Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
File: aIEP_k-SA6EAZ31lGTtEJniaz1w.mft (raw, json)
Hash identifier: DAozC/RsycSXi+5nWX2Tx+OHDwsNyJaOWmgx99iFXSQ=
Subject key identifier: 2E:8D:E1:33:F3:1A:1B:4F:4B:CE:12:E3:0D:9E:5B:29:EA:D3:33:D2
Authority key identifier: 68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
Certificate issuer: /CN=68810ffe4f9203a100677d65193b4426789acf5c
Certificate serial: 019630BDE425BCF9621444D584693EC22214
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
Manifest number: 08FC
Signing time: Sun 13 Apr 2025 20:01:13 +0000
Manifest this update: Sun 13 Apr 2025 20:01:13 +0000
Manifest next update: Mon 14 Apr 2025 20:01:13 +0000
Files and hashes: 1: aIEP_k-SA6EAZ31lGTtEJniaz1w.crl (hash: W42wSeHRIaHN5Tv3krby4riM7Irpu370lAzEuARJC7k=)
2: vq_lB1n1a8tSkpEaBYJenT9A5i0.roa (hash: TQs2bRUGUy5hOg6esXq8436QciZ59nHTgLwMPf5bhwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 17:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:30:bd:e4:25:bc:f9:62:14:44:d5:84:69:3e:c2:22:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68810ffe4f9203a100677d65193b4426789acf5c
Validity
Not Before: Apr 13 20:01:13 2025 GMT
Not After : Apr 14 20:01:13 2025 GMT
Subject: CN=2e8de133f31a1b4f4bce12e30d9e5b29ead333d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:35:39:f7:01:73:98:c9:a2:f7:ed:41:02:d3:
ce:0c:9c:1a:2c:fc:de:2b:34:4d:16:7d:21:6a:35:
1c:0c:d2:68:91:bf:8d:bb:72:10:50:37:04:4c:93:
6b:d6:ad:90:90:89:4f:db:77:52:a9:2c:17:ac:cc:
5e:eb:75:34:9c:90:47:07:12:87:8a:7d:73:14:17:
5c:fa:e9:da:af:cf:22:81:10:8c:ce:8e:9d:b4:4b:
bf:18:76:86:7c:32:d2:c1:2e:ad:49:ec:2b:b0:5b:
b5:fc:97:cb:e4:bb:57:a4:09:58:6f:95:b7:63:ad:
b8:1b:ed:25:4d:47:71:e0:14:de:b6:1f:f7:26:60:
33:9c:4e:80:bf:e6:98:b9:13:7b:48:38:f3:e2:ec:
69:f4:03:f2:47:ed:5b:46:b4:0c:ad:31:37:12:95:
61:0d:8b:1f:ee:fc:17:7a:97:17:db:32:6a:6d:1d:
9d:d1:4b:5b:cb:d9:fc:cd:7c:76:97:23:ed:4e:9b:
4f:eb:b0:fc:63:48:f3:14:56:d7:aa:51:5c:dc:39:
d3:98:4c:45:3f:01:64:bb:14:ee:a4:00:d0:f3:27:
9c:c7:f6:f5:0c:1b:a4:68:aa:55:72:24:91:61:f1:
8d:76:ad:f5:cc:1e:6e:d3:dd:86:83:d4:b1:e7:c7:
c9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8D:E1:33:F3:1A:1B:4F:4B:CE:12:E3:0D:9E:5B:29:EA:D3:33:D2
X509v3 Authority Key Identifier:
keyid:68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:43:0d:07:95:b9:bf:f6:9c:6f:cc:9e:8e:92:33:70:37:b3:
d6:66:3e:64:21:92:6d:59:8f:11:40:0f:03:f3:f4:71:65:3e:
67:a5:8b:c9:1d:65:fc:34:d6:74:d0:d2:81:11:d9:aa:4c:a4:
57:f9:df:fc:bc:cb:94:99:97:4d:11:e4:24:4d:88:74:cb:79:
d7:8e:a3:2f:be:fa:7b:0f:b5:1b:f0:b6:16:34:0e:74:b4:5f:
d6:9a:67:aa:80:49:8c:ca:8b:8c:95:7c:82:7c:9a:3d:9e:d8:
8c:f6:cc:b5:71:d5:6e:41:d6:7d:06:c1:5c:cd:47:21:ef:31:
7b:e7:82:fe:35:52:78:28:00:d4:f4:0b:5d:8e:50:e4:a1:53:
15:7a:74:4f:d0:fb:ed:4e:73:35:00:54:31:07:91:f7:dc:98:
98:85:54:31:37:0b:80:7d:eb:6a:06:7b:20:27:4e:1b:f6:10:
1b:44:f3:e6:0c:24:b4:b5:13:29:83:e4:90:60:b5:3d:85:31:
f7:e9:55:cc:d6:b0:7a:d8:d4:39:b8:5c:19:04:7c:5b:24:41:
b1:c3:6c:bb:0b:79:ba:46:81:85:58:2a:d0:ce:59:d9:8a:47:
0d:02:24:76:4e:0c:74:dd:c9:2a:41:ae:04:5c:11:bc:23:66:
39:2a:cb:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 01:30:43 2025 by rpki-client