Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json)
Hash identifier: 4+H8lW2wPZ14BkiTVYdZ2p/dJFbWTE259p/3EH1p2Tw=
Subject key identifier: 96:C1:14:87:BD:09:C8:72:93:14:0D:22:99:2E:28:9B:17:71:68:D7
Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Certificate serial: 01951247302013432BEFC68A77389C5DC1B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
Manifest number: 13AA
Signing time: Mon 17 Feb 2025 05:00:10 +0000
Manifest this update: Mon 17 Feb 2025 05:00:10 +0000
Manifest next update: Tue 18 Feb 2025 05:00:10 +0000
Files and hashes: 1: 5gxDURtK1rmOAdh1eWuh-NkY76k.roa (hash: QaQOgPlbLBzFETMJyWwYJQCd8vML1MyClKfr5uYQDoc=)
2: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: XJWYV96wky3yV/AoR4RdnSqH3W1LFUNR8JoiBFTJB24=)
3: svZ0I0CIbPuXgkYBH_VdeOt4OII.roa (hash: qDnNSem+sBmAuaKOVojckKZEahJzHvEbGjkFY5x9Sqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:30:20:13:43:2b:ef:c6:8a:77:38:9c:5d:c1:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Validity
Not Before: Feb 17 05:00:10 2025 GMT
Not After : Feb 18 05:00:10 2025 GMT
Subject: CN=96c11487bd09c87293140d22992e289b177168d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:61:02:d8:fe:31:49:9c:6a:f6:34:a4:56:30:
17:c5:2e:1a:4a:c9:77:eb:4e:9f:aa:7e:0e:55:c6:
eb:aa:fd:1b:9f:65:18:68:3a:63:c3:ba:d4:22:58:
6c:fb:cd:c1:29:76:39:1f:46:97:8a:21:35:91:6a:
4e:c4:65:7e:57:07:73:30:87:01:8b:cf:52:a2:dc:
b2:50:d5:d0:73:68:7a:04:19:29:c4:9f:87:cd:45:
b6:42:0f:e7:32:f1:52:3a:4b:ec:f2:5f:c1:ac:c6:
f4:1a:77:39:c5:75:3a:7e:1d:b1:e9:3e:61:4f:cc:
a6:0e:5c:4e:c8:e2:f8:33:a2:1f:09:cf:7f:24:4b:
06:6d:3b:5b:48:49:17:13:14:93:18:77:64:6f:61:
66:84:50:82:11:5f:07:bb:5e:a4:0a:3f:79:6e:25:
5a:d1:d3:fb:ee:cc:32:e0:2c:e7:7d:ca:2d:f1:15:
42:a2:c6:43:47:ec:80:9c:90:4f:ca:0a:24:b0:9a:
5d:69:34:38:65:69:53:38:a9:0a:7e:62:3b:1b:ae:
c1:f8:0e:5a:6a:b7:95:0f:31:81:67:22:91:f3:b3:
b3:f4:53:82:37:21:8b:cd:d9:67:57:3e:e5:df:2b:
05:a4:5b:dc:fa:5d:1a:ce:b0:c2:e5:20:54:6f:28:
55:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C1:14:87:BD:09:C8:72:93:14:0D:22:99:2E:28:9B:17:71:68:D7
X509v3 Authority Key Identifier:
keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:90:38:b5:a6:3c:84:c6:04:df:48:7d:2f:a1:59:de:f8:41:
ef:ce:52:ef:11:e2:f8:9c:03:83:1d:53:c7:0e:62:38:55:31:
f8:73:97:4a:58:bc:c5:96:9c:f9:ae:1a:9c:d0:68:6d:3c:6f:
2c:d5:66:44:58:e4:09:3c:62:e4:a2:27:52:f4:9d:7f:ef:41:
81:b6:54:2a:b9:16:a2:a7:07:5c:5d:66:5f:7a:65:33:34:64:
20:3d:9c:4d:b6:25:24:e7:c0:72:24:85:57:02:43:90:c2:4e:
ff:54:ef:20:fd:bf:00:a3:ad:04:f3:c1:a6:ce:24:c9:0a:68:
e9:45:94:d8:a1:d6:22:c5:67:d4:67:90:90:dd:44:09:4c:17:
4c:b7:aa:9d:7e:9d:18:54:2e:08:c0:04:13:f1:30:b5:ba:c4:
a3:02:74:d3:66:cf:24:02:8d:b6:3a:03:6e:47:2b:59:46:b1:
15:5f:0b:a4:8c:a5:d2:af:7a:45:2f:0e:89:f0:4c:28:ae:a2:
65:af:54:37:78:26:73:29:9f:34:64:57:cc:42:f8:ca:e0:cb:
85:d5:df:cb:af:e1:5e:48:06:18:5c:bc:a1:5a:b7:12:c4:d4:
84:0d:41:af:80:30:53:78:5a:26:05:f6:4d:0f:d6:3b:00:17:
60:22:b5:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:48 2025 by rpki-client