Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
File: AaVsQu18uWPyhVA87AYG1g0Ks4c.mft (raw, json)
Hash identifier: Lv/CHG1JNdgD25BWC0Cb2mx+q4iXurE1iz+VacA8iO0=
Subject key identifier: C8:3F:78:E1:34:65:6D:26:38:84:75:3D:BB:3E:67:5C:5C:98:5D:D1
Authority key identifier: 01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
Certificate issuer: /CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Certificate serial: 0196741DD7990FD3CA020410435BE01F87F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
Manifest number: 0DCF
Signing time: Sat 26 Apr 2025 22:00:34 +0000
Manifest this update: Sat 26 Apr 2025 22:00:34 +0000
Manifest next update: Sun 27 Apr 2025 22:00:34 +0000
Files and hashes: 1: AaVsQu18uWPyhVA87AYG1g0Ks4c.crl (hash: OuWVQZ/bqcP6n/hn1OYlblcVUJrALZH1G+veRKFBaqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 22:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1d:d7:99:0f:d3:ca:02:04:10:43:5b:e0:1f:87:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Validity
Not Before: Apr 26 22:00:34 2025 GMT
Not After : Apr 27 22:00:34 2025 GMT
Subject: CN=c83f78e134656d263884753dbb3e675c5c985dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fc:ff:eb:fe:6d:bf:3c:c6:38:97:c8:df:a4:
94:4b:35:1f:9f:6f:4d:6e:7d:84:27:fc:35:e1:ff:
2a:69:f7:05:4d:96:89:08:5d:26:13:dd:5d:19:d7:
b0:c8:f8:19:1c:be:89:ca:7e:de:83:c3:2d:34:b4:
aa:07:3d:c3:fd:1c:f0:6c:4d:12:9f:c5:50:71:38:
65:c1:ad:34:ac:1e:3c:70:c6:19:c7:11:11:46:b3:
46:88:88:46:d4:5e:9a:0c:8f:71:e2:7d:2a:28:e3:
f3:17:47:28:1b:2c:7c:c9:94:70:3c:b6:8d:99:8a:
ca:08:56:14:ea:1a:8f:97:b1:ad:23:9b:a7:3b:fd:
ea:4a:ba:79:92:ed:0b:0c:6a:43:24:3a:bc:0a:cf:
07:53:a1:d8:c9:54:5a:1f:67:f6:71:d0:25:b7:35:
2d:4e:b5:e6:11:c6:c7:df:c2:03:0a:d7:c0:83:16:
dd:9d:6f:0a:00:14:e8:f9:e6:33:c7:ac:b3:e5:f5:
6b:4d:18:9d:af:e1:38:70:6b:c9:bc:c6:41:ce:3e:
7d:1b:66:47:3c:43:ff:f9:c8:da:18:2e:0e:95:13:
87:f2:3e:d8:90:e3:24:fc:a1:d6:5a:3e:4d:66:d3:
27:28:b4:be:8c:31:60:66:54:aa:46:ad:20:04:02:
69:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:3F:78:E1:34:65:6D:26:38:84:75:3D:BB:3E:67:5C:5C:98:5D:D1
X509v3 Authority Key Identifier:
keyid:01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:6d:2d:92:e3:07:42:5f:f3:fa:41:5d:dc:80:1f:48:83:ce:
85:1f:31:57:45:35:23:f5:54:8f:8c:5d:69:8b:49:41:c0:e4:
5d:1b:0b:22:8a:6d:cc:59:b1:5d:6b:91:2e:b9:b9:36:38:f2:
e2:3b:1f:8f:50:d3:04:71:b1:c9:46:0f:2c:6c:2f:ad:0e:31:
35:5a:1e:9b:98:ab:61:10:38:6c:40:6f:7e:ba:6b:26:e2:e1:
5c:69:dc:3a:0b:10:96:c5:4c:45:f9:bf:10:b8:6e:1b:7d:92:
40:e4:9d:62:ac:95:2b:89:a6:c5:75:d9:aa:6a:62:1b:23:b1:
5e:98:cf:67:6d:f1:20:6e:36:c8:09:fc:5c:43:72:50:96:df:
ba:29:92:da:1c:e8:ff:05:6f:28:76:4d:1e:8a:3a:88:75:40:
ad:83:70:3d:f1:42:d6:0c:9b:c1:e9:27:f7:63:6b:5c:7f:6d:
09:0b:1a:e3:f7:cb:fc:36:fd:15:29:2a:52:ee:c5:20:98:b9:
50:78:17:6b:37:67:af:9d:91:63:c8:bd:bc:c9:76:34:a5:ba:
95:c8:17:c0:5e:44:e4:dd:6d:db:ff:62:4b:0e:28:11:18:d9:
0d:de:26:74:b1:12:c1:3b:c9:7f:bd:a1:d8:14:c5:ae:6a:7b:
32:25:4e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 06:33:34 2025 by rpki-client