Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
File: aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft (raw, json)
Hash identifier: 25tXpIsXTZnYol9lYpxI/7ZxHWEU0O+N6iDruHNt2Bg=
Subject key identifier: 86:45:D3:D8:22:E0:62:8B:3B:0A:2E:FF:46:C5:98:4B:E5:D6:B3:88
Authority key identifier: 69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
Certificate issuer: /CN=6987d0047fb1d8912c63f911305a714f438b1e71
Certificate serial: 01964FDA0EECD13719EEA49385940D97D480
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 21:00:12 +0000
Manifest this update: Sat 19 Apr 2025 21:00:12 +0000
Manifest next update: Sun 20 Apr 2025 21:00:12 +0000
Files and hashes: 1: Atkr4h8_-iWKS-lQ1C-yvRl84ME.roa (hash: 2T7HRH5eHvmAemXfiDHO7EMODqi7SWlhFBBbiZ8y44c=)
2: aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl (hash: iae4eANkVOWmW8MsB6wD6hxWN+jz2M11E/UH4P+XBfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 21:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:0e:ec:d1:37:19:ee:a4:93:85:94:0d:97:d4:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6987d0047fb1d8912c63f911305a714f438b1e71
Validity
Not Before: Apr 19 21:00:12 2025 GMT
Not After : Apr 20 21:00:12 2025 GMT
Subject: CN=8645d3d822e0628b3b0a2eff46c5984be5d6b388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3e:26:d8:9d:6e:55:f4:9f:e3:6e:cc:c1:2a:
77:d3:69:0c:c2:f0:f1:41:0a:57:47:ac:86:63:56:
ed:e4:6b:9a:0e:f9:15:e0:da:e9:a2:7a:f9:55:6f:
fe:4e:5a:1c:89:43:36:ba:4d:db:49:70:b2:fc:c1:
95:b0:05:40:93:ca:6f:c7:80:c5:d6:e9:d4:5a:82:
08:1a:f0:7e:45:f7:5b:b3:7b:a0:cf:c5:18:f1:d7:
d3:41:be:c1:fa:8c:4b:ca:11:fd:40:33:a2:70:c7:
51:cf:3a:ac:e4:f8:f6:42:1f:7a:6a:05:72:2e:e4:
1b:1c:3b:d8:7d:b4:0e:3c:ae:e2:f5:f7:63:2a:d2:
2d:48:5b:37:d7:d6:c5:4e:f6:41:8c:2a:0f:49:88:
fb:17:e4:ae:bd:43:fd:85:fb:f8:75:8a:3d:92:b7:
8e:96:e9:30:0e:d4:0e:83:bb:9c:7f:4d:30:9a:e7:
44:ff:6f:f8:4b:da:04:f6:da:1c:71:db:c4:d0:c5:
a9:18:97:46:b8:6c:eb:fc:18:df:9b:1f:db:e6:7b:
47:f9:90:b7:43:c6:0a:a8:50:2c:30:5f:e3:b6:9c:
53:5f:b5:30:ca:50:6c:c9:5b:7e:b3:fb:73:e8:81:
e7:60:e1:35:a7:e3:97:c1:64:fc:0e:e6:62:81:cd:
bf:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:45:D3:D8:22:E0:62:8B:3B:0A:2E:FF:46:C5:98:4B:E5:D6:B3:88
X509v3 Authority Key Identifier:
keyid:69:87:D0:04:7F:B1:D8:91:2C:63:F9:11:30:5A:71:4F:43:8B:1E:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfQBH-x2JEsY_kRMFpxT0OLHnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/d83454-d359-4e9e-841c-42914be0aa04/1/aYfQBH-x2JEsY_kRMFpxT0OLHnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
eb:2c:43:76:0d:c0:7b:0d:1e:6e:af:9f:bf:3b:1a:c2:45:34:
b0:e6:c7:82:77:87:6f:01:d7:4b:1c:ad:06:5c:87:70:85:e0:
bc:27:93:9e:60:3d:e6:74:0e:94:e0:7a:7b:82:3b:27:6b:5f:
03:5c:9e:ea:ee:bb:b7:63:65:5c:e3:61:85:ad:86:07:a3:80:
35:ee:df:00:7d:8d:98:73:cb:53:82:69:5d:39:d5:66:4f:9c:
a6:d0:21:e6:74:c3:3d:6b:55:a1:4e:f2:86:a9:35:d5:67:ea:
b0:83:46:fd:e6:2d:65:21:30:ce:b4:0f:cb:72:91:48:b7:7f:
39:7a:50:f3:72:1d:ae:f8:7f:30:10:73:91:4d:d6:8b:79:bf:
d0:2c:32:cf:9d:77:6b:ce:08:f8:13:1d:98:e3:74:f2:26:56:
f1:79:a0:dc:c2:5e:4d:87:18:dc:2e:03:f9:43:84:9d:fe:18:
a7:ef:04:d0:de:83:c6:0e:07:3f:8c:90:a0:8b:2d:f3:6c:35:
e3:cb:45:c6:e8:f5:ab:e8:09:52:32:25:d4:cc:96:cc:f6:6f:
96:4d:ef:98:85:9e:ce:70:51:bd:a3:35:8e:3a:db:f8:81:40:
4a:48:32:82:72:a3:94:c2:ed:18:3b:c4:d9:94:41:d5:a8:ec:
4b:80:ca:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:31:37 2025 by rpki-client