Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json)
Hash identifier: u1+mcsVote9BIabWGrD9OMy9vKtwjTc3CbZRjmeIqhI=
Subject key identifier: 9A:A0:E0:D9:31:20:B5:C5:F0:D5:4D:91:53:12:0B:34:02:8A:DA:DC
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 01965048668336E28EE811116A94F2418036
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
Manifest number: 0F76
Signing time: Sat 19 Apr 2025 23:00:44 +0000
Manifest this update: Sat 19 Apr 2025 23:00:44 +0000
Manifest next update: Sun 20 Apr 2025 23:00:44 +0000
Files and hashes: 1: 6zOYtzjXBD-DYg3_-ZbwFYlxy-U.roa (hash: bndS1Tzx6VzHh/lOs3pK1BLzPGIXQ0EzQwN4Ak3MXSs=)
2: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: C6jTd+LYHxtHPOIehb1uUhOfYv4j1jnVYnL21Q4UV2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:66:83:36:e2:8e:e8:11:11:6a:94:f2:41:80:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: Apr 19 23:00:44 2025 GMT
Not After : Apr 20 23:00:44 2025 GMT
Subject: CN=9aa0e0d93120b5c5f0d54d9153120b34028adadc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:64:08:cc:4a:e3:e3:df:39:ea:10:03:33:c6:
d6:0b:b0:c9:39:94:f7:94:19:cf:62:24:79:18:22:
6b:1f:26:83:f8:8c:09:b8:52:74:47:ad:e8:2b:47:
2b:53:f0:19:6c:51:e6:10:9e:60:55:0d:e5:34:cb:
28:e9:6f:f1:9c:18:7e:a4:09:d4:c4:cf:44:ba:fc:
04:26:44:2a:a9:bc:04:8a:8d:27:71:88:1e:1b:1c:
7e:5f:96:2f:2c:0e:45:84:d2:1c:9d:c8:49:16:5c:
ff:6c:b1:0f:7d:d0:66:27:9b:5a:d6:6f:68:5e:ae:
78:e4:e8:a4:65:81:c4:f5:8c:7a:7e:0e:8c:c4:74:
9a:b7:be:f5:32:32:74:15:cd:19:90:8f:ba:6e:b7:
a7:f9:4a:23:d4:66:4a:20:32:76:93:70:8f:45:24:
e3:3d:c5:5d:24:19:96:ba:39:3d:2e:48:40:4f:ae:
66:94:08:bd:a8:f5:f6:3e:8e:f7:c2:f2:db:76:c8:
38:0b:cf:97:54:3b:2d:e8:00:04:5b:98:8b:c2:71:
6b:45:8c:93:81:1e:3d:32:12:44:8a:e5:f3:97:f8:
b0:ff:8d:7f:46:68:1d:30:85:29:a7:6c:81:d9:ca:
3a:6a:21:df:98:89:55:1c:34:05:5a:10:d0:a9:2f:
d8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A0:E0:D9:31:20:B5:C5:F0:D5:4D:91:53:12:0B:34:02:8A:DA:DC
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:e9:bb:14:af:6f:bf:7a:a5:6a:54:72:e7:c7:86:64:57:a6:
89:f6:a0:b8:01:90:1e:3b:8f:2b:be:df:4c:65:f6:26:72:08:
26:01:93:d0:d0:e8:5d:cd:7b:38:06:8c:4b:9c:af:6d:ad:73:
74:c2:a0:5e:8c:d1:54:5a:32:28:87:c6:50:f1:98:4c:79:9f:
a0:46:1e:72:7b:dc:59:0a:1e:9d:87:11:01:e7:d8:08:bc:5b:
49:99:81:92:12:e6:5d:c3:56:f3:64:72:c8:18:29:42:43:54:
1c:0b:3f:16:08:c9:6d:5b:4a:b3:9e:52:ed:c3:96:ba:16:5e:
e2:c4:92:cf:dc:7f:ab:05:2c:0b:d7:0a:09:37:48:1f:f7:dc:
f5:81:b1:1b:37:5b:96:bb:9d:fd:5d:ad:1d:e1:26:aa:6b:f8:
06:6a:20:24:44:4e:a7:00:7c:33:2a:0a:46:14:15:12:36:c1:
c8:94:2c:74:a6:96:9c:5f:6e:93:ef:76:8c:f0:b3:49:92:16:
af:18:1c:95:dc:fd:94:bc:66:ed:f7:5d:01:c1:66:ce:24:57:
90:60:ee:1d:fc:cd:35:b5:e4:4f:ce:1c:47:c4:8b:53:16:3a:
69:f7:4b:f6:15:f8:fe:06:43:2f:1b:42:b5:c0:d4:f0:ce:79:
42:dc:92:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:00:48 2025 by rpki-client