Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
File: aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft (raw, json)
Hash identifier: bqOGT0boAeSBx/4dx6aZE1V/x17Rxrhnzim+Dd+S9Sc=
Subject key identifier: BD:2B:EB:68:C1:49:10:7F:BB:64:F0:6D:87:1E:11:F8:87:89:79:CB
Authority key identifier: 68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
Certificate issuer: /CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Certificate serial: 01964331BE04EDF4156551999F0E29C6CBBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
Manifest number: 045F
Signing time: Thu 17 Apr 2025 10:00:55 +0000
Manifest this update: Thu 17 Apr 2025 10:00:55 +0000
Manifest next update: Fri 18 Apr 2025 10:00:55 +0000
Files and hashes: 1: AJ5wMI6kFAAGgXfPHZAVtLCSnP8.roa (hash: O5F5OKdgmFhYvl6NemyAslo9muG5v3CdZb38avB1q8I=)
2: aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl (hash: jHP2lZ3xXdUbqrtzH5zsozE2a0NybJB+IuF8CTjS23I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:31:be:04:ed:f4:15:65:51:99:9f:0e:29:c6:cb:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Validity
Not Before: Apr 17 10:00:55 2025 GMT
Not After : Apr 18 10:00:55 2025 GMT
Subject: CN=bd2beb68c149107fbb64f06d871e11f8878979cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d8:ff:98:37:49:9a:68:ca:14:88:c5:4d:37:
8f:7a:bf:c1:62:f7:5d:10:f7:3a:88:38:54:ae:9a:
45:d4:2f:43:1e:13:6c:27:09:df:a1:a1:5e:b7:2f:
55:8a:d4:33:d2:f7:3a:5e:bd:1c:33:13:40:78:32:
aa:79:6e:7a:09:38:89:af:f6:10:37:74:65:3a:5b:
d3:a7:7f:49:f8:4a:fa:da:15:97:31:21:a6:21:f4:
31:72:c7:63:43:cc:33:22:c0:0a:b9:8a:09:f0:6d:
00:55:a7:04:08:21:98:75:bc:62:86:80:c1:19:ed:
4a:6a:6b:3d:3f:37:e0:a5:4d:09:aa:d7:73:c9:92:
86:b9:1c:f4:7b:d8:9e:98:df:cb:e5:e0:38:aa:2f:
0f:29:d7:e3:ba:17:39:a3:1c:8d:f5:56:3f:ac:fc:
9f:80:ab:e4:dd:c4:ce:d1:e3:4e:89:fe:98:8f:2b:
6e:76:24:2a:a4:28:44:b4:b7:db:1f:0d:9b:62:c0:
4b:bf:a6:ba:e5:01:c3:40:c5:a1:54:12:2b:55:8c:
ce:1b:93:61:25:89:df:52:60:4c:a3:53:37:e4:17:
0f:23:0c:5c:5c:2d:0d:c0:a6:dd:57:3d:ca:3d:06:
e4:0b:fe:e2:38:d8:d0:fd:dd:46:3a:10:fc:0c:36:
68:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:2B:EB:68:C1:49:10:7F:BB:64:F0:6D:87:1E:11:F8:87:89:79:CB
X509v3 Authority Key Identifier:
keyid:68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:e2:6f:64:40:fd:27:1a:d8:6c:57:77:dc:67:c1:6c:d5:4f:
0f:52:ee:b7:4c:65:03:af:94:48:d7:4b:61:05:2f:87:0a:11:
82:ec:c9:61:5d:35:63:50:a3:e0:49:1f:71:5f:6b:c9:ac:0b:
ef:36:6c:c3:05:77:71:ec:0f:dd:0c:eb:12:d7:45:73:ab:31:
50:6d:ad:0c:94:c6:22:18:6b:cc:8f:30:5d:f5:ca:95:16:37:
c3:84:fb:62:25:b7:d1:3a:47:d0:d0:a4:0a:23:2c:02:66:b9:
9e:be:46:f9:e0:e1:4f:71:f0:d2:52:9b:ab:24:43:18:43:70:
dd:5d:8d:5a:b1:0c:f8:62:70:ae:fd:b0:12:2b:50:68:fa:d7:
3c:6f:f4:58:bd:9d:0c:85:f3:8f:83:1d:83:4e:19:3c:44:95:
33:d2:ea:62:30:76:04:99:45:72:a1:80:8e:21:c6:06:a6:9b:
ed:7e:90:38:1b:cc:49:66:94:f8:e1:a3:11:3a:b8:8f:69:27:
45:cb:60:36:73:7d:f6:d4:bd:08:66:79:95:24:af:f5:4b:5c:
84:6f:bd:f9:fa:07:29:ec:3c:0a:20:79:cf:ba:f6:d5:51:78:
92:4d:ad:23:51:e1:67:6e:18:28:93:40:37:e1:d8:d1:45:66:
9d:dd:41:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:32:22 2025 by rpki-client