Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
File: 9aKRIk-CvG0mtRntevviXLMsEVw.mft (raw, json)
Hash identifier: QshQOqFNcMfB5DiNTHXztJmgh616xSSjUoukDkxjE7I=
Subject key identifier: 10:1A:C3:18:C9:D0:AF:B6:1C:16:A5:D6:DC:2A:F1:D4:CA:76:38:55
Authority key identifier: F5:A2:91:22:4F:82:BC:6D:26:B5:19:ED:7A:FB:E2:5C:B3:2C:11:5C
Certificate issuer: /CN=f5a291224f82bc6d26b519ed7afbe25cb32c115c
Certificate serial: 019636BFFEA85939C44FC7D74CE221F4A236
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
Manifest number: 09BE
Signing time: Tue 15 Apr 2025 00:01:14 +0000
Manifest this update: Tue 15 Apr 2025 00:01:14 +0000
Manifest next update: Wed 16 Apr 2025 00:01:14 +0000
Files and hashes: 1: 9aKRIk-CvG0mtRntevviXLMsEVw.crl (hash: aYvTYllHANJ6S211o+pGdxUfy2keyuT8+HSRPi+Z89s=)
2: JufGUN7lSpZAGWjrmqtvLUWR_zI.roa (hash: Iy7o+pEYYChGs2ZCtdktx7oLzzJhBT8ccxmlI2oNeGY=)
3: TvqtU6kGEWNG1Cpdb9p7065y7Us.roa (hash: feIhe0HlEu5dhdmycewb1eBF/nryf3+/l635UbwMTEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:36:bf:fe:a8:59:39:c4:4f:c7:d7:4c:e2:21:f4:a2:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a291224f82bc6d26b519ed7afbe25cb32c115c
Validity
Not Before: Apr 15 00:01:14 2025 GMT
Not After : Apr 16 00:01:14 2025 GMT
Subject: CN=101ac318c9d0afb61c16a5d6dc2af1d4ca763855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:70:e8:fd:a4:84:1c:77:df:3f:56:09:93:02:
55:53:db:12:c8:7e:69:7f:c2:ff:51:4b:22:48:00:
e0:b1:60:27:e7:28:f2:3e:39:77:82:cd:bf:d0:11:
76:db:17:0b:c6:bd:4d:bd:e4:3c:06:4d:ff:84:46:
9c:52:89:89:4f:c9:d9:d7:01:a7:51:81:96:49:1f:
9c:0a:1b:b3:1b:e5:c6:37:a3:81:66:ba:7f:07:37:
16:30:af:c2:d2:b5:1b:22:49:03:f0:8a:cc:b2:91:
3d:12:33:b0:d4:81:de:97:40:0f:98:51:e2:af:64:
6a:49:3f:5b:5e:33:76:14:7f:28:9f:61:9f:86:00:
a1:4f:95:21:dc:ef:d1:aa:82:93:1d:65:4a:ff:b3:
f8:75:2a:c3:65:9c:95:60:43:92:fc:c7:1a:a7:10:
b0:27:ed:25:32:6a:1e:bc:15:52:44:f7:d4:7e:c6:
33:de:01:67:25:4e:9d:1a:0c:55:fd:a5:22:40:16:
85:86:ab:54:17:a2:70:cb:02:d6:1d:48:f5:69:8e:
83:02:0e:c4:be:45:d0:eb:20:bc:8a:68:af:8a:60:
5b:14:e9:cf:36:2d:f8:8a:7a:c2:12:59:31:9f:c9:
91:24:f0:46:69:9c:1e:29:98:33:f7:76:71:3b:4e:
65:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:1A:C3:18:C9:D0:AF:B6:1C:16:A5:D6:DC:2A:F1:D4:CA:76:38:55
X509v3 Authority Key Identifier:
keyid:F5:A2:91:22:4F:82:BC:6D:26:B5:19:ED:7A:FB:E2:5C:B3:2C:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:d1:09:f8:8f:9e:d2:22:25:48:bd:29:89:9c:20:ce:5e:4c:
2a:f0:fa:02:5f:b4:ce:f6:80:2a:f5:46:5c:29:67:43:21:9b:
2f:38:d9:46:90:17:ab:5a:6a:ed:8c:fe:05:38:97:8a:12:10:
69:08:a4:31:7a:4f:dc:37:db:64:cd:dd:31:62:8d:d2:44:00:
53:12:19:11:e5:90:e6:26:1e:04:91:cc:f7:c1:ca:bc:c6:97:
d6:da:bb:bb:7e:0e:58:35:49:15:e5:19:7d:be:ad:6c:61:a4:
54:89:89:f8:52:43:4f:b7:ce:94:bf:40:00:33:ef:c1:b9:f5:
65:94:7a:62:44:89:d8:42:ea:0a:de:63:58:ac:9e:85:9e:b6:
bb:bd:85:68:2d:76:a0:22:09:e0:b7:a8:65:42:1c:13:d9:38:
3a:94:6e:57:27:e5:d7:32:40:2f:93:d9:42:23:21:9c:52:93:
fd:7e:96:86:32:df:4a:67:b2:32:34:0b:1a:e9:0f:e5:06:da:
02:01:d0:d0:b1:21:2e:c0:d6:19:c3:70:73:b4:0f:6e:42:e7:
ac:cf:c4:70:b6:b0:a5:49:77:38:b2:c8:5a:72:8c:1f:2f:cd:
20:62:29:d0:c0:30:dd:c9:3d:14:eb:3c:74:f2:37:a5:69:a1:
ed:74:80:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 06:09:55 2025 by rpki-client