Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.mft
File: aIPzR-OJH1c9-AFa1swzHM6wR2g.mft (raw, json)
Hash identifier: VWKbjtE5it3I4YqjmLlYKn4xGvurHdtRVEZLRg1DYo0=
Subject key identifier: 36:59:BC:98:95:6A:84:84:A0:98:98:1E:43:CF:FE:13:CE:95:D6:32
Authority key identifier: 68:83:F3:47:E3:89:1F:57:3D:F8:01:5A:D6:CC:33:1C:CE:B0:47:68
Certificate issuer: /CN=6883f347e3891f573df8015ad6cc331cceb04768
Certificate serial: 01960FE97878D1A717DE7CA7BD89D8FEB54B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIPzR-OJH1c9-AFa1swzHM6wR2g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.mft
Manifest number: 0483
Signing time: Mon 07 Apr 2025 11:01:21 +0000
Manifest this update: Mon 07 Apr 2025 11:01:21 +0000
Manifest next update: Tue 08 Apr 2025 11:01:21 +0000
Files and hashes: 1: aIPzR-OJH1c9-AFa1swzHM6wR2g.crl (hash: qYaJGUUJLiE1OJ1iTGzaVylKsMO9RnWgicW6kc0dBn0=)
2: yzwcVTa4_EkxmkA3zs7RU2L0KuA.roa (hash: DiSWwAw7nqN/ZHYKb36GWp0hrc3vDQ6bPbUIBdkwyko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIPzR-OJH1c9-AFa1swzHM6wR2g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 11:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:e9:78:78:d1:a7:17:de:7c:a7:bd:89:d8:fe:b5:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6883f347e3891f573df8015ad6cc331cceb04768
Validity
Not Before: Apr 7 11:01:21 2025 GMT
Not After : Apr 8 11:01:21 2025 GMT
Subject: CN=3659bc98956a8484a098981e43cffe13ce95d632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2a:71:34:33:46:bd:79:28:e8:45:27:4c:60:
d6:be:00:d2:7d:b7:4c:95:cd:75:d6:20:fa:f9:af:
82:78:f5:cf:df:52:22:d2:f7:15:d9:5a:51:ee:66:
95:52:49:a1:5c:17:51:54:0f:df:4e:09:41:29:a1:
29:e7:74:2d:75:d8:5e:e3:ad:88:08:5a:64:85:aa:
59:86:39:17:f4:d2:ad:6c:b8:42:c4:50:e3:4f:71:
bb:0e:e5:9f:60:d6:c3:e3:68:eb:5c:ec:6c:7e:d1:
28:18:63:72:7d:38:ce:56:34:f7:13:ea:0b:5d:04:
0c:a7:90:63:0b:1c:94:7f:af:ca:fd:ab:c4:67:77:
8c:58:65:dd:cb:8e:59:15:77:30:4d:1b:13:65:db:
b8:ea:d9:be:a6:80:40:96:ac:d1:c3:0b:a5:6b:af:
83:e0:2e:cd:ae:f4:31:df:ab:cf:72:70:98:fa:35:
92:7c:7b:bc:21:61:2a:d5:fd:d4:74:d5:18:6f:c6:
54:cd:90:c5:ed:8f:5c:e1:73:1f:32:bc:b2:c7:c5:
1a:c9:8e:c1:1a:f0:8c:dc:db:ae:76:32:53:e2:fe:
1f:32:4c:3a:b9:1b:c5:92:7b:fe:dc:20:19:69:e0:
49:b1:82:71:a2:e3:96:46:fa:84:5c:26:ea:c2:06:
ac:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:59:BC:98:95:6A:84:84:A0:98:98:1E:43:CF:FE:13:CE:95:D6:32
X509v3 Authority Key Identifier:
keyid:68:83:F3:47:E3:89:1F:57:3D:F8:01:5A:D6:CC:33:1C:CE:B0:47:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIPzR-OJH1c9-AFa1swzHM6wR2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/618d33-dd92-4d91-b821-e850677cffb3/1/aIPzR-OJH1c9-AFa1swzHM6wR2g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:e7:51:e7:f1:ca:20:7f:37:ce:fa:d2:b2:35:cf:4b:c6:47:
d2:74:fe:c0:5f:56:95:cc:80:8b:ad:8a:d2:00:a8:9b:92:7c:
dc:eb:b8:be:4e:db:1b:0c:b2:93:6b:62:92:99:01:10:54:3b:
55:a5:40:aa:3f:47:19:3f:ae:72:f5:d1:04:54:63:60:2f:ae:
22:79:32:a3:54:6c:ca:40:6b:7e:02:b8:72:e7:4f:b9:9f:b1:
08:0c:fa:b9:0f:61:9e:f0:77:85:15:7a:b8:ce:43:07:d5:5e:
71:84:c8:9c:81:09:40:f9:e6:4a:84:16:c2:60:28:28:61:3b:
64:84:19:94:1d:ef:5b:6b:f7:a7:1b:2a:48:59:26:00:52:9e:
e2:f6:84:33:44:b4:78:7e:6c:f8:99:91:4b:09:31:69:d4:19:
55:63:4a:b8:27:10:87:3a:59:17:1f:e9:71:7d:8b:d1:ec:5b:
76:d6:97:7f:4a:4b:d0:7a:23:fc:5b:5a:30:18:1e:b4:f8:1b:
fa:50:fc:99:a0:5d:33:6a:b7:d1:30:06:eb:7d:fc:09:8a:4e:
b0:81:86:67:8e:58:04:e9:dd:41:32:d6:d1:c2:0b:6a:ab:d1:
22:79:9f:2c:d5:24:7f:09:72:e4:8b:62:7a:ea:75:c0:1c:05:
65:82:6b:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:32:35 2025 by rpki-client