Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
File: AIVd2JclbobaPL5plOlM4ulpryY.mft (raw, json)
Hash identifier: lMm+gs+FSPMfo1G57srTpyNVdpHvOrtct2fdl9U/mGk=
Subject key identifier: 5B:1C:2D:15:31:16:E2:69:07:7C:99:F6:A9:0E:1E:60:EB:D1:37:27
Authority key identifier: 00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
Certificate issuer: /CN=00855dd897256e86da3cbe6994e94ce2e969af26
Certificate serial: 01964067B021622096D4D83D57BEF5F99E8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
Manifest number: 14F1
Signing time: Wed 16 Apr 2025 21:00:59 +0000
Manifest this update: Wed 16 Apr 2025 21:00:59 +0000
Manifest next update: Thu 17 Apr 2025 21:00:59 +0000
Files and hashes: 1: AIVd2JclbobaPL5plOlM4ulpryY.crl (hash: bKdLkdxr2Z9tpaRArmpxEqIOVXqz48a0XG3HNJj7ct8=)
2: MgGDvxLOtMPwXMbYQuh7K6Nu5E0.roa (hash: R8z9BxbXd7Dke2ejYNt/dzLTxcDWFrg7+4k/8QPKV/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:67:b0:21:62:20:96:d4:d8:3d:57:be:f5:f9:9e:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00855dd897256e86da3cbe6994e94ce2e969af26
Validity
Not Before: Apr 16 21:00:59 2025 GMT
Not After : Apr 17 21:00:59 2025 GMT
Subject: CN=5b1c2d153116e269077c99f6a90e1e60ebd13727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f7:2f:a8:f1:b4:01:e4:31:ef:15:11:33:6f:
5a:f8:b7:95:b9:fd:0b:d7:63:0f:1f:26:36:f1:56:
de:4c:55:9a:df:f6:25:47:19:cd:43:64:79:b1:68:
0d:6a:88:ff:3b:d3:c8:d6:9c:b3:44:b1:75:30:92:
b6:db:70:af:62:d0:33:01:ec:5e:a8:61:b6:e4:d2:
e3:2e:e2:e0:5e:ae:aa:1e:47:ca:7f:4c:14:76:44:
7b:86:89:48:c6:b5:6e:f6:f7:24:70:27:e7:ed:df:
1b:4d:03:cb:15:81:32:06:8f:64:e2:38:5b:18:c6:
f8:1f:0f:94:85:14:31:a0:e4:dd:3b:2b:90:ba:4a:
ec:f9:d8:f5:a3:e0:0f:63:60:eb:eb:79:67:5f:a3:
0e:85:a0:29:b6:97:2f:c7:31:3d:3d:a0:37:88:e9:
29:68:63:24:dc:b7:93:70:3e:46:a6:5c:f0:d3:b7:
38:2f:1a:99:37:20:75:40:b8:f5:fa:e1:d1:ca:14:
15:5b:5b:f6:2a:14:01:13:2f:2d:e8:93:b1:f9:75:
6f:20:96:81:f6:a9:6a:2a:eb:d6:06:ae:0d:46:ff:
41:09:70:8b:29:59:0a:33:0e:bf:64:5c:72:1b:f1:
01:2e:b0:cd:8b:66:a1:87:8a:cc:ca:57:69:9a:bb:
18:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:1C:2D:15:31:16:E2:69:07:7C:99:F6:A9:0E:1E:60:EB:D1:37:27
X509v3 Authority Key Identifier:
keyid:00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:d0:10:84:20:84:e4:61:80:24:6e:3d:b9:75:4d:0f:bd:02:
71:82:72:af:96:94:35:a3:f5:f3:3e:9d:cb:b8:bb:b1:c8:bf:
bf:4d:56:64:54:90:3a:3b:92:ce:5a:0b:8c:a0:a0:b3:56:a8:
d6:74:6c:dc:0f:4a:8d:72:75:84:c2:5d:c0:54:34:6a:e2:08:
2c:7a:26:b9:b1:f2:6d:c5:ff:a1:ca:9d:2f:a7:9d:47:12:20:
15:d0:45:90:44:ae:7f:d9:cb:18:bf:fa:7f:2f:24:f5:5a:db:
fe:aa:01:38:ef:7d:72:5a:e1:8c:eb:d6:61:6e:b4:e8:16:6d:
c4:d1:73:9f:7e:44:ad:c5:48:9f:ae:fb:03:48:67:7a:85:a3:
ec:cf:90:0c:62:51:b8:4a:41:4c:35:e7:48:fd:84:28:5c:9e:
b3:49:e0:a6:7b:90:0b:9f:2b:46:b8:06:25:f5:3c:df:65:1e:
f0:aa:f0:5b:b8:9f:74:02:84:f2:38:25:3b:15:f9:9d:70:60:
91:3a:08:e0:05:a0:37:d0:d5:00:2b:c1:f8:9e:ad:d3:ac:fc:
ea:a8:21:92:a3:f8:df:40:5f:37:3d:9f:07:7f:6f:ec:3d:3e:
e0:44:ba:26:18:09:98:44:db:39:ef:78:20:dc:4b:a2:ee:42:
ab:f1:c3:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:34:09 2025 by rpki-client