Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: CngZOU2NU/qbj1pMPeqIPPlonGTp0CX3JX1Fw+Fig5A=
Subject key identifier: F8:B8:B7:AF:63:4E:C3:AD:7F:A7:2B:F9:13:5D:CA:68:B9:4D:D2:F4
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 01958EF34572CC7C471DEA1A690F34C03CCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 04D0
Signing time: Thu 13 Mar 2025 10:01:02 +0000
Manifest this update: Thu 13 Mar 2025 10:01:02 +0000
Manifest next update: Fri 14 Mar 2025 10:01:02 +0000
Files and hashes: 1: WhLENsO2y4UEzkuswA1wx41c4K4.roa (hash: qqWz2hpUFCfdOvnndjkfI9tgPQ2D7KLxkWgnxyi1reI=)
2: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: qX8zhe3yGrZhkRtx5bDpBe7jjVGnm/UJvWGDPKiOXNA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:45:72:cc:7c:47:1d:ea:1a:69:0f:34:c0:3c:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: Mar 13 10:01:02 2025 GMT
Not After : Mar 14 10:01:02 2025 GMT
Subject: CN=f8b8b7af634ec3ad7fa72bf9135dca68b94dd2f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ba:b4:e5:92:8f:69:31:7d:39:1b:3e:55:f7:
8f:de:9e:ac:3c:ed:f9:ad:e0:a0:81:f7:e5:cf:0b:
66:56:b1:c1:a2:9d:96:4a:cd:9e:cc:42:5e:d7:9e:
9c:4b:8a:a7:c5:49:ef:65:d5:64:87:3a:dd:b3:76:
61:69:ed:1c:70:8e:23:97:fb:ad:f4:9a:60:2b:12:
b2:ec:bf:06:2f:31:65:4b:d4:a0:bf:d2:c1:f5:1a:
d2:4d:16:ec:e5:28:13:02:17:72:c4:28:77:56:05:
e8:2b:8b:22:a4:bf:38:9c:d5:b8:02:15:49:d6:70:
f1:28:c2:34:72:a4:b8:1e:09:76:dd:04:d5:30:7e:
eb:32:87:b3:8b:16:83:46:45:32:24:f2:72:67:41:
97:56:e7:6e:e1:6d:06:bb:56:4c:36:ff:fb:4e:29:
d9:f3:c8:34:ee:1b:80:9a:66:d5:c1:89:db:e2:fe:
8c:e6:b6:b9:ce:79:f9:25:f0:4e:f6:e9:bf:5f:c5:
11:e9:27:5e:52:aa:29:f9:64:6e:96:b3:03:c5:cf:
d3:13:5a:bb:09:8b:b5:0b:48:66:41:2c:99:ee:a1:
f5:d8:46:f1:7d:b2:99:34:e1:bd:33:4f:9b:fc:15:
3f:f5:7e:95:2c:98:2b:25:bc:e9:eb:e1:02:3e:39:
b9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B8:B7:AF:63:4E:C3:AD:7F:A7:2B:F9:13:5D:CA:68:B9:4D:D2:F4
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:0b:eb:30:e2:15:ce:73:54:cb:23:dc:51:51:08:44:62:2f:
0f:fe:9c:cd:54:10:0f:f8:f4:b2:c9:f8:f9:c6:48:22:26:d0:
df:23:b6:15:f9:4f:34:9e:75:d1:a3:92:12:f0:f0:6b:59:34:
b8:4f:32:a3:93:be:3b:ba:a2:53:5f:bd:da:87:34:ab:b7:17:
dd:1f:15:26:38:95:97:e0:01:1e:fa:ca:30:89:a4:82:73:fd:
58:95:a4:05:10:3a:6f:1b:8e:40:8e:54:69:84:24:9a:a8:83:
5f:e2:ae:1d:49:5f:0e:bc:fe:0b:21:31:61:94:3a:58:c1:b0:
1e:39:ea:7a:51:48:df:a8:3d:12:23:82:08:67:27:03:cc:e3:
75:6a:24:d0:68:57:34:86:6c:b2:d6:aa:81:6f:60:50:2d:2a:
30:54:11:3d:57:9b:02:a5:74:86:17:03:a2:28:bc:4a:e7:88:
cb:5e:a3:b7:a9:91:ba:57:02:35:b6:b6:8f:f0:a7:0b:b4:6d:
25:fc:48:1b:32:e1:34:49:df:95:7d:78:7a:d9:67:cf:56:70:
11:9f:9a:40:04:c1:0f:f0:a7:7d:70:d9:b7:55:16:cb:97:a1:
fd:a3:c3:d3:4b:43:a2:a7:8f:9b:cf:d5:79:aa:e6:25:a0:2d:
4c:2f:00:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:09:31 2025 by rpki-client