Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: 3B1RJFDZajqcvk+lMV8bfuY6iLWhS/tIxTq45Q2p/vY=
Subject key identifier: 88:68:54:25:34:BB:29:4F:51:58:9F:21:76:8F:74:22:2C:48:12:09
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 0196409EB2F2FEB5A141EF0465E41714D04F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 052C
Signing time: Wed 16 Apr 2025 22:01:04 +0000
Manifest this update: Wed 16 Apr 2025 22:01:04 +0000
Manifest next update: Thu 17 Apr 2025 22:01:04 +0000
Files and hashes: 1: WhLENsO2y4UEzkuswA1wx41c4K4.roa (hash: qqWz2hpUFCfdOvnndjkfI9tgPQ2D7KLxkWgnxyi1reI=)
2: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: J3ubLMshiRIQEWV7R7/PfOszia4TEW5gutJkJUu2XC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:9e:b2:f2:fe:b5:a1:41:ef:04:65:e4:17:14:d0:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: Apr 16 22:01:04 2025 GMT
Not After : Apr 17 22:01:04 2025 GMT
Subject: CN=8868542534bb294f51589f21768f74222c481209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b3:7c:0e:0a:98:e1:58:11:72:b6:ee:1f:ba:
d6:0a:32:30:28:a3:e3:80:56:29:d0:b2:7a:25:a8:
ad:74:14:c7:f8:1e:c4:c3:0e:95:10:3b:0e:ae:da:
86:76:0d:ae:c7:42:b2:17:c7:ea:7f:b4:46:0a:dc:
64:bd:d9:8c:fa:24:5c:fa:e7:f5:02:5e:19:5d:3c:
c2:a5:df:81:8e:a9:a2:e6:f7:07:94:ff:68:0f:e9:
09:3e:1c:53:ba:dd:e2:44:d0:20:1a:36:45:72:48:
5f:86:ed:3a:13:93:0b:57:a3:f4:b4:0b:75:c2:e9:
30:34:5b:45:60:3f:11:cb:53:f0:2f:bb:63:10:d0:
fa:17:15:11:58:63:9b:f9:b2:9c:e1:24:b3:b2:06:
de:21:0c:0e:45:3b:65:19:a5:41:95:66:f5:23:06:
35:5a:ca:fe:54:c7:6c:91:76:e9:53:2b:78:4d:a1:
ef:0b:45:b1:5e:0f:ee:8a:b9:36:ce:11:19:54:a0:
2e:cd:b1:2e:fd:c1:2f:61:ff:1a:12:18:47:b0:3a:
c2:72:ab:aa:85:03:52:c5:a4:42:06:ad:c0:d4:70:
11:62:8e:72:93:33:b9:70:d0:0e:d3:aa:d2:fb:44:
e6:c8:ce:4f:15:f5:79:02:6f:52:c0:92:7f:1f:bc:
38:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:68:54:25:34:BB:29:4F:51:58:9F:21:76:8F:74:22:2C:48:12:09
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:34:b2:ab:f8:2e:38:5a:25:38:39:3b:64:a3:39:55:0d:76:
6c:45:6f:85:81:09:b6:05:dc:2a:c8:65:db:5c:61:84:0b:95:
7e:59:1d:98:d8:0b:4a:45:97:ba:c6:7b:6b:10:65:cb:91:98:
c2:96:15:a4:1f:65:84:2f:06:3d:66:0a:94:89:c8:fa:82:82:
88:5a:0c:fe:6b:d1:cd:6b:96:7c:ef:1b:5a:f2:7b:7f:2e:e6:
63:fa:e1:23:7e:22:af:d9:06:e0:cc:86:00:56:56:ae:a7:74:
05:a0:75:e5:1f:00:39:8a:6e:07:e6:f4:d7:6e:83:b0:07:3f:
c4:64:ba:8b:2c:8e:c4:0c:cc:f1:ce:7c:6a:52:da:ed:a5:92:
33:d9:1c:78:93:54:9c:fb:30:60:12:ba:0a:ba:5c:b4:ea:3f:
fa:0f:ae:bc:a4:04:0b:b0:c1:2b:c1:97:40:7b:61:39:80:3c:
11:31:f0:94:29:09:44:ad:5b:5e:c3:c5:6e:48:89:c7:8f:eb:
d5:fd:85:7c:50:96:04:ab:ab:55:c6:9f:32:40:96:75:73:74:
97:40:b3:ff:35:41:6f:19:f7:da:d4:ee:e8:01:ba:a0:2a:be:
c4:d5:e1:4e:72:f9:46:26:68:1b:76:3e:52:d4:82:f0:21:85:
0c:f1:a8:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 00:28:43 2025 by rpki-client