Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
File: aNLCXQU0pAJ8aVViqM5PABzVOW8.mft (raw, json)
Hash identifier: 3ogwcZY3XMYGeV7Gxdceijno+DiAu7CSYy8DdN9VXxo=
Subject key identifier: E5:A2:3E:ED:9E:DA:F0:C9:11:2A:13:6F:04:6B:85:0D:8B:3C:DE:F0
Authority key identifier: 68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
Certificate issuer: /CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Certificate serial: 01968511679C9D3B2CAA3982CFD07CA39070
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
Manifest number: 116A
Signing time: Wed 30 Apr 2025 05:00:32 +0000
Manifest this update: Wed 30 Apr 2025 05:00:32 +0000
Manifest next update: Thu 01 May 2025 05:00:32 +0000
Files and hashes: 1: SALrx8y5x39WJ8efwGiimpmg788.roa (hash: CtpmQiaYAVz0sehGOLMPmKtW82021GvqOFqhQ5ojIPI=)
2: aNLCXQU0pAJ8aVViqM5PABzVOW8.crl (hash: PfUlo9Oc5BkNi+9p0wFD/GMfTWuO9AjFPWawCieE1fo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:11:67:9c:9d:3b:2c:aa:39:82:cf:d0:7c:a3:90:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Validity
Not Before: Apr 30 05:00:32 2025 GMT
Not After : May 1 05:00:32 2025 GMT
Subject: CN=e5a23eed9edaf0c9112a136f046b850d8b3cdef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ff:bd:2c:b6:b4:06:39:f1:25:d2:58:cc:79:
d5:5a:5c:4a:20:b4:f4:e4:38:b6:70:ee:14:96:31:
3d:1e:02:89:5b:cb:a1:5e:77:ad:46:0a:fd:b3:e0:
07:7e:0d:18:b8:64:0f:4c:d0:55:c3:54:aa:48:ef:
aa:fd:65:3a:8d:2a:8e:78:66:49:ae:f4:55:64:f8:
10:97:b9:38:ab:76:4e:8b:df:fd:92:87:b6:1c:58:
17:8c:2e:23:49:4b:b5:06:2f:3e:c0:1e:e5:f2:c9:
86:d2:c2:c1:04:9c:0c:0c:ad:f5:cc:1b:41:16:2f:
cd:80:fe:83:82:94:25:47:39:fa:3f:da:9a:b0:10:
7d:de:f1:3b:fe:9f:05:56:9d:6f:fe:e0:96:d7:a4:
69:e2:50:84:67:09:85:93:b5:68:45:ff:75:e0:fa:
5b:33:38:5d:a5:14:95:7d:14:73:67:ac:72:df:3a:
d7:21:90:d5:08:9b:ef:30:a2:80:3b:97:1d:01:93:
39:62:7c:9d:40:af:c6:d8:e3:f2:76:63:ae:e3:18:
ac:46:44:69:e0:06:5d:54:20:22:34:d3:76:85:bc:
b3:62:d1:90:bc:9c:0a:8c:df:09:df:d3:b6:43:cc:
17:a0:4f:80:07:62:87:2d:b8:ab:fc:8c:e5:5e:9d:
a0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:A2:3E:ED:9E:DA:F0:C9:11:2A:13:6F:04:6B:85:0D:8B:3C:DE:F0
X509v3 Authority Key Identifier:
keyid:68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:5c:6c:e5:50:4b:f9:40:41:65:67:9e:48:3c:e3:2a:44:19:
d2:81:09:a6:61:c2:78:98:8d:ff:44:5d:97:a1:26:0e:98:65:
b6:56:00:c0:7e:95:27:f3:f0:be:c9:df:48:49:63:55:36:12:
80:95:5e:9b:fe:10:43:04:9c:da:f4:2a:39:8a:94:62:68:38:
0b:7a:86:83:9f:de:76:a4:ac:e8:c7:20:bc:56:27:99:8b:54:
d1:d8:2b:31:98:a9:46:93:a9:e1:83:a6:6b:72:fa:6d:74:c1:
65:52:a3:6f:81:84:ca:09:29:f8:32:ee:99:7d:c8:01:da:05:
0f:7d:74:d8:bc:83:7f:0a:6a:b8:be:8d:f6:dd:ee:d0:a8:d2:
a6:31:70:97:a7:cb:4c:a0:84:37:58:38:38:f5:a1:c1:d2:64:
3d:85:a3:fb:50:c1:bb:07:2c:8f:be:da:b4:4d:35:81:c2:8f:
f7:65:78:bf:f1:06:a6:75:54:73:57:67:15:31:59:91:ba:37:
54:92:ec:7e:d0:e3:61:80:77:ec:86:f8:05:cb:42:ea:ad:65:
65:b5:a0:51:4d:ba:c5:42:73:27:fd:b1:cc:76:6c:c8:2c:d7:
bc:7b:d7:aa:91:54:fd:af:10:80:28:c2:e0:51:f8:72:49:cf:
fa:98:b7:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 11:12:39 2025 by rpki-client