Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft
File: a3tNxJzDUDQveq4ssyBbn3dfZh0.mft (raw, json)
Hash identifier: aAGcxr5vR23B4Cx/ISoq+yiXL3Mmld+1UAIdaOxG4qI=
Subject key identifier: 69:3C:35:25:44:55:D5:B9:B6:17:14:55:DF:65:1D:A9:EE:29:17:F9
Authority key identifier: 6B:7B:4D:C4:9C:C3:50:34:2F:7A:AE:2C:B3:20:5B:9F:77:5F:66:1D
Certificate issuer: /CN=6b7b4dc49cc350342f7aae2cb3205b9f775f661d
Certificate serial: 01964B8FEEA23DFC31EF5F1324A374F64533
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3tNxJzDUDQveq4ssyBbn3dfZh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft
Manifest number: 14F4
Signing time: Sat 19 Apr 2025 01:00:45 +0000
Manifest this update: Sat 19 Apr 2025 01:00:45 +0000
Manifest next update: Sun 20 Apr 2025 01:00:45 +0000
Files and hashes: 1: a3tNxJzDUDQveq4ssyBbn3dfZh0.crl (hash: 7sHLsobEnR5uPt+X1ByF7l3kL66UKxaKiIHrExRPwnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/a3tNxJzDUDQveq4ssyBbn3dfZh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:8f:ee:a2:3d:fc:31:ef:5f:13:24:a3:74:f6:45:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7b4dc49cc350342f7aae2cb3205b9f775f661d
Validity
Not Before: Apr 19 01:00:45 2025 GMT
Not After : Apr 20 01:00:45 2025 GMT
Subject: CN=693c35254455d5b9b6171455df651da9ee2917f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:76:a6:41:ce:53:c8:cb:ee:61:5d:12:97:5b:
df:a2:48:1b:e8:2e:6e:3a:20:d3:b7:15:f1:bc:86:
f3:64:0b:ff:ce:fd:f2:ce:06:2d:6b:a8:94:1f:fe:
34:2d:54:16:cc:3f:4e:24:2a:85:80:fd:8d:06:8b:
71:aa:36:8f:37:81:e6:0f:6d:6f:d1:76:dc:73:c7:
c1:5b:e5:25:fa:d9:d9:d2:bc:a3:62:bd:a8:e9:dd:
e9:b4:0e:7b:08:20:99:7a:9b:85:10:2c:12:09:83:
f9:2e:a2:d2:d3:d0:46:d7:a5:04:86:3c:df:f0:41:
71:99:48:bd:32:27:f3:96:66:4f:09:90:ff:9c:4b:
e0:b5:b4:49:7e:d3:22:1c:da:29:3e:91:28:5b:08:
03:47:7b:85:69:60:34:73:a7:ac:35:81:23:0d:a4:
22:97:ed:59:47:95:19:09:fb:68:89:77:2a:6e:74:
1f:c6:3c:ec:6f:b1:3c:eb:98:2f:b7:c3:e5:0f:73:
d4:a1:c4:f1:0e:c6:70:e5:ce:36:38:d7:69:39:44:
ef:ea:3b:17:26:6d:d5:65:9c:6a:4e:92:c1:1b:70:
5d:0d:53:fa:67:cf:57:c0:e5:16:cd:b2:1a:fe:a9:
4d:69:87:fc:36:39:e2:c5:1a:d1:47:25:ef:b0:fa:
fa:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3C:35:25:44:55:D5:B9:B6:17:14:55:DF:65:1D:A9:EE:29:17:F9
X509v3 Authority Key Identifier:
keyid:6B:7B:4D:C4:9C:C3:50:34:2F:7A:AE:2C:B3:20:5B:9F:77:5F:66:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3tNxJzDUDQveq4ssyBbn3dfZh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:52:23:f8:31:ae:02:41:75:74:5b:0b:9d:b4:ad:84:4a:a3:
07:e5:6b:b2:c6:84:eb:03:94:bd:7e:90:3b:ac:da:74:78:cd:
5d:7c:a8:af:0a:9c:4e:d6:44:80:88:41:f2:35:e3:cb:27:c2:
aa:ac:58:28:f5:f7:ba:10:0c:91:c9:eb:d8:f2:94:38:a8:a4:
b2:6b:0a:dd:8a:e1:d3:18:7b:c0:92:68:77:73:d4:6a:af:9b:
b5:6c:9a:13:8a:cc:3e:0e:a8:6c:6c:6e:f0:63:f0:61:aa:60:
46:51:35:1e:75:f8:d1:1e:7a:9d:6e:51:f8:bd:09:7c:40:82:
e1:8b:ec:81:ee:a7:8b:1c:b8:bc:2d:46:c1:17:25:08:5f:4e:
d2:b6:47:ef:72:ba:b5:15:71:55:8e:03:ec:d6:f5:b1:cb:b9:
43:94:65:55:b0:04:0a:b2:1f:b1:a3:49:06:e3:44:24:7f:c6:
64:bb:fb:04:f2:6e:86:0a:72:bb:80:22:b2:0b:13:44:f6:71:
95:d8:e1:95:03:d8:e3:58:23:0b:30:4c:06:13:bf:48:3e:d0:
e3:19:ac:07:10:af:a1:e3:65:75:1d:40:b9:d9:69:7e:b2:ff:
27:48:1a:13:62:4e:6a:af:15:90:d4:ca:f9:27:15:56:f6:cc:
dd:97:b6:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 05:03:31 2025 by rpki-client