Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
File: aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft (raw, json)
Hash identifier: rlpEI0JMAvvqAuWqMecijYZdo0a1A6Lxgcy9FkF5NxY=
Subject key identifier: 4B:06:1F:B1:7E:68:15:00:19:89:57:1D:73:D7:C4:45:53:90:28:BD
Authority key identifier: 68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
Certificate issuer: /CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Certificate serial: 019653801C9530878447C0488F42620DE46A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
Manifest number: 13FB
Signing time: Sun 20 Apr 2025 14:00:26 +0000
Manifest this update: Sun 20 Apr 2025 14:00:26 +0000
Manifest next update: Mon 21 Apr 2025 14:00:26 +0000
Files and hashes: 1: aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl (hash: IeGy3YJN8SBR9P7Gd9xuMpzbuCJcz7K5H9CNOyKfGDQ=)
2: cMnqdtCxCnyUSWOfUxTVBWPspak.roa (hash: OOJ4v4cc4LujDvo5fdL7b0ZauPjg9CekPa/sj+wo+LE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 14:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:80:1c:95:30:87:84:47:c0:48:8f:42:62:0d:e4:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Validity
Not Before: Apr 20 14:00:26 2025 GMT
Not After : Apr 21 14:00:26 2025 GMT
Subject: CN=4b061fb17e6815001989571d73d7c445539028bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:58:6e:56:91:b6:6d:a6:f6:cb:16:6a:1a:0e:
4a:73:85:b3:62:46:46:b9:b7:20:08:81:06:49:5c:
a2:ca:f8:1e:9c:fa:6a:93:b4:0d:36:eb:56:f7:db:
f9:8d:a7:6f:d8:f4:fe:f4:42:82:46:bf:74:89:16:
90:6b:13:61:ae:bb:70:a6:62:f1:50:25:93:2d:d0:
65:7c:96:16:c0:a4:c9:a2:89:60:02:b0:a4:13:f9:
6c:67:65:50:b1:f6:a4:7c:50:45:ee:63:3e:ce:57:
dd:7a:cf:16:7c:5a:b7:fb:8d:79:10:3a:c5:fc:51:
c5:8e:e8:46:b1:59:ca:92:9b:1f:af:ad:09:57:18:
af:89:cd:1b:1e:2c:a9:01:08:2b:18:da:8a:5f:2e:
45:8b:4e:8d:ab:93:28:7d:2c:e0:fd:7c:57:df:d7:
00:43:f8:44:67:8a:6f:de:05:14:38:32:df:0b:ab:
a6:27:94:7f:d0:cb:40:96:ec:ed:2e:e3:3b:e2:a6:
19:90:dc:98:a0:87:ef:b6:ff:c9:fc:b1:8d:54:da:
2d:e8:d4:7d:2c:a5:32:f3:c1:37:cd:58:57:0b:63:
85:32:fd:21:b0:d0:c9:f9:db:ae:00:7d:d9:30:2a:
a2:57:5a:d5:71:19:0e:b9:72:2b:2d:f3:fa:dd:40:
9e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:06:1F:B1:7E:68:15:00:19:89:57:1D:73:D7:C4:45:53:90:28:BD
X509v3 Authority Key Identifier:
keyid:68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:0f:2b:6c:79:ad:0f:1e:c6:34:87:74:85:6d:1c:0d:ed:70:
d6:f9:c6:05:6f:1d:84:b8:7c:c6:e1:f0:2e:53:e5:04:a2:f4:
b7:d8:5b:cc:3d:eb:3f:38:59:d1:fe:f1:cb:5f:0a:14:e0:60:
d9:cd:2e:7d:ec:6e:bf:d5:52:7f:25:c2:a0:bb:b5:6b:99:f9:
3b:63:ba:ca:bb:6c:b1:f2:fb:f6:73:ee:a4:14:13:42:ce:7f:
55:55:8c:b1:a7:78:d1:17:07:7f:dd:23:a5:a1:67:cc:35:5e:
63:15:13:a0:c4:8e:fd:b3:02:5b:28:c9:3c:a8:fa:9f:a7:ce:
8c:c5:47:ad:2a:1f:d1:3c:cd:54:7b:86:4a:38:3d:0c:86:a3:
7f:8a:7c:88:93:36:a1:39:40:88:71:fa:8e:ca:93:f2:86:3f:
82:98:98:67:90:af:56:76:67:6e:b8:07:86:d1:35:1a:5a:50:
fc:20:3f:61:81:4b:7f:f4:94:a3:cd:eb:5d:15:db:f4:5d:9c:
1a:1c:ac:36:97:c2:a5:16:61:67:9b:f4:28:b7:b4:fb:0c:88:
5b:2b:ac:06:f2:e6:a6:8e:7f:c8:17:3a:d0:76:da:90:1c:88:
ee:64:7a:61:42:9d:1d:b6:78:d6:ec:ff:b7:fc:cb:ae:fa:04:
75:04:68:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:16:54 2025 by rpki-client