Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
File: 0CAT81SL49yz3KGNT8k3ifRPA78.mft (raw, json)
Hash identifier: vU44nre6UUZgkkmHOKUeTz3edg9N4YIdUn0Q5NbKxBY=
Subject key identifier: AA:FE:77:BF:02:0D:11:42:15:E0:CD:01:A8:70:F0:89:AE:09:66:D9
Authority key identifier: D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
Certificate issuer: /CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Certificate serial: 019658A675ADD53FD874F0731F1BDBBA2F93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
Manifest number: 1502
Signing time: Mon 21 Apr 2025 14:00:25 +0000
Manifest this update: Mon 21 Apr 2025 14:00:25 +0000
Manifest next update: Tue 22 Apr 2025 14:00:25 +0000
Files and hashes: 1: 0CAT81SL49yz3KGNT8k3ifRPA78.crl (hash: R2Bp3A5dNat0gAQ1vHd5js0WRSADt4s1VqQkUdameqw=)
2: ye296n7TFw2U7qCSerBkbo7SsH0.roa (hash: m5pP+tHttyj1Oj+JBIbSiGDkTJLLn21rUnR9Ptw/3e0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:a6:75:ad:d5:3f:d8:74:f0:73:1f:1b:db:ba:2f:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Validity
Not Before: Apr 21 14:00:25 2025 GMT
Not After : Apr 22 14:00:25 2025 GMT
Subject: CN=aafe77bf020d114215e0cd01a870f089ae0966d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:af:7c:1d:a8:87:49:e2:37:33:e1:5c:ed:a5:
6b:36:8b:be:06:96:a3:6b:b8:bb:34:91:77:8c:10:
e4:3d:d2:73:d4:ac:0c:6c:e9:02:ee:08:44:93:dd:
e4:6a:9d:8f:11:1c:57:cf:70:30:94:17:4d:1d:fc:
6a:9f:51:c1:ad:f6:5d:86:ab:14:69:bc:e6:fd:36:
9e:3e:d1:cf:42:ab:e1:fb:ed:81:14:c9:1b:f1:ba:
3f:f5:3b:db:78:9b:78:9c:ad:38:99:07:44:1c:e6:
27:b4:a0:b9:02:ac:e3:fe:47:34:8a:92:8a:73:2b:
29:14:5e:ec:71:f6:5d:45:f0:85:50:9c:3b:2d:a6:
eb:d5:a6:e0:7f:26:59:9d:0a:bb:11:c5:a9:2b:a6:
e3:5d:0b:58:23:ce:47:03:ef:45:e8:29:3c:97:3f:
c7:53:93:3e:63:ba:c9:5e:20:22:27:b8:34:1e:0d:
ba:3e:ad:65:04:c7:48:54:fd:33:19:fd:00:02:e3:
7f:5e:b6:0e:4d:5e:46:b5:da:73:81:72:38:1a:34:
fb:72:23:91:a0:2f:c7:fc:b2:8f:fe:a1:e2:af:13:
45:a9:5f:26:61:08:54:8e:8b:ba:b6:6f:a7:50:3d:
fe:de:87:1a:9a:92:b1:53:b8:c0:15:2d:56:91:18:
25:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:FE:77:BF:02:0D:11:42:15:E0:CD:01:A8:70:F0:89:AE:09:66:D9
X509v3 Authority Key Identifier:
keyid:D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:45:eb:85:8d:52:49:1b:ba:02:4d:24:5c:b2:fb:12:7f:ea:
39:6d:75:c2:92:86:05:e7:97:2e:64:fe:8b:55:7e:2f:c0:b7:
0d:a4:cf:81:ea:8f:5c:70:15:ed:94:f2:91:70:25:52:68:f2:
e3:e5:3d:82:eb:45:8d:35:2b:fa:f6:b1:05:48:06:9b:ee:af:
02:7e:d1:e3:c9:b6:e7:e4:15:90:73:7f:b8:d9:8d:b5:c0:79:
b2:b4:0c:f2:f3:63:43:1b:91:fc:a8:48:bb:33:fa:a6:fc:25:
07:ab:94:d8:ef:e9:08:ba:65:d3:8e:41:a6:29:c8:da:5f:08:
dc:c2:d5:1d:de:4b:b7:12:a1:c2:0e:98:b9:b7:75:c2:4e:3d:
21:70:6e:16:73:ba:e8:3f:66:60:b3:3e:a4:2e:0c:b0:a1:3d:
20:e4:47:0b:7c:cd:ed:b2:06:b0:fd:fc:ab:6a:fe:f6:1f:d0:
4f:7f:86:e0:ae:a9:98:4d:c8:8a:ef:79:a8:09:29:eb:7f:f5:
7e:c5:31:bd:7f:8f:59:82:6e:7e:90:33:22:92:1b:3e:47:67:
a6:55:d2:e6:87:c9:f7:ff:7a:14:b9:47:0c:4b:88:f2:d3:6f:
ff:f0:42:47:33:e3:71:06:24:69:8a:28:81:a6:2c:ae:9f:ad:
91:ff:7b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:12:39 2025 by rpki-client