Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
File: ap2Z4esn7Hq76TViechBGkEw_co.mft (raw, json)
Hash identifier: hIOF62sVV0EolfrR7oNZtE3HxpTLAxGO3LCm4HIU5/c=
Subject key identifier: 82:28:90:98:AE:71:27:4B:16:3E:CB:11:E4:36:A0:63:F7:54:DB:FC
Authority key identifier: 6A:9D:99:E1:EB:27:EC:7A:BB:E9:35:62:79:C8:41:1A:41:30:FD:CA
Certificate issuer: /CN=6a9d99e1eb27ec7abbe9356279c8411a4130fdca
Certificate serial: 01964DEC94EEB4CE8CE8252AE8084CE9E0A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
Manifest number: 0B70
Signing time: Sat 19 Apr 2025 12:01:12 +0000
Manifest this update: Sat 19 Apr 2025 12:01:12 +0000
Manifest next update: Sun 20 Apr 2025 12:01:12 +0000
Files and hashes: 1: ap2Z4esn7Hq76TViechBGkEw_co.crl (hash: QCAubxlveEmd6PtFAU07rM8ZToGzyY4KYPDNZv8/yWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 12:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:94:ee:b4:ce:8c:e8:25:2a:e8:08:4c:e9:e0:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a9d99e1eb27ec7abbe9356279c8411a4130fdca
Validity
Not Before: Apr 19 12:01:12 2025 GMT
Not After : Apr 20 12:01:12 2025 GMT
Subject: CN=82289098ae71274b163ecb11e436a063f754dbfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7e:4d:e0:ee:a4:4b:9b:9e:a1:bb:cb:2a:e0:
f1:ef:e1:13:44:7f:28:c2:6f:50:20:a5:9a:c4:17:
54:6e:d9:d6:30:ec:a8:a9:87:f9:48:49:1e:73:1c:
72:59:db:4d:51:94:67:38:53:42:19:29:6e:00:c7:
74:17:3e:ae:cd:ed:9a:b0:da:41:4e:03:04:f9:52:
46:4a:1f:54:5b:53:cb:f7:cd:5b:d2:a3:e6:12:df:
e9:d0:e8:7c:ff:53:59:24:0b:f2:c6:86:46:10:1d:
3e:bd:db:70:f0:d1:0e:1c:f2:e8:7d:49:7a:03:d6:
f5:be:25:63:69:87:fb:85:77:45:60:d7:3b:24:b6:
85:3d:e0:db:a3:94:6b:c0:a5:48:32:e2:56:24:c2:
f5:90:97:78:af:55:d1:7c:f6:91:59:f1:6c:fe:85:
28:09:40:2a:c0:5e:2e:a7:97:2e:d0:9d:3c:c6:07:
7e:5e:26:27:68:74:ec:4d:45:9d:84:e1:67:6d:c4:
fb:19:70:cf:67:19:6c:61:db:f2:d6:60:01:2c:1d:
63:b9:0b:0b:07:96:87:1b:d2:0a:91:15:88:40:11:
ec:b9:b3:81:28:50:4a:c1:0b:8f:2d:50:3f:e9:40:
6f:11:e5:a1:a2:21:1b:5f:ba:ed:83:15:68:83:b8:
10:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:28:90:98:AE:71:27:4B:16:3E:CB:11:E4:36:A0:63:F7:54:DB:FC
X509v3 Authority Key Identifier:
keyid:6A:9D:99:E1:EB:27:EC:7A:BB:E9:35:62:79:C8:41:1A:41:30:FD:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:30:3a:eb:07:80:61:2a:6a:37:89:86:11:f4:1e:65:68:fb:
85:28:69:89:a8:96:b1:2e:98:3e:ac:89:48:97:86:a3:e5:6e:
79:14:09:4d:ab:f1:f8:81:21:b6:27:d8:0c:21:08:3e:25:a3:
ad:52:20:3c:75:15:dd:41:35:6e:ce:6e:4d:6c:d1:ab:0e:97:
2e:67:3c:c0:67:be:02:07:5d:84:5a:85:7c:05:b3:ff:4f:e1:
82:89:24:35:f2:57:1a:68:d9:85:a9:c8:13:5d:4a:6e:c4:fc:
84:31:06:b0:5b:c3:6a:93:66:83:68:0b:06:21:66:a6:1b:05:
ee:6f:18:c1:62:29:f0:b5:a0:cc:e8:36:a1:6e:96:cc:c0:c0:
fc:58:90:72:c7:25:8a:7c:5d:44:2e:7a:c7:f3:e1:e4:53:02:
b6:31:49:bc:70:2f:67:a0:23:89:3d:18:e0:18:64:be:2e:a1:
9f:cf:74:ea:e4:3a:6d:90:b8:ba:c3:1a:1d:90:45:11:3c:0d:
4c:f9:ef:7a:74:33:f1:f9:cd:c3:de:8d:a8:be:56:67:64:5a:
1d:81:6c:22:d9:3d:8c:76:2a:f7:d0:3b:30:da:bf:8a:4a:66:
df:9d:c0:be:4f:70:74:b7:5b:2a:b5:43:55:6b:9d:61:6b:c3:
70:0a:72:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:03:52 2025 by rpki-client