Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/c5ea31-7bc1-477a-8bdc-41a35e7c22f8/1/aP7VCMyl9xbk3ZdN41AOfdGbqhU.mft
File: aP7VCMyl9xbk3ZdN41AOfdGbqhU.mft (raw, json)
Hash identifier: HyG951uxflr9fijl8YiOyxaxy0gTTPqixi9MnqrpRUo=
Subject key identifier: 53:D3:21:CF:FE:B3:E9:09:79:4B:F9:2F:E9:AC:87:01:7B:37:AF:17
Authority key identifier: 68:FE:D5:08:CC:A5:F7:16:E4:DD:97:4D:E3:50:0E:7D:D1:9B:AA:15
Certificate issuer: /CN=68fed508cca5f716e4dd974de3500e7dd19baa15
Certificate serial: 0196440CE3C9F0EA14E68E5FEA122052F63E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aP7VCMyl9xbk3ZdN41AOfdGbqhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/c5ea31-7bc1-477a-8bdc-41a35e7c22f8/1/aP7VCMyl9xbk3ZdN41AOfdGbqhU.mft
Manifest number: 13D7
Signing time: Thu 17 Apr 2025 14:00:17 +0000
Manifest this update: Thu 17 Apr 2025 14:00:17 +0000
Manifest next update: Fri 18 Apr 2025 14:00:17 +0000
Files and hashes: 1: VuecASVmjUcKvyphdlmWhBLtzCY.roa (hash: 9pywbAdYpVLPp0+Qv028vFSYWXiOfuf7WbI6OQxi+GI=)
2: aP7VCMyl9xbk3ZdN41AOfdGbqhU.crl (hash: XLN/L+zoHKt3nCiEVksMRJWw+j4Cfc2sZruH65erMnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/c5ea31-7bc1-477a-8bdc-41a35e7c22f8/1/aP7VCMyl9xbk3ZdN41AOfdGbqhU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/c5ea31-7bc1-477a-8bdc-41a35e7c22f8/1/aP7VCMyl9xbk3ZdN41AOfdGbqhU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aP7VCMyl9xbk3ZdN41AOfdGbqhU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 14:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:0c:e3:c9:f0:ea:14:e6:8e:5f:ea:12:20:52:f6:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68fed508cca5f716e4dd974de3500e7dd19baa15
Validity
Not Before: Apr 17 14:00:17 2025 GMT
Not After : Apr 18 14:00:17 2025 GMT
Subject: CN=53d321cffeb3e909794bf92fe9ac87017b37af17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f5:95:d5:5d:aa:46:fa:22:75:1c:c3:29:66:
6b:a8:ef:ad:42:45:4b:8e:1e:5a:4f:59:85:81:6a:
f2:2d:74:aa:df:88:14:a4:ab:7c:9d:be:95:b1:bd:
6a:b3:34:97:99:61:79:72:7b:12:10:7a:b1:4c:61:
07:f9:3f:65:37:8e:bd:4f:86:f3:27:af:06:b3:14:
b2:08:54:52:24:d1:03:19:90:4d:a9:ef:73:d6:92:
f4:80:d8:20:d4:8c:ab:23:b7:4e:e3:9e:0d:bf:e7:
8a:47:c4:49:b1:27:d9:1c:34:b6:b7:2a:bc:9d:ca:
f0:57:ea:eb:74:55:74:b6:32:9f:60:99:8a:35:b6:
44:f9:63:d5:59:cc:46:0d:3b:fa:b4:8e:08:7a:68:
94:4f:5d:ca:55:ba:22:cb:56:c1:7f:b8:50:bc:1b:
d1:59:5c:1b:f4:54:af:0d:ba:ae:cd:08:5a:ae:2b:
57:4e:69:0b:90:32:17:e2:ed:da:9c:b8:ae:1b:26:
73:e5:1d:67:90:00:71:f8:7b:93:30:14:21:d1:4b:
59:eb:24:39:c3:ce:a7:05:98:e9:bf:e9:99:4a:b3:
ae:6d:f4:dc:75:b1:f0:d1:4e:6d:0e:53:db:40:d6:
50:3d:1f:c2:5d:7d:6b:fc:8a:e0:e5:bc:dd:79:35:
41:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D3:21:CF:FE:B3:E9:09:79:4B:F9:2F:E9:AC:87:01:7B:37:AF:17
X509v3 Authority Key Identifier:
keyid:68:FE:D5:08:CC:A5:F7:16:E4:DD:97:4D:E3:50:0E:7D:D1:9B:AA:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aP7VCMyl9xbk3ZdN41AOfdGbqhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c5ea31-7bc1-477a-8bdc-41a35e7c22f8/1/aP7VCMyl9xbk3ZdN41AOfdGbqhU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c5ea31-7bc1-477a-8bdc-41a35e7c22f8/1/aP7VCMyl9xbk3ZdN41AOfdGbqhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:0f:39:66:16:1a:66:f4:98:c3:f1:d6:3b:0b:a3:f0:2b:6b:
aa:5d:be:cc:21:74:16:39:a4:e5:68:9e:c3:a7:5b:fe:8e:b2:
c7:08:bd:f3:e6:e8:29:62:1c:07:d9:43:56:49:56:47:20:f3:
19:79:b8:75:03:91:3d:62:87:3c:53:f4:6b:a2:75:5d:1e:35:
7b:64:13:4f:47:52:5c:08:01:0c:af:4f:90:25:ed:0d:07:c6:
0a:a5:16:93:c6:bf:14:ff:2a:ab:d8:b2:33:3a:75:29:38:9b:
5e:7d:22:20:54:5b:ed:d1:d1:a5:59:fc:48:4f:e4:a2:5c:e4:
da:13:b3:ea:92:d3:ea:e1:66:e4:b9:9e:19:bd:58:4d:95:32:
cd:48:da:9e:fa:59:d0:49:78:af:e7:f7:0f:0d:28:e9:e1:53:
ab:b4:04:61:e9:f3:f1:0b:5c:4e:c5:99:81:16:d6:7b:08:cb:
a0:ec:0d:d4:58:a3:4e:36:de:70:df:00:e8:aa:04:79:39:0f:
9a:3d:df:89:7e:c7:c7:b3:1e:ea:44:bd:5d:64:77:8c:35:6d:
7f:03:96:ee:44:5a:2e:5e:54:3b:5a:33:04:a4:59:c3:4b:e0:
02:e6:dd:73:ca:52:93:75:13:2c:f6:4f:53:76:c9:2d:d2:e4:
62:ab:de:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 19:45:57 2025 by rpki-client