Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
File: a1zOqpdLKQWssmKvRSwCKAMWqrs.mft (raw, json)
Hash identifier: e5y/AoxC9w3adwxu4C++pvYkI9Mhx4FGm0qLz9dBU2Y=
Subject key identifier: 1A:81:EB:C1:A1:72:2A:B2:18:7D:BC:51:FD:4F:65:99:9C:DD:1E:0B
Authority key identifier: 6B:5C:CE:AA:97:4B:29:05:AC:B2:62:AF:45:2C:02:28:03:16:AA:BB
Certificate issuer: /CN=6b5cceaa974b2905acb262af452c02280316aabb
Certificate serial: 019640D4FCC2815AB89C30131D0CBC0F2CC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
Manifest number: 0431
Signing time: Wed 16 Apr 2025 23:00:22 +0000
Manifest this update: Wed 16 Apr 2025 23:00:22 +0000
Manifest next update: Thu 17 Apr 2025 23:00:22 +0000
Files and hashes: 1: a1zOqpdLKQWssmKvRSwCKAMWqrs.crl (hash: j4YZ/pwneN0i75mcBdAMM8VkWt9iTLX0YTmrcGMjrxo=)
2: bItIvz4oTSzEDWqrAWUpQQfUMhI.roa (hash: F1ATAeaXzdv7TC8vaBAXGNSvaND60c6EFcHFAEWNuFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:d4:fc:c2:81:5a:b8:9c:30:13:1d:0c:bc:0f:2c:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5cceaa974b2905acb262af452c02280316aabb
Validity
Not Before: Apr 16 23:00:22 2025 GMT
Not After : Apr 17 23:00:22 2025 GMT
Subject: CN=1a81ebc1a1722ab2187dbc51fd4f65999cdd1e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c4:71:68:e3:5d:2a:71:e8:d8:27:3c:f3:3c:
5c:e2:58:7d:4b:48:0f:a9:0c:09:2a:3a:20:5a:ac:
73:8d:7d:f2:bd:8b:6c:62:b0:0c:66:8b:13:0d:75:
f0:10:8c:99:78:8d:5e:f6:9c:84:d0:24:9b:09:75:
99:04:b2:ba:16:70:54:ba:0f:5e:dd:ce:a3:f1:24:
dc:54:40:3b:5d:9b:aa:8e:d8:70:5a:b4:96:92:91:
fa:1c:8d:3e:80:94:53:7d:a7:9d:4d:b9:84:3d:04:
90:01:e3:62:eb:5c:d8:36:2c:59:3a:40:8a:70:60:
9b:64:ac:55:9a:9d:f9:47:2b:59:c2:d2:e2:5f:db:
72:3f:dd:e0:13:39:44:bc:53:de:93:3b:33:98:f0:
57:a2:be:82:93:22:54:72:a1:5e:5c:0c:89:f6:9e:
63:b9:db:9b:f9:f3:7d:84:dc:d7:5d:99:7c:c2:54:
a5:bf:cc:ce:b9:92:84:04:6b:6c:0c:a6:93:66:80:
0b:2a:04:6d:02:f4:14:0c:11:59:46:cf:90:1a:cd:
a4:32:2f:c7:8c:b3:58:86:d7:3c:98:ec:21:88:1a:
d6:6c:95:fc:26:da:13:7e:14:fd:b5:cd:8d:ee:e2:
e0:fc:ae:18:80:db:52:13:d3:e4:4d:2d:31:ea:c0:
03:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:81:EB:C1:A1:72:2A:B2:18:7D:BC:51:FD:4F:65:99:9C:DD:1E:0B
X509v3 Authority Key Identifier:
keyid:6B:5C:CE:AA:97:4B:29:05:AC:B2:62:AF:45:2C:02:28:03:16:AA:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:a3:74:96:37:97:43:e7:43:f2:71:b1:e9:d6:82:76:6e:aa:
cd:62:2d:a7:a2:98:67:4d:95:fc:bc:1e:fc:e9:1a:4a:d6:ae:
56:20:32:b4:19:ac:f8:32:12:c6:c9:11:78:fb:0d:30:48:95:
df:be:4c:e4:b7:39:e1:62:aa:93:89:35:4e:12:28:3b:91:bf:
09:1e:97:85:a9:58:7c:68:b6:34:ce:56:b9:e2:a3:ee:f3:3d:
4f:e9:3c:45:31:6c:4e:67:9a:6d:50:b9:34:c7:4f:bc:ee:cd:
91:98:15:59:82:5a:6b:91:12:63:71:01:a3:ba:45:9d:02:4f:
8c:e5:d5:dd:d0:23:4e:15:f3:95:12:5f:fe:31:40:17:98:17:
d9:f0:00:61:d5:ab:c5:d6:0d:f9:36:fe:18:3c:ae:ee:5d:a7:
97:52:f7:48:33:4d:25:4e:e8:c3:5b:38:eb:8d:c9:a8:33:ee:
a2:01:78:67:4a:0c:e2:15:2f:13:54:8e:7b:60:c6:e3:74:3e:
3c:be:4f:50:67:a2:b6:6f:82:7e:fe:d4:33:67:0a:c8:9b:ad:
86:6e:76:ea:70:90:6f:78:89:18:0f:08:b9:ed:4e:83:fc:eb:
cf:ca:f4:0d:2a:21:6b:1e:6e:94:b1:c0:d3:ab:1a:3c:2e:e7:
e6:01:86:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 03:01:19 2025 by rpki-client