Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
File: AK_2tO_-fDY-8gD28-WIi5FbpoE.mft (raw, json)
Hash identifier: pzat2qgNxzype5hrXcKHu5Z6g7Y3s7+VILIGjxzsNOc=
Subject key identifier: D9:2C:BC:84:D2:7C:FF:59:AB:69:19:9E:83:24:46:34:B9:5F:0A:C5
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 0196605FD2441AB3E65BB5C8E35835041DD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
Manifest number: 1024
Signing time: Wed 23 Apr 2025 02:00:14 +0000
Manifest this update: Wed 23 Apr 2025 02:00:14 +0000
Manifest next update: Thu 24 Apr 2025 02:00:14 +0000
Files and hashes: 1: 1qEPEFv1rtnBwjLrj05KhcsiGsw.roa (hash: efBys1jy+DGmejYCRhYEDwHiZZBi2kJ2HO+RtvkHBG0=)
2: AK_2tO_-fDY-8gD28-WIi5FbpoE.crl (hash: XpxiBT3B9w91zQ0SzT8pdqpn2ULo5RVdEYasXrtyW6Q=)
3: KSQbuvMpaNtmYtn-yiQgu6gs4Xg.roa (hash: rY+o5Ow6fjFdTk2as4zdZu/IZVXbQNeVsHdG3L6c1Us=)
4: ZOyHJ4Yqv0XVd9AATFKr91oKlKQ.roa (hash: UP88f3uzMOFhKaWDsZtlJomj/zgPQgChtV7gCg0+LOM=)
5: _K1pDCbBWOfBSTY7iYXwJMRFvTE.roa (hash: CNOL6bgt/D7RlzA1qOVvWQYBYhtShOyl6CF9OeXYBvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:60:5f:d2:44:1a:b3:e6:5b:b5:c8:e3:58:35:04:1d:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Apr 23 02:00:14 2025 GMT
Not After : Apr 24 02:00:14 2025 GMT
Subject: CN=d92cbc84d27cff59ab69199e83244634b95f0ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:f5:1d:e6:49:c1:ae:91:c4:ce:f0:b3:8f:e7:
ea:1b:5c:38:ac:19:ae:64:61:be:2a:a0:eb:19:26:
30:94:83:88:19:8b:75:bd:81:a9:d1:9f:5d:93:8c:
01:26:d8:1a:36:01:c9:02:98:b7:74:90:cc:c8:52:
53:be:e5:ef:dc:58:bb:56:ea:4e:c5:3c:55:a6:30:
48:9f:ff:09:81:51:27:42:d5:9c:d4:a4:04:81:ab:
34:b6:08:b0:3c:73:e8:96:ba:a4:10:80:ce:66:cd:
86:dd:4b:6d:9d:d7:20:36:9d:85:e4:2e:a2:69:56:
21:7d:3e:13:c6:12:ab:cb:33:9a:85:f9:18:e0:c4:
b7:99:de:4e:52:45:e5:05:20:90:ee:81:82:3f:b6:
d3:47:72:3b:e2:29:56:7b:86:38:dc:7e:3b:12:e1:
05:11:97:7c:b2:7b:eb:a7:a0:33:c5:90:02:0c:ee:
90:23:6a:49:c8:a9:da:4f:0f:4d:3c:bc:59:3d:6c:
1f:eb:d1:39:d7:0a:4e:75:f1:b2:67:cf:c8:21:0c:
26:66:44:1f:0b:a2:25:5d:19:d2:d3:d3:d5:ea:80:
ea:ca:16:7b:02:5e:94:e5:02:ce:d0:64:9f:87:f0:
71:d3:c4:eb:ad:42:df:bc:be:e8:2a:7c:fc:ad:d3:
de:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:2C:BC:84:D2:7C:FF:59:AB:69:19:9E:83:24:46:34:B9:5F:0A:C5
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:92:bf:98:ee:52:ab:36:a8:5e:01:04:98:42:35:ed:90:cb:
0e:bd:96:fc:a2:14:85:ab:38:7a:7c:e8:dd:c4:92:77:46:ec:
44:1e:70:88:a2:d8:4f:f0:ec:d0:66:e9:05:28:4a:79:45:fd:
06:3d:23:b3:c9:3b:4d:b1:20:ce:6b:14:c9:3c:0c:9a:c5:72:
c2:90:14:91:1b:0e:be:0d:16:88:af:bc:1f:38:a7:d5:cd:c1:
43:6a:5e:71:41:cc:1b:35:9c:28:de:3e:1d:5a:6a:d2:ee:3d:
a3:64:90:cb:45:f3:9b:8b:8f:c2:08:d7:80:83:cf:1f:da:aa:
f6:0b:db:4a:74:4f:69:24:fd:6a:9d:0d:48:d4:f8:f6:21:17:
37:60:aa:3a:95:0d:a3:96:d5:12:49:c4:ab:36:d6:b6:9b:aa:
99:9a:31:a5:bf:97:31:52:7f:b6:ea:68:42:20:de:75:09:20:
12:1b:6f:d0:92:8f:34:e8:32:df:7e:98:9c:df:4c:65:4a:8f:
02:e0:52:e7:8e:3b:ee:ad:2d:ee:c4:86:2c:15:f0:e2:de:70:
fe:c6:1e:32:2c:50:31:c6:f2:2f:09:31:90:4d:76:4f:6d:7e:
a3:3a:a0:c4:c8:d4:05:9f:e6:37:8b:fc:76:49:35:ef:4b:0d:
fe:28:2e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 04:10:17 2025 by rpki-client