Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
File: aVHUVR0mpRwPkrd8LTePs0dYuHc.mft (raw, json)
Hash identifier: D2em/uQx535vk9bhIucPw18cWgJKhQJBHj+qJrMwC7w=
Subject key identifier: 5A:09:D1:90:4F:FA:17:AE:C7:72:56:3C:91:1F:A4:24:26:7B:1E:56
Authority key identifier: 69:51:D4:55:1D:26:A5:1C:0F:92:B7:7C:2D:37:8F:B3:47:58:B8:77
Certificate issuer: /CN=6951d4551d26a51c0f92b77c2d378fb34758b877
Certificate serial: 01964B21E1534CD321C63EAFFB65B1EA30FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
Manifest number: 0609
Signing time: Fri 18 Apr 2025 23:00:33 +0000
Manifest this update: Fri 18 Apr 2025 23:00:33 +0000
Manifest next update: Sat 19 Apr 2025 23:00:33 +0000
Files and hashes: 1: PxyIfomodD9RHY4nPMUQ_8FG_F0.roa (hash: GQBwkJMiYlMRNPb5m5PsI1lq6MhgUy7JaZpjCwR+Ch8=)
2: aVHUVR0mpRwPkrd8LTePs0dYuHc.crl (hash: 6rltj7AHU1uX6VtgxdVO7KtteNv+VVOG+kXMUq2YUSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:21:e1:53:4c:d3:21:c6:3e:af:fb:65:b1:ea:30:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6951d4551d26a51c0f92b77c2d378fb34758b877
Validity
Not Before: Apr 18 23:00:33 2025 GMT
Not After : Apr 19 23:00:33 2025 GMT
Subject: CN=5a09d1904ffa17aec772563c911fa424267b1e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b4:3c:52:86:f2:d1:66:84:bb:6c:35:7b:b7:
8b:66:ee:6f:24:f0:42:9b:47:1d:ba:e6:e5:41:2c:
3a:7b:70:c7:3a:95:65:66:7c:03:c1:d1:98:3d:96:
06:22:08:05:23:49:1f:ec:5f:47:f7:4b:ca:32:55:
97:e2:83:d5:46:e9:ee:7a:7b:5d:ec:b5:b3:66:a8:
74:e9:30:88:c2:7e:a7:df:57:b0:5d:e6:91:8d:68:
f2:11:61:19:09:cb:a1:5f:9c:a9:d5:02:4a:a8:1d:
1a:65:df:d8:49:f6:15:6f:42:ff:82:c4:b5:8d:ca:
1d:70:e3:09:f6:06:f1:06:f9:3a:43:e3:03:59:16:
e0:4d:45:57:52:16:7b:28:ce:41:b2:df:cf:50:db:
d9:d8:fc:ef:d1:14:f0:ec:da:b9:20:d3:83:7a:4c:
44:8f:f6:97:9d:a2:f8:77:08:b3:56:ea:05:49:4a:
75:b1:92:be:df:da:c1:fd:e2:20:fe:b6:ec:02:c2:
4e:93:61:0a:ad:d6:c2:61:64:6d:e3:8b:3f:45:35:
56:5e:54:f0:a5:56:31:3c:24:1b:15:fd:33:49:43:
f8:9f:67:6e:3d:b9:fb:2e:b3:aa:22:30:5d:53:30:
1d:d8:15:7d:71:68:e0:a6:d8:66:0f:e2:0c:41:bd:
a2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:09:D1:90:4F:FA:17:AE:C7:72:56:3C:91:1F:A4:24:26:7B:1E:56
X509v3 Authority Key Identifier:
keyid:69:51:D4:55:1D:26:A5:1C:0F:92:B7:7C:2D:37:8F:B3:47:58:B8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:25:35:2a:5c:16:2f:e0:1c:4a:ea:9d:55:ad:9c:a5:78:1c:
cc:c3:6e:dc:bf:1b:e5:fe:5b:42:8b:8e:64:ce:fb:a8:ef:b1:
93:52:12:78:22:47:8a:c1:a5:24:4c:9b:8f:8e:cc:73:02:d7:
ea:22:49:ad:83:59:aa:54:6e:62:d8:46:31:cc:fc:4c:6d:dc:
a0:f0:e1:4d:a7:be:a0:b7:b5:14:3a:be:d1:b6:0a:30:00:0f:
f4:07:89:aa:7d:ff:55:30:3d:55:5a:02:07:6c:d5:d6:f2:76:
b9:57:1f:f9:9b:ea:74:64:69:e4:6c:42:fa:42:28:97:ea:f4:
73:2e:39:e5:59:92:42:cb:e0:07:73:9e:e0:37:26:27:81:ca:
08:0a:ff:38:32:ef:9c:e8:49:11:f1:6d:4a:76:74:74:e1:57:
50:c5:9c:7f:03:9e:b0:f3:b2:b9:7e:72:88:05:5f:fc:be:37:
78:b2:3f:79:37:01:d2:66:7c:e1:4f:6d:00:ed:27:93:12:e2:
ab:28:10:0e:00:43:08:7f:a5:2f:98:14:4d:26:ec:2d:4f:b8:
c2:c8:54:c4:2c:12:3b:3c:b6:b8:a7:5b:92:ef:6b:53:90:1c:
39:4b:33:82:2a:e0:c4:a7:f5:95:5a:27:e7:2a:9b:d8:37:f1:
a8:35:05:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:40:08 2025 by rpki-client