Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json)
Hash identifier: FpzewTHkV05XIXQCiB9+3WuA5RGY7d180zTrzUFvPnM=
Subject key identifier: 87:2F:BE:1D:90:DD:5A:16:73:63:70:1F:13:5B:2E:B4:F4:E0:75:0C
Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Certificate serial: 01958C601BDC92803C9D896287B40FCB02B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
Manifest number: 073B
Signing time: Wed 12 Mar 2025 22:01:03 +0000
Manifest this update: Wed 12 Mar 2025 22:01:03 +0000
Manifest next update: Thu 13 Mar 2025 22:01:03 +0000
Files and hashes: 1: 1YtqoFQLtfGDiVmHDelz4DRg3EU.roa (hash: IK9E4boh47Pzwtuw3Las8hTZNUl+rwA5t6hlkkr2bx4=)
2: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: iRaS4ZtVrW1v2DWsAZH+52HFF6zVBJzNdOqhYgb5QP0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:60:1b:dc:92:80:3c:9d:89:62:87:b4:0f:cb:02:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Validity
Not Before: Mar 12 22:01:03 2025 GMT
Not After : Mar 13 22:01:03 2025 GMT
Subject: CN=872fbe1d90dd5a167363701f135b2eb4f4e0750c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d3:43:79:e2:d7:12:75:a9:92:ab:37:04:79:
10:27:2e:f1:63:6d:d1:5f:23:3d:1f:01:34:ee:13:
1e:4d:9f:43:e1:a1:35:b3:28:9f:38:fb:ab:e9:44:
23:4a:57:73:bc:eb:55:06:01:08:5c:17:2d:30:f1:
24:88:df:69:13:64:48:1a:a6:00:15:bc:de:d8:e2:
ff:1d:59:f0:27:f7:7b:08:00:e8:f4:81:a1:aa:05:
9e:aa:90:a7:91:19:76:5b:77:bc:d7:0d:24:db:b3:
47:7a:10:19:68:5d:57:56:2e:c9:6f:d2:1a:53:1f:
8f:05:6b:94:6a:5f:39:dd:be:cf:1e:70:56:9b:ed:
17:09:67:b3:62:8e:74:fb:df:ca:8f:d9:17:97:67:
df:00:84:65:d9:b4:f2:f4:35:2c:cc:6c:94:a8:b8:
d7:ef:04:09:54:01:97:b6:f0:39:04:89:45:e4:e5:
7b:9b:46:03:91:62:3b:5f:8b:10:76:3d:3b:97:5f:
ec:64:a8:61:23:db:e2:72:2a:05:de:7b:57:f0:44:
32:a6:29:d5:e5:27:da:12:af:80:91:f1:59:5a:db:
a9:d0:d3:1f:b3:ec:ef:25:24:e6:d7:79:83:63:d6:
4a:07:38:f0:a4:b4:fd:97:ec:ba:41:99:6f:d6:42:
10:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:2F:BE:1D:90:DD:5A:16:73:63:70:1F:13:5B:2E:B4:F4:E0:75:0C
X509v3 Authority Key Identifier:
keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:fa:9f:ec:c1:ea:20:67:eb:dd:6a:14:60:07:2c:ee:46:a5:
5b:b7:9e:41:7e:f9:ee:44:2f:22:59:d5:d1:a8:87:86:fe:8d:
17:19:f1:51:e5:de:82:07:c0:47:4d:c5:82:2e:24:ba:f7:8c:
62:de:08:51:31:74:99:e4:b5:0e:8c:b6:55:1f:17:5d:a4:40:
7a:50:65:d5:93:b5:9e:86:18:31:02:17:1b:d0:1c:ee:07:11:
b9:92:e5:ec:5f:d5:aa:a4:d5:d2:75:ea:ec:5f:4c:65:7f:f1:
f5:c6:e8:f4:de:1b:51:9b:cf:62:eb:99:c3:73:56:b4:38:c6:
98:21:93:20:47:54:cc:47:82:2e:a9:17:a8:66:45:f7:50:c7:
a1:2e:6e:04:bd:ba:b6:14:9f:c7:07:9f:8d:35:da:78:68:b2:
0e:6d:b5:1a:18:e3:0f:56:4c:33:8e:33:5a:1f:bd:21:85:fd:
a0:d9:89:e9:ee:d6:42:e5:24:da:7a:b9:e6:c0:af:53:97:20:
52:5f:46:3e:90:00:d3:ff:f6:8d:47:77:3d:84:47:a4:f4:c4:
cf:6a:2c:de:33:5a:c7:71:ca:d4:af:2b:19:9f:d7:97:05:a8:
de:3b:81:2b:7d:17:31:a9:20:a1:d5:21:76:0a:98:22:5e:95:
c5:fe:da:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:36:32 2025 by rpki-client