Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
File: aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft (raw, json)
Hash identifier: YtPFeYd6KTqA8+rZi8w9h6Vlv1gAX9p1GdyoliGzRvo=
Subject key identifier: D7:BF:51:C8:CC:31:F1:66:9D:F9:83:FD:F1:E5:99:7B:4C:0E:5E:B4
Authority key identifier: 69:72:0A:91:03:E1:AE:00:CC:78:8C:5D:EC:FE:09:48:C8:4B:CD:1B
Certificate issuer: /CN=69720a9103e1ae00cc788c5decfe0948c84bcd1b
Certificate serial: 019590AB899F591FC0C96468EF0B7813527C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
Manifest number: 0BAC
Signing time: Thu 13 Mar 2025 18:01:55 +0000
Manifest this update: Thu 13 Mar 2025 18:01:55 +0000
Manifest next update: Fri 14 Mar 2025 18:01:55 +0000
Files and hashes: 1: aXIKkQPhrgDMeIxd7P4JSMhLzRs.crl (hash: yX4hv99hZpDPo0sv8NFVgto2lvcNFxc4ks3tnTqYpI4=)
2: jT8P4HyIvKh8r7FQFBaidUndh0Q.roa (hash: Wroxjw87hFNcZdv8/bJmsCuX0IjtBBcn8Xp1138BSK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:ab:89:9f:59:1f:c0:c9:64:68:ef:0b:78:13:52:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69720a9103e1ae00cc788c5decfe0948c84bcd1b
Validity
Not Before: Mar 13 18:01:55 2025 GMT
Not After : Mar 14 18:01:55 2025 GMT
Subject: CN=d7bf51c8cc31f1669df983fdf1e5997b4c0e5eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:22:c8:e3:8f:0b:c2:6f:5c:e4:b8:7e:bf:2b:
d0:2a:fe:7e:78:0c:ff:0d:f6:d9:b7:0f:be:90:34:
ed:d7:85:06:27:89:f3:c5:a3:25:ec:27:d0:6d:af:
79:df:b4:a4:19:6b:c0:7e:5c:a4:61:c8:84:e4:e4:
71:31:76:f5:d7:e6:56:f5:b6:d3:08:f7:ab:2a:dc:
23:58:4b:8b:f1:08:ba:29:07:2d:c8:6b:91:65:d2:
51:fb:62:6d:27:0b:b9:35:bd:c7:9a:bf:a8:5c:2c:
bf:15:32:1e:04:f1:f7:54:87:e9:e4:c5:27:b0:07:
cf:d5:09:03:04:68:a5:fb:9c:39:e1:8f:fc:35:cd:
c7:5f:f1:b1:6c:d5:17:58:8b:a6:c9:91:34:50:fd:
af:56:da:0b:2e:08:01:c4:ee:f2:a1:55:d9:e3:ad:
55:3b:c3:67:6b:85:0f:da:cf:39:35:e9:29:2d:21:
b8:58:8b:4a:7e:c5:90:0c:97:5c:92:6d:01:0f:58:
0f:00:ec:dd:a5:4b:4a:bd:8a:b0:5f:52:4a:3f:e6:
63:b3:fb:75:b3:ac:98:0a:2e:58:98:8d:78:3c:4c:
40:b9:9a:df:04:09:e6:e2:8d:2f:ad:c3:b4:c3:25:
d8:1d:25:f2:c5:fb:75:e9:56:16:d4:d3:7f:18:d4:
6d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:BF:51:C8:CC:31:F1:66:9D:F9:83:FD:F1:E5:99:7B:4C:0E:5E:B4
X509v3 Authority Key Identifier:
keyid:69:72:0A:91:03:E1:AE:00:CC:78:8C:5D:EC:FE:09:48:C8:4B:CD:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXIKkQPhrgDMeIxd7P4JSMhLzRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/d516a3-8974-45db-8226-8174ddae31d3/1/aXIKkQPhrgDMeIxd7P4JSMhLzRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d3:d2:a9:b4:82:4c:95:c0:fe:75:e6:ed:67:fd:79:8d:47:92:
51:9f:38:0b:07:93:38:a2:c3:3c:4d:9c:4f:4e:09:6d:01:db:
79:55:6e:9e:60:b7:ba:18:14:b8:d6:88:2e:f3:ef:c4:20:ef:
1f:f5:1b:42:27:91:c5:6f:61:b8:64:44:52:e1:9d:9c:c4:37:
b0:ee:ab:47:26:c0:52:40:eb:3a:ba:1c:88:94:65:95:3b:dd:
bd:0a:04:f0:dd:1b:39:8f:2e:4a:0e:56:03:c7:76:a6:cc:06:
52:4d:c6:64:c7:9b:29:15:2c:0d:be:5e:6a:63:8c:12:97:10:
e8:93:59:bb:dc:e3:da:bd:25:cd:c4:5a:bb:d0:4e:3b:96:bf:
60:bc:96:08:50:76:f2:de:0e:df:bf:ef:7f:10:96:f9:95:5c:
71:a8:ec:b5:30:db:57:3a:32:bd:e9:42:58:e4:81:29:d2:3e:
a9:cf:e9:53:62:12:cd:ab:51:93:8d:1d:e1:2f:13:49:94:b9:
d4:e2:fb:29:24:b4:52:4e:0b:4a:8b:f4:c0:69:26:82:c4:96:
cd:d1:48:44:33:a3:a6:68:81:c2:90:3e:e3:aa:e2:ff:eb:19:
4e:c9:e6:b2:75:34:17:cc:b0:5b:f0:25:d2:bc:c6:2e:4f:0d:
76:fd:2d:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:28:59 2025 by rpki-client