Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
File: aa24Jfn9vKDNfHkB3reiKuF5fAY.mft (raw, json)
Hash identifier: 621F/zyXiclJN90o9ZY0alNRt5391rv3w59ZJlD/18w=
Subject key identifier: 01:39:A4:EC:21:0B:5B:2E:52:D7:80:91:11:46:01:68:F5:67:16:F8
Authority key identifier: 69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
Certificate issuer: /CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Certificate serial: 01964AEAF45D606554F2FFF178C03E04A4B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
Manifest number: 1213
Signing time: Fri 18 Apr 2025 22:00:33 +0000
Manifest this update: Fri 18 Apr 2025 22:00:33 +0000
Manifest next update: Sat 19 Apr 2025 22:00:33 +0000
Files and hashes: 1: CcO4X5owbp8OTsQUAi4Se0U0bGo.roa (hash: Rjhil4a1bZ7IivISF1+emC+myyX4/SSXPPEDg9r6bJ4=)
2: aa24Jfn9vKDNfHkB3reiKuF5fAY.crl (hash: wVhy3BHWqxzUwTIDVq7E6bErUn/TASVbTkjk65IjPEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 22:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:ea:f4:5d:60:65:54:f2:ff:f1:78:c0:3e:04:a4:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Validity
Not Before: Apr 18 22:00:33 2025 GMT
Not After : Apr 19 22:00:33 2025 GMT
Subject: CN=0139a4ec210b5b2e52d7809111460168f56716f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2b:3b:3e:19:0f:23:ae:f2:1d:67:76:dc:1b:
9e:33:05:b2:18:f2:f4:3e:bd:82:71:b3:be:73:5e:
c7:d5:1b:d4:ff:d3:a0:65:b1:d8:c4:d0:e3:d2:25:
74:e9:4e:16:d0:00:ef:7e:83:b4:47:17:1d:bb:1b:
b9:e5:55:35:f0:9b:10:17:1c:f5:6e:81:de:61:85:
a1:3b:cf:ca:bb:85:d1:2d:57:64:07:e1:41:49:5c:
40:02:72:0d:ff:09:7e:45:ce:ba:57:61:b8:76:e6:
54:85:81:c8:21:a7:f1:87:14:9a:48:cb:de:78:91:
11:47:a4:00:ad:3b:19:9b:8d:7d:74:a3:cf:d6:2a:
32:1a:03:2b:88:54:f0:41:86:d1:ea:18:3b:e9:e0:
26:fa:7e:7a:8d:c4:86:19:25:9e:90:b3:93:b1:37:
15:26:27:a1:30:cb:2b:62:29:9e:7b:a7:6b:c2:2f:
24:72:a9:f1:70:64:7e:34:13:de:20:46:7e:41:ce:
21:2a:a9:39:35:86:eb:ae:c3:b3:a8:73:a8:f1:c3:
d5:88:84:88:52:f6:15:5a:0b:e9:82:8a:f0:c6:ed:
0e:b1:9e:7d:dc:c5:08:5c:54:d7:e8:ad:8c:0d:8f:
eb:6a:76:a3:6d:99:d4:59:b8:0a:94:0d:ad:bf:52:
bf:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:39:A4:EC:21:0B:5B:2E:52:D7:80:91:11:46:01:68:F5:67:16:F8
X509v3 Authority Key Identifier:
keyid:69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:13:a9:74:bc:a8:cb:8f:ca:cc:62:31:3c:cc:d7:a8:07:5e:
b9:58:9b:0d:08:6c:96:9e:de:5c:cd:36:e8:73:a4:0d:3c:2a:
d0:8d:03:c3:a7:83:2e:fe:f8:22:94:94:e4:85:e3:64:eb:de:
80:28:ce:47:f0:bd:6c:ce:3b:d9:e0:0e:ad:76:fa:a1:b0:83:
e2:72:6a:07:3a:41:80:08:aa:fc:66:2b:6d:2b:0a:db:83:5f:
40:62:7f:53:34:62:cd:84:1a:b5:98:2d:af:1c:e3:a6:7a:4c:
56:fe:5c:61:0b:8b:4b:91:98:ba:d0:52:3b:01:c4:f5:67:15:
18:8e:12:d9:25:b8:87:a0:cc:e9:c6:ef:ef:3f:b5:2c:28:7f:
22:fa:a7:76:ed:48:a0:bb:41:24:05:c1:ce:c4:d8:ce:9a:63:
08:9c:24:95:ab:a8:07:7c:2e:c8:20:1d:c5:b8:b4:3e:04:2a:
2d:5e:18:2a:a6:5c:e6:a0:eb:ff:93:12:60:f6:07:fa:be:f4:
19:af:fe:9a:4d:4a:b7:68:b6:94:5b:94:c2:df:b1:9b:f9:03:
3b:15:b6:df:90:8a:ad:5d:10:bc:4f:e1:90:65:73:c3:35:82:
40:41:d3:d1:b4:7d:bb:70:e8:69:21:d6:d9:87:09:f0:57:a2:
d9:2d:ec:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:16:06 2025 by rpki-client