:B8:46
Authority key identifier: 6A:10:B7:C5:4E:6F:95:B1:D9:B8:4A:AC:3D:9D:A7:42:A0:E0:2A:6C
Certificate issuer: /CN=6a10b7c54e6f95b1d9b84aac3d9da742a0e02a6c
Certificate serial: 019649A23ECE49826504C05C5C43019857C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
Manifest number: 10B7
Signing time: Fri 18 Apr 2025 16:01:31 +0000
Manifest this update: Fri 18 Apr 2025 16:01:31 +0000
Manifest next update: Sat 19 Apr 2025 16:01:31 +0000
Files and hashes: 1: ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl (hash: GZwpBnpCDuiiT5HoxOPcBfKSjszmu227AUizwiLYRBk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:49:a2:3e:ce:49:82:65:04:c0:5c:5c:43:01:98:57:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a10b7c54e6f95b1d9b84aac3d9da742a0e02a6c
Validity
Not Before: Apr 18 16:01:31 2025 GMT
Not After : Apr 19 16:01:31 2025 GMT
Subject: CN=fbe52cfa05106597d016fff727a05ce9086eb846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3a:39:28:4d:c2:74:91:f8:9e:a5:10:47:cb:
4d:26:bd:45:da:22:20:c2:77:cd:50:28:96:6b:b3:
97:aa:c2:32:a3:10:df:9d:57:fe:3e:f8:52:8c:1e:
a4:39:b4:17:00:7d:d7:07:14:4d:ff:e3:b6:c2:5e:
6c:cb:cb:81:dc:a6:86:d6:32:0d:41:ff:b5:fc:21:
b2:5e:02:26:6d:1f:12:73:0c:7b:61:e1:55:e0:79:
00:f4:c9:16:be:00:66:e5:8a:bc:2d:ea:d4:48:36:
bc:d6:d0:11:15:ea:79:73:c1:2e:99:41:84:9f:51:
4d:05:5e:7f:e8:e4:7b:da:17:74:7b:fd:78:5e:9f:
8a:c1:61:4e:a9:e5:9c:08:64:86:bc:1f:16:83:19:
5a:3c:14:16:f9:a9:09:9b:b8:4f:82:8e:05:ed:1c:
2f:f1:b4:1b:a0:c3:6e:53:1c:e6:2c:44:ae:9d:22:
a2:7f:11:09:dc:d3:cd:a7:0d:81:34:b9:ff:f9:9d:
72:8e:f4:76:39:82:0e:cd:bb:cd:7b:a8:7a:f3:17:
13:37:b5:e8:26:4d:45:77:3e:52:54:34:93:4d:85:
fd:8d:fe:5d:20:ac:eb:4c:95:0b:09:1f:76:9f:97:
4c:a2:c2:77:9a:fc:f4:92:fa:a0:d4:1e:65:29:83:
0e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E5:2C:FA:05:10:65:97:D0:16:FF:F7:27:A0:5C:E9:08:6E:B8:46
X509v3 Authority Key Identifier:
keyid:6A:10:B7:C5:4E:6F:95:B1:D9:B8:4A:AC:3D:9D:A7:42:A0:E0:2A:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8a2e85-9480-41a2-a255-2dcad6ee71fb/1/ahC3xU5vlbHZuEqsPZ2nQqDgKmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:60:9b:8c:3a:e0:59:68:63:a9:50:ae:1f:31:c0:b9:df:44:
2d:ee:54:c0:3d:cb:16:65:81:e9:67:a6:f6:06:c1:09:20:40:
c6:62:0a:37:e6:45:39:a3:58:7d:52:b7:0d:b3:96:73:d2:9f:
ca:34:1b:33:ba:6d:c0:91:25:60:d5:02:a0:d3:88:03:54:24:
1f:73:2a:0f:aa:9d:d8:44:b9:80:d8:14:47:db:07:b7:9d:e6:
38:22:b8:8f:c2:ea:8d:40:18:fe:08:3f:69:09:39:21:3d:95:
95:20:5d:2c:39:7c:46:df:f5:f4:13:3d:f2:fc:38:54:c4:af:
c5:d0:e7:01:41:39:f1:bc:34:a0:ab:d0:ac:ad:40:2f:c0:f0:
9a:44:9c:ce:df:9c:ca:1a:9d:e1:16:a3:24:9f:7d:9b:8e:90:
20:69:f7:20:15:45:52:45:f4:a7:d4:f9:e6:e7:1e:d0:e3:2a:
a5:f4:f8:52:66:f5:33:4e:df:40:19:6f:74:52:ce:e8:f9:86:
b7:79:42:54:a9:3b:3f:32:85:b1:34:98:3e:df:44:fd:cb:49:
0d:2f:52:5e:90:7c:6c:f5:b7:f2:be:b2:2d:22:08:4c:2f:aa:
50:52:5a:67:da:22:3b:25:b7:91:77:2c:f1:51:59:31:2f:b7:
91:3a:a0:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 19:17:22 2025 by rpki-client