Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: CdbCaFacA9ApIm1l1H3nV7mcHv05DyUmKSBAlJwNKvs=
Subject key identifier: 53:5B:93:49:E7:03:63:24:07:32:58:56:41:EC:1D:BD:97:D8:41:DF
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 01963F1D9CCFFB276761ED3C9AA2090BEF16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 0664
Signing time: Wed 16 Apr 2025 15:00:27 +0000
Manifest this update: Wed 16 Apr 2025 15:00:27 +0000
Manifest next update: Thu 17 Apr 2025 15:00:27 +0000
Files and hashes: 1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=)
2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: OFQszq2hp0Lpu66POALs3XVDVUP7YHW/iqAwN0n21BI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:1d:9c:cf:fb:27:67:61:ed:3c:9a:a2:09:0b:ef:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: Apr 16 15:00:27 2025 GMT
Not After : Apr 17 15:00:27 2025 GMT
Subject: CN=535b9349e70363240732585641ec1dbd97d841df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:64:fb:35:39:36:f9:78:68:94:09:3f:20:8f:
69:e5:81:4a:c1:d5:a9:8e:75:e6:ae:91:87:6d:b1:
3e:53:ca:38:ae:31:ff:dc:11:20:77:1f:5e:c1:d2:
05:9b:85:ec:4c:72:03:74:98:04:89:b6:4a:d6:62:
4c:f2:81:50:ec:66:a6:2a:bb:8b:91:93:e6:f2:aa:
8f:2a:16:80:ed:10:45:34:e8:bc:78:7d:a9:33:64:
de:55:bc:ff:34:ff:61:56:49:7f:aa:dc:fd:a5:30:
1b:6d:3e:28:ab:84:09:f5:94:03:23:67:8e:a7:e3:
ed:d0:17:2b:04:50:f2:d5:ae:df:a0:3e:86:92:3b:
59:b9:cb:3e:62:ba:48:56:ac:f8:d5:ff:30:1a:a7:
80:c2:80:6d:bd:37:f5:ba:de:34:34:01:aa:af:63:
1b:e3:05:c7:3d:2a:57:df:9a:51:68:bf:c3:1b:8b:
62:18:a7:37:30:65:a4:c0:a2:d1:da:d0:8e:14:8a:
cf:a2:3e:a8:22:6e:e9:6f:cf:ea:8e:0d:4e:be:b7:
65:82:cb:91:b0:64:20:1b:3b:d7:f0:79:c5:5c:51:
92:8b:8b:15:65:16:fe:82:85:75:be:c5:ab:2b:72:
c2:95:30:31:e1:16:b0:71:93:34:63:c1:6e:8c:c3:
0d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:5B:93:49:E7:03:63:24:07:32:58:56:41:EC:1D:BD:97:D8:41:DF
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:c5:d5:3c:ec:01:a4:af:e6:e8:9c:85:0f:26:e0:da:72:d5:
0f:9f:e2:af:2f:a6:41:67:42:4e:74:9a:5e:4a:98:ea:10:cd:
80:fc:a3:2e:77:17:86:ea:51:d2:2e:6c:cc:94:2f:e8:fd:7d:
2f:89:f2:ee:23:d5:af:e8:72:50:b1:82:5c:2b:af:18:7b:52:
1f:a0:04:f1:6d:2d:00:1e:e8:cf:1d:bb:61:81:66:75:eb:8e:
a0:ac:06:69:35:b8:5d:50:23:80:16:0b:53:8e:60:fe:82:9b:
84:c2:25:c3:49:72:55:65:e8:64:ea:6f:bc:16:59:a4:f3:69:
69:3d:15:54:0b:73:52:62:21:00:58:4f:7c:6c:2e:75:4e:38:
e3:2d:db:f5:e1:f2:97:3a:24:db:64:c1:dd:3d:c9:fa:47:bd:
e8:9d:6c:a0:15:23:8b:e5:0e:7c:9c:3a:19:79:e5:96:e5:74:
75:30:54:c8:8a:42:16:ef:78:b1:5d:06:62:5e:ee:68:60:eb:
bb:79:74:cf:9b:77:a0:b8:91:5c:45:e8:0b:ad:a9:aa:77:cf:
91:4b:81:13:aa:0d:a9:cc:7b:ac:13:a6:be:aa:74:8b:17:fa:
9d:2b:d6:b6:ac:7b:a1:f1:b7:66:0c:40:5a:0b:0e:15:58:66:
28:28:11:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 22:16:43 2025 by rpki-client