Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json)
Hash identifier: vZJJniqflBQcFIl0WFIhG6fAAGZdWgSDYLfnXuwgSOI=
Subject key identifier: AB:C3:75:68:D9:B9:31:A6:22:8F:A6:D8:2F:17:5A:33:FB:2B:05:E7
Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Certificate serial: 0194BBCE330C24E4A45BC41E9E58E822C116
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
Manifest number: 06CF
Signing time: Fri 31 Jan 2025 10:00:40 +0000
Manifest this update: Fri 31 Jan 2025 10:00:40 +0000
Manifest next update: Sat 01 Feb 2025 10:00:40 +0000
Files and hashes: 1: 1YtqoFQLtfGDiVmHDelz4DRg3EU.roa (hash: IK9E4boh47Pzwtuw3Las8hTZNUl+rwA5t6hlkkr2bx4=)
2: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: Q3iZpOepoHL0T9MjW6B79i6AzHvyxe5rKqsF0LvacQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 10:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:ce:33:0c:24:e4:a4:5b:c4:1e:9e:58:e8:22:c1:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Validity
Not Before: Jan 31 10:00:40 2025 GMT
Not After : Feb 1 10:00:40 2025 GMT
Subject: CN=abc37568d9b931a6228fa6d82f175a33fb2b05e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:78:1c:b6:7f:70:05:fe:bd:10:f3:7c:30:7c:
e2:cc:84:fb:a5:e8:b8:3c:46:1f:f0:92:db:1a:ab:
72:18:44:a9:ed:d4:5c:4d:50:97:25:a3:4c:86:a5:
e5:cf:a8:4a:68:d9:e5:ee:3a:70:22:8b:21:a1:64:
6f:6c:a9:f4:ff:42:c2:e4:e9:1a:26:ae:83:7b:a8:
98:be:a6:b7:61:0e:62:32:b8:8e:74:6e:6d:31:2a:
ee:3e:b5:94:e1:c4:de:bf:6b:57:93:9c:cf:b9:96:
60:8f:29:b6:fa:94:22:38:11:8e:93:1e:e0:c9:9f:
ad:07:e2:36:2c:fa:8d:47:26:1b:6f:a3:d6:9d:32:
47:f0:d9:02:20:af:9c:1e:27:18:d0:d6:ce:67:92:
03:aa:98:ec:fc:2c:19:f0:ca:1e:f8:a2:7a:10:4e:
b3:89:15:97:ed:80:40:b1:b1:4e:a8:11:15:c7:5e:
e2:f2:aa:10:28:91:d4:f0:ac:ec:4c:a8:8e:83:9a:
dd:86:32:0c:5a:64:24:bf:ed:25:07:6e:7c:89:ec:
0c:e8:bf:7a:2c:24:ab:80:6d:54:eb:85:3a:53:40:
e0:20:15:78:f3:2b:92:c3:0c:82:c1:87:5f:ef:9d:
40:c2:45:2b:ef:af:e5:ae:34:56:d3:65:d6:e3:04:
36:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:C3:75:68:D9:B9:31:A6:22:8F:A6:D8:2F:17:5A:33:FB:2B:05:E7
X509v3 Authority Key Identifier:
keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:c6:c6:25:7c:23:89:ae:ef:76:1b:5e:c3:6a:d5:d9:be:a4:
dc:12:c7:21:80:d7:5e:47:58:a1:8f:52:7f:c2:dd:12:60:64:
96:39:48:49:16:85:98:ba:c6:ae:ef:1a:f9:55:af:37:10:73:
dc:0b:0c:4f:94:dd:04:af:14:0f:03:75:a4:de:5a:97:99:33:
96:f9:b8:ee:2b:5f:14:35:57:36:60:3a:9f:1f:88:8d:0f:2f:
e0:3a:a8:78:31:5c:44:2a:b9:4d:3b:7f:de:16:1e:b3:69:ac:
43:48:5e:51:42:42:9a:1d:46:ef:1d:7e:9b:76:03:bf:fd:f4:
aa:b9:f0:24:10:a4:96:44:17:ef:ab:27:85:81:93:47:5c:e7:
ca:ea:33:65:3a:97:cb:76:4d:7f:df:8d:4f:a1:35:30:4e:e1:
c6:9b:37:22:cb:7b:2b:08:16:63:bf:00:35:8a:2e:76:37:19:
2f:62:38:17:9b:6a:a1:63:8b:db:74:93:cd:07:51:aa:68:57:
ea:2c:62:1a:44:91:55:5e:35:07:7e:cc:1e:88:bc:23:85:80:
95:0f:ac:bd:6c:a8:a9:a6:47:6d:60:7d:e6:8f:88:52:e4:2e:
62:82:18:78:7b:3d:e1:e8:7a:b2:59:08:63:bb:14:d5:c0:51:
c4:39:73:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:26:35 2025 by rpki-client on console-fra.rpki-client.org