Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
File: aYVKV6sNijySLI9qeaqP6KaiwJ4.mft (raw, json)
Hash identifier: jojUpDlP/0C+Bf3RlOUfZCe0sr1skeAYYJT8D6FLCdY=
Subject key identifier: BB:6B:65:DD:93:96:B2:3A:FA:BC:19:7D:DC:73:42:FC:75:85:F1:29
Authority key identifier: 69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
Certificate issuer: /CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Certificate serial: 01965EA8A9C4A7FFBFC22F38E8D2752DF1A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
Manifest number: 0F65
Signing time: Tue 22 Apr 2025 18:00:33 +0000
Manifest this update: Tue 22 Apr 2025 18:00:33 +0000
Manifest next update: Wed 23 Apr 2025 18:00:33 +0000
Files and hashes: 1: 8criSeClq2Eu3zzop6X6ae-0yfY.roa (hash: nOinS53G7GkxN9bqxtcws3EdTvx5t+9T2IsaBWfXBg8=)
2: aYVKV6sNijySLI9qeaqP6KaiwJ4.crl (hash: 7Q5tUjDlZyIUm6L8R+FoUFsGf6++VKG2SPIXEySwiDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 18:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:a8:a9:c4:a7:ff:bf:c2:2f:38:e8:d2:75:2d:f1:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e
Validity
Not Before: Apr 22 18:00:33 2025 GMT
Not After : Apr 23 18:00:33 2025 GMT
Subject: CN=bb6b65dd9396b23afabc197ddc7342fc7585f129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0a:7a:31:41:33:59:f1:de:d3:82:53:f7:c8:
99:f5:00:79:49:30:48:31:f4:09:64:0e:42:0e:a0:
87:e2:44:e6:9b:70:84:09:c1:c2:a0:b7:05:45:cd:
d6:75:a2:fd:6f:0d:96:7e:b2:d0:c0:21:67:c0:25:
23:d6:18:c0:95:54:07:d8:7a:4a:d8:d2:4c:be:b5:
36:ce:24:24:f2:0b:b2:cb:bc:e0:e3:21:05:ad:db:
36:e2:d2:c8:7d:37:93:26:f2:e4:16:32:69:aa:fb:
20:3b:3a:22:89:ab:7c:9d:17:02:c4:d3:99:5e:c0:
1f:df:0f:1a:4e:58:f9:47:d9:a1:ea:65:d4:03:f8:
51:ee:b0:52:aa:b1:30:5f:fa:35:d6:4f:e7:4e:d7:
6e:53:c4:ad:d1:7d:ac:a7:a0:ee:6a:a3:71:e6:c2:
89:78:20:9c:8c:f6:2d:a5:f0:2d:d3:4b:54:e8:c4:
b7:66:ca:58:e5:38:e7:00:52:8a:12:80:7e:92:df:
88:a2:50:e0:01:12:d3:f4:9c:e5:84:ce:e1:b5:79:
0e:e6:5a:79:ed:89:ef:85:5c:e2:58:85:6e:66:26:
ee:da:16:4f:46:a4:8c:ea:37:7c:29:f1:c1:0e:c5:
ad:f2:8a:58:a3:dd:ec:69:95:36:b3:f7:25:5c:09:
c8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:6B:65:DD:93:96:B2:3A:FA:BC:19:7D:DC:73:42:FC:75:85:F1:29
X509v3 Authority Key Identifier:
keyid:69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:19:78:7d:15:a7:f7:36:94:86:8c:0e:aa:05:fa:ba:35:34:
8b:12:c2:5f:0d:80:96:c1:01:25:34:62:3e:26:b5:b6:b2:ec:
c4:6f:dc:ab:29:e0:2d:9c:0c:74:2d:d5:1c:dd:76:bf:de:3e:
c1:fd:3c:d1:21:88:a1:63:84:84:e4:3f:4f:f3:e9:ec:f3:c2:
17:d4:67:42:21:ac:94:61:f9:de:80:58:7d:2e:0a:0a:b9:72:
40:72:f2:49:73:64:82:b0:a3:6b:5c:c0:7d:57:a8:00:1a:a2:
2f:86:ca:b6:81:b9:5a:47:48:28:9f:3d:53:3f:43:db:c1:5d:
c8:70:48:e2:39:8f:c2:e3:4d:d2:7f:08:31:00:61:0f:80:35:
24:95:41:4a:be:a9:1a:bf:db:0a:ae:9a:c8:f8:6b:21:3e:78:
0a:7f:a6:94:53:7b:d3:bf:e7:48:53:b9:ed:d2:16:12:99:51:
97:40:c6:40:2d:7f:63:8d:aa:99:35:79:24:5a:42:13:f0:42:
d5:07:ad:02:43:1b:39:7a:62:d4:11:0c:53:4e:23:46:ee:ea:
ea:e9:84:62:ae:6f:a4:06:8f:ca:26:54:36:ca:6c:66:e0:c2:
2d:61:00:b3:a5:68:35:0d:4a:d2:1c:df:20:e9:32:ad:83:09:
45:cd:c7:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 03:51:13 2025 by rpki-client