Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
File: AF_5zInGaoo6XXNKDWXGH9yFGL4.mft (raw, json)
Hash identifier: fwy2ru+/9+XU5ndGANzXGGz5WGDP2EMG0hiqyQv4DPA=
Subject key identifier: F5:4F:B7:BF:20:13:10:92:08:EE:44:64:DA:62:50:D8:6C:7A:A8:1E
Authority key identifier: 00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
Certificate issuer: /CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Certificate serial: 01960F0D5C39963F6DABFC05A7BB21A20F96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
Manifest number: 14DD
Signing time: Mon 07 Apr 2025 07:00:55 +0000
Manifest this update: Mon 07 Apr 2025 07:00:55 +0000
Manifest next update: Tue 08 Apr 2025 07:00:55 +0000
Files and hashes: 1: 0KFOTw8mw8rqvR73lDvTvz4eLlM.roa (hash: czZq6CrDBuBW60D89viYE/HEQ3Elp6ceJu/itDlsmLQ=)
2: 1-IEGfanW1eDg4hey_mFD59jQ4Tw.roa (hash: TEwUAYBqywOE+CrQSa2/94fxmftWbXC3tqwYRSHTWvM=)
3: 7fvFmCf70OoyCtjW6q-YAjjiptE.roa (hash: lD6p2V3Fh7qOAiBluHoM70XX68qSFbEeobI0lYUOj4E=)
4: AF_5zInGaoo6XXNKDWXGH9yFGL4.crl (hash: u7CHWpoDjGlD7gBiLR6FnW7OnrA0CppfzgOJJFhOfZY=)
5: XXc1R4QzqDrW8SviK6xRNkQ-hUM.roa (hash: YZxuonbhRtd70cdMZUvtG4tx6j8PhsH2pz0J9ByQ1UQ=)
6: mVS8rlA27Rm5BH1YZmHsYliJgHk.roa (hash: kSobMvLQWQPPJ+5wYRzt2RMBbz/GSTGKNOrc7qdwFJQ=)
7: svn5qGrzwkwprTn6parcyTvhbAo.roa (hash: /W0ZX7Qy3yFb8g6EosJAqdHBnY5DD0AAIXPV5XPQQ5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 07:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:0d:5c:39:96:3f:6d:ab:fc:05:a7:bb:21:a2:0f:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Validity
Not Before: Apr 7 07:00:55 2025 GMT
Not After : Apr 8 07:00:55 2025 GMT
Subject: CN=f54fb7bf2013109208ee4464da6250d86c7aa81e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1b:db:7e:ff:81:39:a8:23:a5:c9:d5:ef:2d:
a9:58:07:b6:1b:e2:60:11:48:16:73:84:38:6e:d3:
76:c0:a8:65:70:b0:8b:90:d3:85:78:86:f8:79:dd:
56:74:62:bb:b1:4a:37:c5:c4:ba:64:5a:fe:d1:27:
87:1a:0f:ee:7f:73:43:9e:07:d1:e7:a1:e3:cc:98:
38:db:45:dd:71:a3:07:da:0c:7a:65:52:51:15:72:
8b:00:a5:05:02:ae:65:99:d4:9e:ca:92:e0:50:1e:
22:62:18:b9:2d:e5:f8:a8:e3:c6:07:e0:9c:8c:fb:
a5:c6:f3:39:4a:92:11:fc:68:be:e7:22:f3:15:6a:
ff:c2:44:52:81:36:54:59:fd:97:08:e1:81:ef:e3:
cd:a9:4c:84:ac:21:55:91:7b:47:70:0b:00:61:a6:
30:43:d4:9b:42:ea:08:ad:7d:10:d3:eb:7c:e3:ac:
91:81:a0:46:ad:c5:da:e1:9a:f0:75:64:96:83:c2:
ff:72:e7:d9:06:6c:06:34:a3:0f:e2:b1:94:a8:38:
9c:85:b1:cc:a4:d3:fa:34:53:a5:63:d9:3d:5f:fb:
b9:a1:03:65:b2:8b:f1:61:d0:9b:d9:7b:33:db:fb:
25:08:29:08:f9:bb:58:32:fd:19:13:33:fd:dc:1f:
cd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:4F:B7:BF:20:13:10:92:08:EE:44:64:DA:62:50:D8:6C:7A:A8:1E
X509v3 Authority Key Identifier:
keyid:00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:d4:23:fc:30:a8:06:1c:53:66:3a:b0:aa:6d:0a:ab:bd:3a:
aa:3f:71:98:90:65:51:a3:a2:39:fa:4d:9a:3c:f9:c2:67:92:
a5:bd:72:57:d0:59:7e:c8:c3:48:f3:cc:f8:fb:82:9c:18:02:
31:73:e3:81:d2:db:7d:b6:7e:ad:0a:96:bc:a4:75:fb:08:83:
02:f6:c5:f6:6a:3e:83:2c:32:04:2b:31:a4:ff:51:2b:a5:8b:
f5:a2:8f:27:3c:bf:bf:b1:42:e2:8b:19:2b:78:80:61:4b:5d:
48:be:fd:7c:d6:9d:72:ef:bf:d0:3a:37:60:a0:2b:35:bc:ab:
c4:aa:d1:68:27:9e:7b:0e:f3:07:90:4e:d6:07:ad:ba:1b:8a:
cb:76:07:6e:7a:81:b0:c2:dd:72:a4:14:11:73:da:6c:3b:4d:
0f:ef:d2:9d:19:43:26:e1:5d:97:74:46:a7:7e:04:ba:5d:41:
1e:83:d9:18:9d:6f:83:92:0b:fc:1e:ac:74:51:30:44:dd:9f:
00:ea:ad:7c:2f:84:86:61:de:f4:ae:21:bb:43:98:48:72:6b:
b7:1c:d4:d0:2a:76:05:17:d6:75:2d:bc:8d:5e:c9:89:fa:e4:
8b:76:69:f8:ab:d4:30:2b:b9:2d:f3:c9:2d:f7:37:13:99:8b:
95:f1:e2:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:45:07 2025 by rpki-client