Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.mft
File: AF8NRLIh9LEcidtolp-Xw8cVSQY.mft (raw, json)
Hash identifier: mtvTkezDowbltasOCuVFkzS2b9VMaBf2QQvE7hUb3oM=
Subject key identifier: 60:9C:4F:C0:82:56:D1:E7:35:60:95:10:B4:BC:EC:3B:9F:18:71:44
Authority key identifier: 00:5F:0D:44:B2:21:F4:B1:1C:89:DB:68:96:9F:97:C3:C7:15:49:06
Certificate issuer: /CN=005f0d44b221f4b11c89db68969f97c3c7154906
Certificate serial: 019655A5E5D2485BC0B738AB496C56C0F929
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF8NRLIh9LEcidtolp-Xw8cVSQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.mft
Manifest number: 14FE
Signing time: Mon 21 Apr 2025 00:00:57 +0000
Manifest this update: Mon 21 Apr 2025 00:00:57 +0000
Manifest next update: Tue 22 Apr 2025 00:00:57 +0000
Files and hashes: 1: AF8NRLIh9LEcidtolp-Xw8cVSQY.crl (hash: 9jI0gPSXa/Tfv+Nl7nlacYyTYm4B8z0OpQcmSCuONEQ=)
2: YU4fCfmpK-fuEOwSolTjGJvHl-Q.roa (hash: jEvy+I1e+1GaLBXiJtzyH21Rx3ZNEpokSAtj3mt7uI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AF8NRLIh9LEcidtolp-Xw8cVSQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:e5:d2:48:5b:c0:b7:38:ab:49:6c:56:c0:f9:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=005f0d44b221f4b11c89db68969f97c3c7154906
Validity
Not Before: Apr 21 00:00:57 2025 GMT
Not After : Apr 22 00:00:57 2025 GMT
Subject: CN=609c4fc08256d1e735609510b4bcec3b9f187144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:79:6b:41:56:68:07:13:7e:98:3e:03:8e:df:
a0:3a:6c:2f:56:cb:eb:d6:f6:1b:1c:7a:a4:1d:f9:
2b:05:31:33:29:e5:43:27:f7:a1:fd:7b:36:cf:37:
e2:11:8a:72:b8:64:24:34:02:d6:77:53:54:88:ac:
a0:2f:b7:db:e5:41:d8:ce:cd:f5:82:1a:02:77:a5:
a0:d4:3c:13:45:2b:53:be:0c:10:b9:5e:8a:e6:dc:
d1:34:9d:4a:9f:15:e8:64:e6:f0:84:69:2b:91:ea:
20:40:5a:3c:08:af:d9:ce:51:47:b8:c3:06:fe:17:
ac:0e:c4:9e:1f:39:f3:57:de:3b:0e:68:4d:b3:86:
8c:63:4f:b8:af:72:2d:24:b1:6e:39:0f:5e:29:1b:
fa:57:de:c7:58:27:3c:89:fa:38:65:37:5e:33:d0:
75:07:03:39:e8:60:83:b8:b8:a4:a3:d3:b4:ec:b2:
cb:ac:4d:c7:ee:31:42:1f:e8:c9:22:49:17:7e:09:
74:c9:0f:31:2f:8a:49:11:1e:3c:f8:9e:0f:08:35:
b7:ee:00:f7:10:1f:66:12:b2:d2:d0:0f:15:79:94:
01:72:26:90:ae:2f:b3:24:91:8c:fb:48:96:81:42:
2d:59:71:b9:ee:c5:39:41:a5:9d:dc:cf:f9:ea:fe:
4d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:9C:4F:C0:82:56:D1:E7:35:60:95:10:B4:BC:EC:3B:9F:18:71:44
X509v3 Authority Key Identifier:
keyid:00:5F:0D:44:B2:21:F4:B1:1C:89:DB:68:96:9F:97:C3:C7:15:49:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF8NRLIh9LEcidtolp-Xw8cVSQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/68239f-09a3-4108-89ba-eee50dd9193c/1/AF8NRLIh9LEcidtolp-Xw8cVSQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:af:74:88:e8:0e:a3:df:2b:39:b4:61:9a:88:12:68:b3:48:
02:76:7b:a0:3f:57:6b:c7:b9:71:f4:d2:45:8a:fe:79:24:87:
cb:7a:ca:19:91:84:bd:48:b4:b1:66:db:39:ef:d6:c3:d2:25:
f0:fe:60:ce:1b:94:5e:6d:9d:85:7e:0c:06:a7:68:11:a9:90:
8f:34:fc:b4:b4:d3:da:65:ba:19:07:cb:51:90:77:07:55:84:
17:cd:c6:03:a3:2a:12:f7:81:dd:ea:6a:47:56:c2:f1:10:73:
0b:d4:2c:80:5f:74:7e:52:10:33:1b:e4:66:e9:77:82:7d:dd:
38:ab:c9:da:20:9c:7d:62:ba:55:90:fd:84:5f:88:60:d6:38:
2a:1d:b1:17:ed:5f:32:71:70:8d:4f:2c:97:89:15:20:d2:46:
b4:7a:82:7a:33:ea:73:6c:86:84:78:69:be:c1:cf:3b:e4:41:
12:ca:d7:e1:66:ed:7f:f3:07:83:85:ed:71:a8:a7:e1:e6:eb:
55:a4:41:e2:23:65:7c:ca:f7:4c:c2:9d:f0:f3:4e:c7:16:26:
2b:51:20:12:d0:e2:8e:2f:ea:a3:0c:94:fe:8c:1f:63:4e:e5:
14:11:33:ba:0c:3c:89:8e:a2:5d:73:63:22:55:f7:c4:67:ca:
3b:b0:0d:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:25:31 2025 by rpki-client