Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
File: 0AL76fCkE2A-3vtzOlMfLiwOnAY.mft (raw, json)
Hash identifier: lr3zB/lSOBYa3qEMCXTdIFlbwyjKidJcf2QMZm3F5YI=
Subject key identifier: AB:4C:4F:8F:E4:30:D1:91:87:F9:40:69:FC:60:BE:67:37:83:03:71
Authority key identifier: D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
Certificate issuer: /CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Certificate serial: 01964C351281E9CCC53050617BC884A313FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
Manifest number: 14F8
Signing time: Sat 19 Apr 2025 04:01:08 +0000
Manifest this update: Sat 19 Apr 2025 04:01:08 +0000
Manifest next update: Sun 20 Apr 2025 04:01:08 +0000
Files and hashes: 1: 0AL76fCkE2A-3vtzOlMfLiwOnAY.crl (hash: Imii9qNxLXGgB1sjTDTyErF8As5XUpN2lfj8SBaaJhM=)
2: _XUidn5LGX4qhZ_75ajbeYWe1Ao.roa (hash: b/pfq31DckGw+o1qBs5ugJl7vAflaGA+vdef1tZYmPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:35:12:81:e9:cc:c5:30:50:61:7b:c8:84:a3:13:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d002fbe9f0a413603edefb733a531f2e2c0e9c06
Validity
Not Before: Apr 19 04:01:08 2025 GMT
Not After : Apr 20 04:01:08 2025 GMT
Subject: CN=ab4c4f8fe430d19187f94069fc60be6737830371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f8:a5:18:a1:d2:84:4e:3f:52:5b:96:bb:10:
14:64:ac:d3:c1:19:b8:5e:dd:4a:17:69:ee:05:eb:
82:9a:08:24:a3:5e:4e:18:1e:fa:f0:b9:59:b0:87:
05:e0:56:1b:78:cb:d1:c2:ca:99:49:e0:1c:db:ad:
0b:74:05:fe:e8:68:a5:95:c4:c8:91:3a:ab:a0:d9:
a4:4b:46:71:29:f4:b3:f4:94:34:63:d9:06:e3:ae:
31:ff:60:81:93:eb:4a:9d:b4:9e:1f:6c:f2:b2:43:
f7:98:82:bd:be:dd:09:ad:78:0a:10:e0:1f:37:69:
84:ff:f4:bd:6f:b7:29:b7:8b:d4:ad:9b:21:55:4e:
dc:17:c2:3e:16:03:3b:2b:91:65:8f:70:a0:a0:d9:
2d:44:25:94:88:0a:6e:ce:94:ee:7a:e8:36:86:a4:
7c:a6:86:83:dd:d1:d0:fb:1c:37:34:09:50:7f:05:
d5:a1:93:3d:25:ee:f8:6e:34:86:f6:15:ba:cf:47:
cc:bc:c5:c1:42:ac:5b:c4:2c:4e:fc:ac:1c:ef:0e:
0a:83:85:16:29:ec:bd:2f:f3:b5:fb:80:0c:06:24:
31:43:71:07:10:be:2f:08:1d:38:b0:61:85:9c:ee:
70:a9:fa:c4:2d:77:0a:e5:2d:ec:88:73:0d:d1:b3:
58:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:4C:4F:8F:E4:30:D1:91:87:F9:40:69:FC:60:BE:67:37:83:03:71
X509v3 Authority Key Identifier:
keyid:D0:02:FB:E9:F0:A4:13:60:3E:DE:FB:73:3A:53:1F:2E:2C:0E:9C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AL76fCkE2A-3vtzOlMfLiwOnAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9bafb1-0c42-425b-aa29-19c045c6a14f/1/0AL76fCkE2A-3vtzOlMfLiwOnAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:94:bb:63:c2:4c:56:24:98:df:14:ce:36:5e:e2:2e:7b:2d:
5c:54:a8:d2:6f:17:e2:8a:8d:a3:bb:03:a6:ab:13:38:3b:00:
8c:9b:ad:24:17:76:78:be:42:71:8d:72:0a:a3:7c:80:9e:67:
fd:d0:3e:02:fa:0d:a6:60:2e:11:48:53:93:64:1f:60:79:4b:
9a:67:7f:22:75:7f:8e:d8:c7:42:b5:77:97:63:13:28:ac:12:
66:e8:f7:fb:4c:e6:7e:99:c0:30:f4:0b:08:a5:09:e3:dc:b1:
f1:78:fa:f1:e0:20:59:56:8e:89:28:4b:de:03:d9:ae:2b:73:
09:17:20:03:d7:90:19:4d:a9:9c:6b:24:73:ea:20:89:57:07:
e2:a5:7f:db:7e:08:84:ec:23:71:6e:3f:cf:35:1a:d9:e2:b4:
8b:ab:1a:9a:17:50:5a:48:4c:14:a4:d8:15:c1:d1:38:19:1e:
30:a7:59:5c:eb:5a:e2:fc:9a:b0:03:d4:37:d0:a5:6d:ff:c1:
40:62:3c:4d:b6:30:2e:63:8e:ce:33:b0:79:86:7f:b3:b8:a1:
5c:d5:ab:6f:9b:14:a3:02:cf:a8:62:7b:02:55:49:99:09:61:
74:b8:25:ca:ed:4e:c3:00:70:bc:3a:1d:3e:55:d2:7f:2a:8e:
d9:f1:a8:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:11:56 2025 by rpki-client