Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.mft
File: aYhRnekYGF-24euv0eCDXKoRMuQ.mft (raw, json)
Hash identifier: KF4A/70A5KvCMl2PocOx5eFosYkEZrR8Zj8xuFQldLg=
Subject key identifier: A6:D8:38:FB:15:63:85:53:51:24:EC:94:07:86:43:E5:73:B3:8E:BF
Authority key identifier: 69:88:51:9D:E9:18:18:5F:B6:E1:EB:AF:D1:E0:83:5C:AA:11:32:E4
Certificate issuer: /CN=6988519de918185fb6e1ebafd1e0835caa1132e4
Certificate serial: 01965F165BDC92F015013F1872C41A0761D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYhRnekYGF-24euv0eCDXKoRMuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.mft
Manifest number: 0FCB
Signing time: Tue 22 Apr 2025 20:00:22 +0000
Manifest this update: Tue 22 Apr 2025 20:00:22 +0000
Manifest next update: Wed 23 Apr 2025 20:00:22 +0000
Files and hashes: 1: TBGpVFI2lLvyIH4AY_XvgasXlhQ.roa (hash: tvFeHcNNfQ4t5ATDiY+/Dak2Xl/WexRzcSGHjDplBZM=)
2: aYhRnekYGF-24euv0eCDXKoRMuQ.crl (hash: nWPi6f6fsXweU2JIQVYqkcRnacROQRrY/XcdjpO/MfQ=)
3: rbkwFcYLaEEcgP57xj9znwlpmj4.roa (hash: enJo8AXIWRTz+79R6txrBmjabj1OaXyVz0RKSwmCnM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYhRnekYGF-24euv0eCDXKoRMuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5f:16:5b:dc:92:f0:15:01:3f:18:72:c4:1a:07:61:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6988519de918185fb6e1ebafd1e0835caa1132e4
Validity
Not Before: Apr 22 20:00:22 2025 GMT
Not After : Apr 23 20:00:22 2025 GMT
Subject: CN=a6d838fb156385535124ec94078643e573b38ebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:af:f2:16:25:28:cc:bb:be:e2:7e:ed:e3:d5:
55:08:c8:eb:ca:20:7a:d1:5a:9e:c5:8e:54:ce:59:
50:2a:a5:2f:87:83:04:3d:d7:7a:dd:6a:64:aa:c7:
d3:ff:4d:01:21:63:07:84:66:ed:5d:21:33:e2:bd:
51:6f:eb:fc:90:e4:40:86:b9:94:3d:5a:23:81:a3:
20:ef:06:d7:5f:ef:c4:ce:35:8a:33:4d:9b:c1:73:
c5:fa:7d:4b:7e:03:ce:55:70:83:12:2f:0e:d4:ba:
0c:3f:67:d3:83:d6:67:7e:35:8c:ed:0b:b8:8a:b2:
ec:1b:51:55:d8:4b:b1:72:09:d4:85:c7:8c:2d:f1:
b0:18:de:ac:7b:33:22:4d:fd:e4:36:5a:03:6c:32:
18:0d:4a:dd:32:79:15:18:73:d1:56:b2:07:96:42:
a4:ac:b7:40:2b:a7:88:62:2e:64:e0:ba:7f:1c:93:
4d:06:ce:1e:3b:72:97:e3:22:76:db:33:fe:e0:a5:
db:6f:a5:31:84:2f:cc:ec:34:18:c7:d9:a5:42:e8:
ab:9f:b3:6b:4d:94:dc:f3:fc:ac:66:79:af:5a:e0:
31:53:6c:63:51:89:ed:2b:0f:db:14:fb:db:09:04:
41:9c:d2:01:3a:2b:a5:09:e8:15:3b:d3:9c:67:2f:
9f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:D8:38:FB:15:63:85:53:51:24:EC:94:07:86:43:E5:73:B3:8E:BF
X509v3 Authority Key Identifier:
keyid:69:88:51:9D:E9:18:18:5F:B6:E1:EB:AF:D1:E0:83:5C:AA:11:32:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYhRnekYGF-24euv0eCDXKoRMuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:2f:95:95:f4:1d:65:03:67:e3:a2:f6:8e:e0:7f:c0:56:7a:
85:6d:cb:60:35:eb:e6:85:28:56:76:26:b7:56:ae:3f:c4:d9:
23:cb:96:0c:16:5f:9d:56:94:9f:61:cf:2c:52:42:b3:be:df:
60:10:27:c2:91:d0:55:72:a8:45:e3:5f:11:e4:71:bf:2e:c2:
cf:1d:4f:e1:9f:06:e4:d0:a8:64:b0:28:9d:b8:d9:4e:72:ae:
d3:81:19:56:31:de:a7:da:e6:ff:52:7c:08:30:f7:ad:c1:50:
bc:d6:c7:6f:ad:c0:9d:ef:2f:8b:ab:73:c1:79:74:11:23:fb:
62:5f:57:89:89:0c:22:be:cb:2e:96:25:ce:3a:88:5f:e6:e0:
8c:20:17:55:c6:88:96:41:76:de:db:5d:4d:2d:d0:4e:a5:52:
67:ac:ad:0d:a3:f4:1a:34:6f:5f:73:75:5e:6c:77:39:07:93:
70:d5:45:c2:cb:06:20:a8:9a:50:bb:b4:c0:eb:88:08:63:30:
9d:a3:a6:82:ae:46:2f:e7:56:ad:49:e4:3f:0f:2f:fb:ab:f2:
74:2d:21:9f:2b:56:17:ea:0c:79:c8:bb:59:2c:0a:2f:e3:dc:
6f:52:1d:53:f9:15:3c:f8:56:12:66:9f:05:1a:db:6a:95:e0:
a4:b2:40:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 22:01:55 2025 by rpki-client