Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
File: 10AeAklBizV1RyaIJPYkSSXY2zk.mft (raw, json)
Hash identifier: OlK0rRhwz7R78/zbgWeirYKxwMhflNq1PRglbrNzWqg=
Subject key identifier: 7D:3C:FE:2F:EB:CD:3C:6A:FD:A7:FF:D7:BF:A1:64:49:FA:69:AB:E8
Authority key identifier: D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
Certificate issuer: /CN=d7401e0249418b357547268824f6244925d8db39
Certificate serial: 01963F544902195C45863119A79C7433212E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
Manifest number: 0672
Signing time: Wed 16 Apr 2025 16:00:10 +0000
Manifest this update: Wed 16 Apr 2025 16:00:10 +0000
Manifest next update: Thu 17 Apr 2025 16:00:10 +0000
Files and hashes: 1: 10AeAklBizV1RyaIJPYkSSXY2zk.crl (hash: T3EbIZBP3P9G5IsaU1kzIhkY7yRcqsCJDw82lg3QNSQ=)
2: Jj1HHZ3M2IWqEVr2BMPp4ypDwcI.roa (hash: cgzJBvOGYHM0ug0D/FFBZa1jcNvWqnCErJy8L2Lko1U=)
3: cBlGJ5bNODNILYzK1oNt3QzAw7M.roa (hash: 7wWvEWZaVuq+kybNFqA4kbf75m0LmBkO8WIx9pDUDFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:54:49:02:19:5c:45:86:31:19:a7:9c:74:33:21:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7401e0249418b357547268824f6244925d8db39
Validity
Not Before: Apr 16 16:00:10 2025 GMT
Not After : Apr 17 16:00:10 2025 GMT
Subject: CN=7d3cfe2febcd3c6afda7ffd7bfa16449fa69abe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8e:0d:08:5f:b2:c4:97:84:44:46:7b:b0:9b:
03:b9:d3:dc:e3:69:e2:c0:0b:f6:d1:68:8d:7e:46:
92:6a:07:21:1f:9d:cd:a6:ed:e7:7b:c0:62:8f:98:
0c:e9:14:1c:a6:e5:9c:60:d2:ac:a8:fd:56:d5:03:
09:42:56:a5:c5:ad:25:7e:30:c5:c7:4b:c5:a6:60:
53:f1:75:0c:f2:c1:1c:33:8d:ba:ce:ca:cb:1d:86:
0a:f6:39:0b:42:91:1e:79:ef:1b:61:65:2f:05:ac:
91:d3:28:97:07:cc:24:4e:7c:8e:0b:d4:b8:1b:12:
fd:f7:04:f5:55:0d:a8:fe:22:6d:3f:7e:a9:df:33:
f9:af:47:0c:6a:04:22:e4:14:10:21:0c:9a:29:78:
46:a1:2c:76:20:7a:6f:a5:d5:a9:2a:55:71:73:1f:
15:80:ec:f3:b5:51:f6:02:50:6d:57:af:92:9e:f3:
c0:8b:00:d9:3b:7d:f1:16:5a:79:34:e3:77:4d:bd:
98:56:af:74:c6:cf:89:66:08:0b:a8:ed:ea:62:ec:
fa:63:80:fe:89:5c:41:66:93:39:bc:a5:1c:89:5d:
03:fa:f0:30:9c:c0:d6:9d:0f:38:42:54:60:f5:f8:
71:b2:ba:b1:a8:c7:bb:8a:59:6f:fc:bc:7e:10:ec:
9e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:3C:FE:2F:EB:CD:3C:6A:FD:A7:FF:D7:BF:A1:64:49:FA:69:AB:E8
X509v3 Authority Key Identifier:
keyid:D7:40:1E:02:49:41:8B:35:75:47:26:88:24:F6:24:49:25:D8:DB:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10AeAklBizV1RyaIJPYkSSXY2zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/d73137-b089-4db4-b6b2-507891395417/1/10AeAklBizV1RyaIJPYkSSXY2zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:7e:9f:cf:69:9c:6d:03:84:f3:26:f6:3a:b9:93:9e:3e:5d:
c4:05:b4:d2:76:fd:8f:93:07:39:d7:c9:c4:db:7d:08:23:e7:
3e:50:30:f4:4e:3b:7d:f6:40:a5:96:00:57:9b:ab:d6:40:86:
e4:f3:1f:ce:fb:ac:15:04:43:4f:4d:d2:d7:04:2b:e8:a4:0d:
2a:ea:2f:08:2c:f2:ea:eb:7d:86:ab:3e:05:73:61:17:7f:dc:
b5:e7:40:a3:79:55:a7:a8:d7:03:75:a6:2b:49:6b:4f:6c:f1:
a6:39:e1:a1:39:aa:a7:1f:af:70:09:ae:ed:2d:3f:eb:56:5b:
cd:be:23:bd:ce:90:32:ea:57:d5:cd:60:94:44:9b:2b:a8:69:
c3:e0:54:6a:99:81:e4:e6:40:59:4e:14:45:95:86:fb:d5:73:
6a:94:ad:1b:cf:93:b7:87:2c:ed:f2:c5:e9:d3:fc:a9:9a:84:
bd:0e:bc:b1:87:a5:5e:f5:ff:98:48:61:84:58:ba:02:1a:c6:
60:9a:74:c9:a3:be:49:4e:b7:8f:8a:1d:0d:ae:b5:d7:45:99:
b9:98:aa:89:80:12:1f:0d:44:78:22:79:ef:a5:c2:8e:ac:74:
35:0e:7f:cd:69:9d:6e:7c:86:f2:36:f0:36:17:10:7a:49:6e:
d6:9a:18:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 20:06:19 2025 by rpki-client