Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
File: AJpjcoKz0KD8pKVU9pNvffQugWU.mft (raw, json)
Hash identifier: Ajg6qdwOIAi0jZHXVYTpTUhOxj+f6jWHnTIVQNOxoOM=
Subject key identifier: A0:E1:66:86:29:CD:54:72:A2:B9:35:AB:B2:05:AD:3E:DC:CA:06:F4
Authority key identifier: 00:9A:63:72:82:B3:D0:A0:FC:A4:A5:54:F6:93:6F:7D:F4:2E:81:65
Certificate issuer: /CN=009a637282b3d0a0fca4a554f6936f7df42e8165
Certificate serial: 0195816E78243CA445829F1FC2CA757F52C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
Manifest number: 0A6A
Signing time: Mon 10 Mar 2025 19:00:55 +0000
Manifest this update: Mon 10 Mar 2025 19:00:55 +0000
Manifest next update: Tue 11 Mar 2025 19:00:55 +0000
Files and hashes: 1: 2KtTnEqgfSqztCd7tujgpeMQKiY.roa (hash: PzcW2SmGhKzM/HWv9p7Gvr3dpPmkVhm+gAuqFa6OHHQ=)
2: AJpjcoKz0KD8pKVU9pNvffQugWU.crl (hash: +pjoO8/ijwAKId7MlYp+VFcPh/ffccitiKhv8w0+Fn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 11 Mar 2025 19:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:81:6e:78:24:3c:a4:45:82:9f:1f:c2:ca:75:7f:52:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=009a637282b3d0a0fca4a554f6936f7df42e8165
Validity
Not Before: Mar 10 19:00:55 2025 GMT
Not After : Mar 11 19:00:55 2025 GMT
Subject: CN=a0e1668629cd5472a2b935abb205ad3edcca06f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8c:45:91:f4:0e:eb:b2:cf:46:fc:33:5a:58:
de:78:68:3d:df:87:a1:6c:c4:93:dc:b3:54:75:f4:
ba:6b:f3:59:0f:0b:03:d5:67:69:cd:46:eb:64:61:
a7:03:d7:c5:bb:a9:2f:df:70:a0:dc:56:7f:95:83:
8a:8c:f6:e1:a8:40:25:04:48:21:20:fc:70:f2:93:
90:66:70:74:f4:1d:2a:89:4b:2f:6b:fb:c1:6e:c5:
cf:5a:70:3b:24:6f:39:51:e9:54:63:a1:b1:2a:d6:
0b:7e:52:0e:48:76:86:46:66:5f:e4:62:44:b6:45:
46:1e:12:d5:d5:33:98:83:2c:58:78:6b:5b:c2:0d:
44:e4:b9:bd:c4:93:82:81:8b:69:24:1e:f9:c3:9e:
a3:7b:d0:b4:e6:5a:f5:34:1b:d8:ae:ef:b6:f5:18:
b4:f3:f1:bf:4d:e3:29:33:0a:72:6f:5d:24:99:ba:
5e:19:45:00:2c:ef:b2:e9:95:48:ab:0e:c7:de:a3:
ec:c5:73:33:6f:c9:4c:f3:28:16:f0:7f:10:35:7e:
35:89:66:02:f1:b3:a4:20:53:12:e8:77:8a:30:ae:
91:42:77:ba:ca:27:b7:8d:5e:2f:5a:67:c6:14:77:
b6:de:41:ed:b0:3b:c2:1f:4e:6b:37:3a:bc:ae:37:
22:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E1:66:86:29:CD:54:72:A2:B9:35:AB:B2:05:AD:3E:DC:CA:06:F4
X509v3 Authority Key Identifier:
keyid:00:9A:63:72:82:B3:D0:A0:FC:A4:A5:54:F6:93:6F:7D:F4:2E:81:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJpjcoKz0KD8pKVU9pNvffQugWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ddc344-64c6-46c8-a25c-d4edc0eb3e0a/1/AJpjcoKz0KD8pKVU9pNvffQugWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:b5:67:b3:e8:4d:95:3f:ec:6f:d8:ec:65:d8:0e:0b:8e:22:
93:cf:b5:2b:35:05:da:0d:de:d3:6b:f5:1f:7a:05:48:c1:25:
13:6a:a4:b5:76:02:77:e4:c5:fe:4c:45:3d:b1:91:cb:42:a4:
14:f2:55:7e:c8:c2:a0:ed:f9:13:e3:ed:91:63:7a:8c:25:13:
a7:f8:1a:27:e3:f1:5a:ce:ba:8e:46:e8:04:ff:3b:8d:81:35:
97:75:ee:ce:6f:7e:36:25:9d:2a:98:1c:fc:6b:bd:d4:13:0a:
c3:24:30:b8:1e:17:53:a4:0f:ff:96:2f:2a:bb:a2:95:40:84:
4b:73:5b:1a:1e:ab:b7:66:e9:17:6d:a5:66:e8:a6:41:ca:6f:
e6:cf:60:23:63:7c:50:cc:ae:f0:d2:af:f3:f0:1b:0e:b3:93:
00:5b:92:20:7f:b3:6a:c1:ea:c2:8e:29:66:8b:31:d5:08:e1:
c8:45:9a:cf:a4:65:8e:32:64:ac:c4:3e:35:d4:d2:ee:41:63:
80:62:28:2d:b6:ff:cc:98:d9:7d:d3:2a:84:8b:8f:ae:d8:73:
40:3a:83:3d:11:6d:c1:26:0d:0d:55:4b:bd:14:e0:fb:99:9b:
4f:97:83:0b:e2:71:31:15:dc:d1:45:66:7b:92:e9:af:db:b3:
ac:f3:90:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:11:10 2025 by rpki-client