Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
File: ag1malTV4bw1XA1yUDpFj8Do4Gw.mft (raw, json)
Hash identifier: Ik2HVPgV/979TX6WMHq4xnVgKiYVpsj/31Jq5ZUQlmU=
Subject key identifier: 71:2E:C7:C2:6B:AE:1C:99:83:EC:25:DB:E0:1C:93:CF:74:79:71:8B
Authority key identifier: 6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
Certificate issuer: /CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Certificate serial: 019682EC4E5843577DB19C3C051512A3244C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
Manifest number: 1515
Signing time: Tue 29 Apr 2025 19:00:46 +0000
Manifest this update: Tue 29 Apr 2025 19:00:46 +0000
Manifest next update: Wed 30 Apr 2025 19:00:46 +0000
Files and hashes: 1: Zbu9lV-TXRr1mjPabkdbQi-tc2k.roa (hash: L0pLG2iq3DWnmdVA1LNHGmiPWiH4T8eZ9Q5L7k/ukzQ=)
2: ag1malTV4bw1XA1yUDpFj8Do4Gw.crl (hash: 1tkmfzFq9Lqurmh2fwnaIrAQoSK3pPm3Kfkc2nMkUfM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:ec:4e:58:43:57:7d:b1:9c:3c:05:15:12:a3:24:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Validity
Not Before: Apr 29 19:00:46 2025 GMT
Not After : Apr 30 19:00:46 2025 GMT
Subject: CN=712ec7c26bae1c9983ec25dbe01c93cf7479718b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:37:84:b0:4b:02:ed:a3:cb:bf:e9:b8:52:0e:
53:d4:08:72:f2:77:a5:36:d8:28:f6:ff:fe:0f:08:
3d:81:eb:3d:ae:93:02:29:e7:d3:c4:2a:27:ce:da:
29:3a:f1:11:76:53:8b:7a:78:ee:89:1f:dc:9e:19:
32:c4:c4:99:72:67:77:3b:c0:97:b8:de:b5:2e:93:
00:97:0c:0b:62:b4:d7:7c:99:a5:eb:28:cb:ef:b1:
a7:c8:c3:43:49:7b:9d:6a:7a:74:7b:92:55:94:f8:
bf:27:07:13:d8:3e:eb:b9:23:8c:25:d0:fa:f1:9d:
94:2b:b9:1d:3a:ad:f4:b3:58:c7:f3:6f:7c:c9:a4:
9a:de:8d:05:91:e7:3a:52:1a:84:60:ba:0d:fd:ca:
ff:10:ce:d5:ef:c4:fc:99:cb:67:e2:51:2b:15:4f:
73:d9:73:f5:81:72:57:69:dd:f0:50:82:69:67:49:
33:9f:0b:e2:c9:22:00:86:56:68:6d:21:36:d8:c7:
ce:72:6a:83:ec:0c:3f:87:ad:9b:0d:00:9d:72:0c:
ca:40:f2:2c:12:cc:f1:34:ae:ee:2d:4b:c6:1c:58:
e5:a9:0e:c9:8f:c6:c8:68:1b:c8:20:c3:0b:38:d8:
b5:0b:21:68:85:ce:00:c4:a6:1d:9b:ef:2d:38:e1:
31:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:2E:C7:C2:6B:AE:1C:99:83:EC:25:DB:E0:1C:93:CF:74:79:71:8B
X509v3 Authority Key Identifier:
keyid:6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:07:68:52:94:e4:c6:95:59:2b:a1:1c:72:4a:d7:25:b5:b7:
49:5d:ab:22:3f:dc:64:20:cf:78:14:d4:e3:80:f2:c3:7e:ae:
26:74:43:1e:9c:3c:12:ee:9c:d2:15:0a:0b:b0:e0:8d:25:f2:
c9:90:6d:a4:db:8e:d8:09:cb:83:55:d1:5b:fa:c1:42:d7:d5:
fc:66:72:84:d9:fe:52:c4:0f:9f:a0:cd:38:76:27:f7:22:68:
b3:98:0b:d4:65:4d:72:77:d7:99:9f:10:69:82:03:31:aa:8e:
32:bd:96:6a:ad:de:4f:6f:e9:9d:c3:4c:48:11:a9:b2:c8:e3:
e1:50:9f:05:89:38:12:9a:5b:a3:9f:7a:b9:76:34:f7:e5:b6:
8c:58:9e:c0:31:f9:fb:78:1a:be:9f:50:8f:a5:55:a9:2b:50:
03:c6:d4:34:f7:0b:e2:d9:4a:4a:19:b2:2d:c1:7f:90:3d:bb:
33:22:ca:4b:96:1c:59:51:13:22:20:ca:1b:9d:6b:e8:57:0c:
af:38:cb:81:fe:01:0c:f6:6d:ae:5f:5c:bf:1c:25:27:a1:95:
a5:61:76:a7:86:d2:a4:c2:d1:7d:ca:a4:ed:4f:63:24:0e:6c:
f1:73:53:dd:af:2b:23:05:76:e4:13:c2:65:88:49:3c:d0:e8:
62:96:0c:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 22:15:29 2025 by rpki-client