Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/613a95-b05a-4fc4-9d91-e3b77013fdb7/1/AquPiJLQHdTIQHJMu6uQwMpglDI.mft
File: AquPiJLQHdTIQHJMu6uQwMpglDI.mft (raw, json)
Hash identifier: tZL3x+ZUa/7FedgGdxBnIUuKCBBCdlT60z6TxSQT4kU=
Subject key identifier: 34:23:99:7C:D9:53:7D:A5:EE:7B:94:B4:79:6C:10:5A:BE:F1:1E:15
Authority key identifier: 02:AB:8F:88:92:D0:1D:D4:C8:40:72:4C:BB:AB:90:C0:CA:60:94:32
Certificate issuer: /CN=02ab8f8892d01dd4c840724cbbab90c0ca609432
Certificate serial: 0196741DBAAC5385020F6F3690FDEC54D830
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AquPiJLQHdTIQHJMu6uQwMpglDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/613a95-b05a-4fc4-9d91-e3b77013fdb7/1/AquPiJLQHdTIQHJMu6uQwMpglDI.mft
Manifest number: 1509
Signing time: Sat 26 Apr 2025 22:00:27 +0000
Manifest this update: Sat 26 Apr 2025 22:00:27 +0000
Manifest next update: Sun 27 Apr 2025 22:00:27 +0000
Files and hashes: 1: AquPiJLQHdTIQHJMu6uQwMpglDI.crl (hash: OB+mUg9GRd2fXxZ1ryymWqbaSu9W1YhMBtAg28Low/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/613a95-b05a-4fc4-9d91-e3b77013fdb7/1/AquPiJLQHdTIQHJMu6uQwMpglDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/613a95-b05a-4fc4-9d91-e3b77013fdb7/1/AquPiJLQHdTIQHJMu6uQwMpglDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AquPiJLQHdTIQHJMu6uQwMpglDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1d:ba:ac:53:85:02:0f:6f:36:90:fd:ec:54:d8:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02ab8f8892d01dd4c840724cbbab90c0ca609432
Validity
Not Before: Apr 26 22:00:27 2025 GMT
Not After : Apr 27 22:00:27 2025 GMT
Subject: CN=3423997cd9537da5ee7b94b4796c105abef11e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:14:f9:72:e9:a4:36:72:1a:b6:d8:9e:37:a0:
23:37:f0:30:a9:04:f5:ff:50:0d:f6:c7:64:c0:24:
d7:a0:e6:f8:4c:e2:7a:50:a1:f4:da:ee:bd:7e:11:
ef:63:62:97:fe:f8:80:bb:df:21:36:3a:fb:f3:89:
c0:fa:30:21:30:71:65:87:47:83:f8:df:45:e9:24:
b3:7e:58:f0:18:42:cf:c3:95:2c:c7:e0:29:0e:9a:
0a:5b:05:86:ac:23:a0:2f:cb:2c:2d:b4:f1:97:d5:
83:fb:38:24:cb:44:34:bf:dd:91:d6:18:95:b1:59:
d0:43:f4:47:6a:4b:1d:3c:6e:f1:c4:8f:5e:48:fa:
86:c9:ce:d2:77:0a:f4:47:5c:19:81:06:2a:df:c1:
8b:b8:44:df:5c:bd:5b:be:41:b6:d3:b0:8e:c7:8d:
6a:ec:a1:88:bd:22:0e:a9:52:1f:55:e3:50:e5:7d:
43:00:80:67:21:4a:0e:47:da:cf:5c:6e:0f:84:6d:
54:87:87:7e:be:97:0d:a5:7b:81:06:3c:21:3a:59:
b0:51:94:b8:62:e6:73:25:0c:42:52:8c:03:b9:bb:
38:a6:0a:6a:99:7d:b4:ef:e8:60:7f:79:9e:9f:a1:
af:3e:5b:23:c1:a7:bb:f2:af:ec:9a:11:a2:e1:be:
cc:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:23:99:7C:D9:53:7D:A5:EE:7B:94:B4:79:6C:10:5A:BE:F1:1E:15
X509v3 Authority Key Identifier:
keyid:02:AB:8F:88:92:D0:1D:D4:C8:40:72:4C:BB:AB:90:C0:CA:60:94:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AquPiJLQHdTIQHJMu6uQwMpglDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/613a95-b05a-4fc4-9d91-e3b77013fdb7/1/AquPiJLQHdTIQHJMu6uQwMpglDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/613a95-b05a-4fc4-9d91-e3b77013fdb7/1/AquPiJLQHdTIQHJMu6uQwMpglDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:00:df:12:80:a8:0d:f8:28:6a:8b:09:8d:14:a4:b5:e2:a5:
2f:02:eb:bc:a3:48:51:22:7a:ba:3c:3b:0c:a7:0b:82:b9:13:
c7:83:4f:77:b3:3b:8a:e0:48:39:c4:a8:63:3c:cd:bf:8b:c1:
95:2c:a2:cf:78:43:51:21:6d:03:0f:00:96:0f:5e:8f:05:ba:
be:d4:07:c1:e8:ab:c3:77:b5:97:45:b5:57:ad:52:8e:fe:d2:
c8:4c:fd:41:f5:c3:96:71:ef:3d:52:d5:74:36:09:1b:50:bb:
da:f4:fe:b3:63:f0:14:8f:7f:84:55:d1:1f:77:e7:00:a6:de:
14:cc:f2:80:50:c6:ff:a9:a8:2b:d0:7c:07:c4:48:f8:65:e6:
69:7d:4f:08:54:a2:d6:2c:e3:bd:1d:36:30:c0:9f:b9:b9:e6:
a8:1c:a7:d9:ea:c7:a9:3e:6c:ae:c0:fa:a3:90:69:70:e1:ea:
1d:be:4a:2b:01:c8:86:f1:ac:69:64:20:2e:ab:b8:1b:61:f2:
f2:39:32:d4:a6:5e:7e:e9:2f:33:40:45:7b:1a:75:b8:59:f9:
35:19:2a:2f:dd:75:e7:04:3b:a4:c4:61:37:2a:a8:aa:10:e4:
e8:16:16:7b:db:6f:ec:01:1e:e9:4d:8c:a3:b2:86:9b:2d:c7:
fd:2c:d4:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:37:35 2025 by rpki-client