Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
File: aajmjRKuKTryNpBDzVmgINrCQGI.mft (raw, json)
Hash identifier: cJ9P84RYtHRnqx/k/ds6VOeXRXPzRejPv9GCPiOFHS0=
Subject key identifier: E2:D8:DC:2F:D5:07:12:50:16:43:7E:55:66:12:B6:F7:99:48:1B:C2
Authority key identifier: 69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
Certificate issuer: /CN=69a8e68d12ae293af2369043cd59a020dac24062
Certificate serial: 01965794508A991DAC217D442E9F50D8AA5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
Manifest number: 09F1
Signing time: Mon 21 Apr 2025 09:00:59 +0000
Manifest this update: Mon 21 Apr 2025 09:00:59 +0000
Manifest next update: Tue 22 Apr 2025 09:00:59 +0000
Files and hashes: 1: aajmjRKuKTryNpBDzVmgINrCQGI.crl (hash: X6c0tB+KpHYtXicAF+xJxgfKhsJ0gOyycLM29cqyhHI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:94:50:8a:99:1d:ac:21:7d:44:2e:9f:50:d8:aa:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a8e68d12ae293af2369043cd59a020dac24062
Validity
Not Before: Apr 21 09:00:59 2025 GMT
Not After : Apr 22 09:00:59 2025 GMT
Subject: CN=e2d8dc2fd507125016437e556612b6f799481bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c6:8e:f9:78:64:e0:5f:cb:34:14:d2:69:e3:
b5:ff:d9:92:a1:ed:85:4e:0a:f1:e8:a7:fe:94:74:
f0:90:5e:06:f0:d7:fa:bd:ac:98:5d:cb:fe:f7:0d:
37:47:19:21:f3:00:58:77:47:d5:e3:c3:5e:31:cb:
6e:41:42:0b:d2:6a:8a:d0:af:65:8c:8a:5f:db:29:
38:05:41:0a:a1:61:87:e0:29:cd:6a:75:a3:a2:4a:
64:7d:a3:e2:f6:8a:c0:35:04:f2:87:4e:97:f5:21:
61:fb:53:f3:a0:ac:c2:7d:27:6b:29:d1:12:2d:02:
60:ee:57:e4:28:de:32:4f:ee:2e:36:0a:03:6c:15:
29:5c:e5:8f:00:a4:d4:a3:c3:ee:dc:3f:62:4f:9a:
08:bc:a3:32:1c:4d:87:9c:4f:59:fd:a6:da:7d:b9:
cd:b5:df:15:1c:c0:dd:52:b0:74:cd:6e:1e:91:6e:
a2:a6:82:17:c3:42:fe:36:30:54:d4:e6:5d:6c:0e:
05:fb:3d:d5:cf:ef:b8:43:77:bb:cb:11:e1:3c:d8:
ab:82:28:2a:0c:58:d7:80:3c:c8:f6:44:c2:eb:62:
d4:bc:1a:03:a5:b1:3c:8d:53:ec:57:56:ac:e8:c3:
81:f3:57:7d:a0:4d:15:04:af:31:80:68:e5:55:9d:
22:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D8:DC:2F:D5:07:12:50:16:43:7E:55:66:12:B6:F7:99:48:1B:C2
X509v3 Authority Key Identifier:
keyid:69:A8:E6:8D:12:AE:29:3A:F2:36:90:43:CD:59:A0:20:DA:C2:40:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aajmjRKuKTryNpBDzVmgINrCQGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/242faa-eae3-46a5-b774-38820548755c/1/aajmjRKuKTryNpBDzVmgINrCQGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:31:67:32:bd:50:6b:b0:d4:5b:1c:3c:28:34:89:b8:fc:b6:
56:67:65:97:1c:78:31:f4:87:dd:6a:62:b7:55:3d:51:86:67:
52:91:6b:3b:7a:7e:a6:61:52:c4:7b:1e:01:32:79:55:63:fc:
43:6a:92:28:9d:d0:f4:85:9a:93:8b:0b:16:b6:db:33:1f:09:
32:ac:55:92:3e:6d:40:fa:55:ac:41:a1:73:de:bd:89:3a:6b:
19:b8:57:f6:e5:80:77:27:3d:8f:fb:e7:e7:4e:ca:0e:1d:ee:
91:ab:71:87:c4:f6:72:7b:02:92:3e:78:fd:56:98:21:19:0b:
30:aa:6f:5d:1b:0f:de:2f:e2:a9:1d:35:76:25:18:48:c6:c4:
cb:8b:7f:9d:80:91:aa:12:be:9c:96:e0:0b:ab:89:4c:ac:cf:
37:a1:65:64:33:9f:c4:28:f3:fc:69:8d:77:27:13:57:e9:12:
18:0a:0c:24:b5:5d:c7:41:6f:6a:be:63:91:3b:1c:d0:5e:a0:
39:af:be:d6:2e:9e:3f:24:f3:ec:e3:02:f1:b6:9a:a3:15:e3:
1f:35:22:7b:d0:c2:5b:af:2b:8c:9b:53:c2:ca:2a:e4:f8:92:
c7:51:bd:33:62:4c:c0:20:49:6b:1a:e3:13:39:38:f4:ef:c2:
56:ca:2b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:50:21 2025 by rpki-client