Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
File: rlAYJxRKMYi-oczuWGVv1kKdj5U.mft (raw, json)
Hash identifier: ST9LQo83BAm2zTpGXBJimIpHT4BNOJrv3uonLGiFjzw=
Subject key identifier: 83:86:11:90:7B:8B:84:25:73:CF:6B:D0:70:EC:BB:BB:70:F5:97:AD
Authority key identifier: AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95
Certificate issuer: /CN=ae501827144a3188bea1ccee58656fd6429d8f95
Certificate serial: 0196379B5E6503B71731D72ACD3657546DB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
Manifest number: 14F4
Signing time: Tue 15 Apr 2025 04:00:51 +0000
Manifest this update: Tue 15 Apr 2025 04:00:51 +0000
Manifest next update: Wed 16 Apr 2025 04:00:51 +0000
Files and hashes: 1: VNzG3ccHyaf-Ofv5con_nysGgHU.roa (hash: 2VzIYqdKT2jmdmX+vgJ//7c0c5nGJoT0dOFUmm0WlfQ=)
2: rlAYJxRKMYi-oczuWGVv1kKdj5U.crl (hash: iSroJ7U/LRL+fhNpRGnPsczxpdGt6azhqjDM5X43nWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 04:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:37:9b:5e:65:03:b7:17:31:d7:2a:cd:36:57:54:6d:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae501827144a3188bea1ccee58656fd6429d8f95
Validity
Not Before: Apr 15 04:00:51 2025 GMT
Not After : Apr 16 04:00:51 2025 GMT
Subject: CN=838611907b8b842573cf6bd070ecbbbb70f597ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:93:e1:4d:7b:db:31:99:5b:d5:b2:c8:1b:6b:
f2:4d:a7:e2:53:15:ef:f9:fc:81:ef:30:3d:3d:aa:
43:0e:27:05:3f:e4:f1:b7:27:d0:ba:0b:c0:8e:6e:
a0:46:8d:02:06:b8:93:b9:8b:c1:14:dc:66:82:91:
53:c4:67:86:2e:8c:36:7a:d4:77:f3:5a:79:4f:f1:
3e:57:63:6c:c6:eb:17:b9:a0:ec:16:a5:87:f3:06:
df:6c:6f:de:91:d1:f3:1f:ac:28:2f:65:94:dd:fa:
f1:b1:68:b2:96:16:4f:e7:ac:28:f5:88:00:4d:d2:
ce:4a:23:5e:47:86:27:fc:5f:11:68:9b:43:6f:c9:
f5:f5:dd:b1:f8:b4:7c:32:a8:e7:d7:cf:ef:a0:7d:
64:88:29:03:af:b5:ed:5f:48:fe:13:e8:ef:01:8a:
95:7c:66:67:f1:4d:7d:f0:20:2c:67:67:2e:18:ed:
aa:d3:13:cf:d7:4b:98:d5:d4:a5:fb:4b:96:15:49:
2b:d3:79:03:8b:d4:4e:c1:b7:81:07:38:c3:fd:57:
98:a6:24:7c:ec:db:b5:aa:89:55:44:fd:3d:60:6a:
ff:ae:5c:69:e6:2b:ca:10:36:dc:df:84:fb:5c:2b:
73:db:2a:81:13:d4:2b:d6:08:83:56:de:d6:b3:f7:
98:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:86:11:90:7B:8B:84:25:73:CF:6B:D0:70:EC:BB:BB:70:F5:97:AD
X509v3 Authority Key Identifier:
keyid:AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:38:7a:8f:54:1c:37:23:1a:2a:e6:12:8b:14:4d:96:b3:86:
0a:52:2f:c3:ef:ad:4f:0c:33:7f:57:e2:cc:81:c5:d3:85:d6:
5a:74:d3:b0:bc:d2:dd:66:a3:2c:2f:29:9d:7f:0f:64:04:05:
70:ab:e8:1d:09:6e:44:4a:29:ec:85:2a:84:7e:f0:a9:67:d7:
86:19:39:59:a5:16:ce:0f:9a:23:37:87:02:93:3c:fa:9c:ce:
e2:51:ad:c3:38:87:fb:5b:f1:7f:23:b5:75:ad:13:f3:0c:a5:
9d:6d:99:d2:61:2e:a3:f1:c2:5d:4e:47:83:3d:fd:ea:57:ed:
af:88:ec:93:a4:9d:1f:83:29:d8:31:ba:73:00:91:6d:c2:c5:
ca:7c:90:06:1a:f0:f3:d7:3b:66:69:08:d3:37:25:da:02:2c:
3f:c9:5e:df:e4:d9:d1:5e:cb:19:dc:4f:bf:83:9f:6f:8a:51:
72:8d:66:6d:ee:6e:e1:17:94:68:37:65:60:28:31:86:b2:db:
50:fa:00:c1:22:58:34:66:68:21:c5:d7:63:69:af:e8:93:49:
b1:7c:9b:35:f7:c2:e7:c2:6f:8e:ed:0f:3d:fe:2d:80:2a:c1:
68:94:cc:94:9d:de:91:dc:ef:8d:1f:26:83:90:e1:7d:f0:b4:
be:4f:29:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 13:35:07 2025 by rpki-client