Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
File: aIt13GcpXVhht31RoCEYtg3FWGg.mft (raw, json)
Hash identifier: m7EMpXvEXeRwZfDBSMBp1oJA6znhuZrjFOuPL9o56S0=
Subject key identifier: 1F:AB:E9:49:8D:3A:46:8D:E6:47:FC:21:F4:90:0D:F4:47:89:D9:87
Authority key identifier: 68:8B:75:DC:67:29:5D:58:61:B7:7D:51:A0:21:18:B6:0D:C5:58:68
Certificate issuer: /CN=688b75dc67295d5861b77d51a02118b60dc55868
Certificate serial: 01965011ABF36A9622AEED4F50A35F61D7F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
Manifest number: 0C05
Signing time: Sat 19 Apr 2025 22:00:57 +0000
Manifest this update: Sat 19 Apr 2025 22:00:57 +0000
Manifest next update: Sun 20 Apr 2025 22:00:57 +0000
Files and hashes: 1: ArfVzV_ad27WSg6MSNAJVOVO4Jk.roa (hash: 7YOwLzYn+04mEiM6zjtu45GNMFpON/tmtRVeglwvQWQ=)
2: aIt13GcpXVhht31RoCEYtg3FWGg.crl (hash: N6SfJhDNNGdEATe2T8g1sGK/LqIBXPIXVNg1zudng0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:11:ab:f3:6a:96:22:ae:ed:4f:50:a3:5f:61:d7:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=688b75dc67295d5861b77d51a02118b60dc55868
Validity
Not Before: Apr 19 22:00:57 2025 GMT
Not After : Apr 20 22:00:57 2025 GMT
Subject: CN=1fabe9498d3a468de647fc21f4900df44789d987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:dc:f4:a6:6b:53:7b:3f:15:6f:d2:ea:df:01:
1f:e2:64:3b:13:da:9c:72:66:9e:7a:69:2e:e1:1d:
fe:d7:1c:ba:12:88:88:77:c6:8d:09:41:93:ea:e6:
17:fd:99:69:6a:44:7e:a4:02:2d:47:bf:84:e6:bb:
7a:f8:b4:88:7c:81:2b:53:3f:c3:3f:58:bd:17:d1:
e9:f4:d2:06:19:af:56:df:94:c3:82:66:c9:a9:44:
a0:99:a0:4d:8a:1c:a5:a6:69:2b:95:7c:cc:a7:e8:
e1:39:46:2f:0a:6b:0e:fe:4e:6e:81:62:2d:18:90:
ee:28:54:9a:14:01:dc:bc:f6:c7:04:1b:87:c1:9c:
ab:43:72:d3:95:47:d0:18:ba:e4:3e:e2:f4:cc:81:
66:bc:2d:10:42:6e:5b:fb:de:9b:e5:8f:ea:8d:fb:
8c:d8:77:5c:0b:76:0f:8f:73:d2:e5:da:45:f3:e4:
07:0f:30:5c:6b:08:4f:d4:be:c0:70:b5:1f:54:d4:
6b:40:78:06:4c:4c:54:e3:13:82:08:0c:25:e2:bb:
fb:b1:2a:85:ed:44:12:52:53:8c:67:85:b8:93:fb:
2c:38:1f:19:a1:8a:47:80:35:65:42:9e:b1:ff:15:
3a:b5:7b:31:78:ad:cd:9f:3d:3b:40:23:0d:bf:b0:
4d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:AB:E9:49:8D:3A:46:8D:E6:47:FC:21:F4:90:0D:F4:47:89:D9:87
X509v3 Authority Key Identifier:
keyid:68:8B:75:DC:67:29:5D:58:61:B7:7D:51:A0:21:18:B6:0D:C5:58:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e0:0e:eb:62:7e:6d:0f:50:d5:ba:26:d3:58:b0:ba:8a:cc:73:
5c:4a:20:06:c4:fc:b5:64:bc:d1:35:5a:bc:60:ff:24:ca:b8:
5a:85:05:d7:d3:04:c1:89:ae:1c:ba:ab:62:1c:0d:79:3c:4a:
f7:be:1c:f4:e9:e0:89:1b:41:e6:f5:d5:9f:4e:f0:c4:3c:e3:
b6:1d:09:c9:7f:d3:03:59:63:21:a9:09:b5:80:61:3e:de:ed:
d5:56:94:76:92:e1:fa:35:ad:77:63:13:2c:5b:20:87:9a:77:
58:49:a2:3b:ff:3a:83:ac:ba:03:50:9d:12:ca:88:c9:0f:0d:
51:40:8b:81:9d:3d:1c:ee:a0:2b:f2:5d:d9:e7:62:af:81:66:
fa:95:ee:ad:29:4a:99:39:02:b8:39:cc:5e:01:51:8a:c4:92:
a3:ab:45:8a:00:87:3e:06:61:9a:03:1b:47:48:7e:10:33:9a:
11:85:3c:a3:f2:fe:9d:c9:62:26:18:ca:de:3e:28:8e:4a:87:
a8:b9:16:74:35:7b:0e:83:77:6b:a2:3a:84:78:48:2a:d8:4d:
92:16:0d:a9:23:fb:41:91:0d:40:42:67:00:b7:f1:72:0c:58:
d5:45:19:8f:f9:da:04:4f:1f:d0:57:80:62:b5:8c:4b:98:f4:
08:c7:0a:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:36:11 2025 by rpki-client