Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json)
Hash identifier: hkMLADa9wBPJ80Y7UuLnF28jA+O2tUq/jNBsm9yq+aM=
Subject key identifier: 79:C0:7D:D8:CA:1C:BF:A3:87:6E:00:38:4C:60:B7:F1:69:8F:49:99
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 0196451FB91A18B23984A25280A0FD496835
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
Manifest number: 14F8
Signing time: Thu 17 Apr 2025 19:00:28 +0000
Manifest this update: Thu 17 Apr 2025 19:00:28 +0000
Manifest next update: Fri 18 Apr 2025 19:00:28 +0000
Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: 0b1wHYBqD2y3yTgkMU6lk8U7LDvXlSh5wKZvT9sh+r4=)
2: qen-QoIAAGwgpqx4OQAF6M4rR_M.roa (hash: Pfgs1o9qvVrkxz8on7jtYneDypFRD7JuU2XED3GEHk4=)
3: sJjIi8LxyBaapUPztypafiGazB4.roa (hash: snoS7xcNMuCgLXX7PRPXvmr0bu9uS7kTUSsVN0SedsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 19:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:1f:b9:1a:18:b2:39:84:a2:52:80:a0:fd:49:68:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Apr 17 19:00:28 2025 GMT
Not After : Apr 18 19:00:28 2025 GMT
Subject: CN=79c07dd8ca1cbfa3876e00384c60b7f1698f4999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f9:df:91:e9:b9:04:b5:bb:8d:3c:a3:67:04:
c4:11:f4:fa:9c:d7:ab:a8:bc:6d:5e:70:61:e2:0f:
cf:a5:d5:be:9c:32:0c:7e:eb:e8:ab:c2:be:eb:a4:
c0:cc:e2:03:0c:9c:d8:70:d7:1c:69:69:0a:70:39:
31:6a:79:9d:fa:90:f6:96:a1:1f:e6:61:2f:f5:32:
f5:30:ff:40:76:32:95:24:8f:0a:90:01:9a:c7:2d:
5d:75:ad:0b:78:7b:49:e7:2e:59:0e:9b:fc:9a:45:
ce:aa:ec:38:a3:09:56:db:97:99:c0:9d:e9:56:98:
f5:74:a1:f8:fa:3d:62:bb:89:50:f1:a4:c6:23:c2:
f7:a2:d5:be:3b:58:a3:74:86:d5:94:81:14:db:28:
48:85:1f:ac:ea:f4:f0:ad:5e:38:ef:75:be:7b:e9:
45:9c:76:50:1e:97:20:25:1c:13:90:52:6b:b8:1a:
02:2e:ab:4f:a6:1b:18:5b:f8:d3:fd:19:a0:dc:ae:
c8:92:e6:d1:16:67:90:89:3c:b9:ad:f1:6e:7a:72:
ba:da:56:b8:b8:b7:a9:b1:89:2e:e8:9a:17:74:87:
d1:50:fb:d9:06:27:4b:bc:a2:e5:bc:a5:24:04:50:
81:da:38:f0:70:01:68:7a:ed:cd:6e:b3:b9:40:23:
f7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:C0:7D:D8:CA:1C:BF:A3:87:6E:00:38:4C:60:B7:F1:69:8F:49:99
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:4e:1c:1f:d5:78:69:22:93:79:2a:d7:8f:5a:15:18:80:0d:
96:f4:0f:ad:0a:f8:be:4b:7c:d4:87:ba:ee:40:5f:85:98:f3:
a2:a5:21:bb:47:2b:dc:b7:31:3d:58:c8:d7:74:ce:45:0c:fd:
d6:6d:44:ea:1a:8a:83:33:57:38:f8:50:59:76:b6:90:27:a9:
79:97:69:19:16:0e:d5:e5:f4:c3:e3:84:8a:83:d0:33:91:0c:
fa:a7:e7:af:55:d3:be:83:e5:5a:cf:11:63:fe:59:9a:81:c1:
81:b2:06:22:e7:e3:12:ce:03:34:97:4d:0e:8b:c0:89:ed:fb:
95:df:3f:81:e9:7a:2a:18:a3:cc:f2:5b:ad:2f:e8:a2:c9:19:
56:ac:a1:16:62:a6:80:92:e8:7a:5c:ef:d4:51:90:ff:d2:7f:
dc:c4:c8:de:19:29:eb:63:01:79:be:c8:06:e8:31:a8:67:c2:
5b:ca:e7:c7:9c:ff:cd:b4:ca:54:14:e3:a4:63:38:cc:18:3b:
19:4f:6b:53:9b:46:6b:ea:75:b3:8b:62:6e:cf:a6:39:bf:ac:
7a:af:5b:31:0c:90:7e:74:03:8e:71:49:9a:b9:d0:2d:b3:ea:
02:63:b6:21:a3:53:2f:ea:50:83:cb:63:f7:df:26:32:30:1c:
bf:03:7f:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 04:35:02 2025 by rpki-client