Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
File: aIt13GcpXVhht31RoCEYtg3FWGg.mft (raw, json)
Hash identifier: 3Kt1YC/6MkMbI6he6pkBk0lbnGuxkYmCXSOc2BviTNY=
Subject key identifier: 04:F8:FA:74:BA:00:05:56:7E:CD:47:71:38:FB:6B:8D:58:2A:9D:B8
Authority key identifier: 68:8B:75:DC:67:29:5D:58:61:B7:7D:51:A0:21:18:B6:0D:C5:58:68
Certificate issuer: /CN=688b75dc67295d5861b77d51a02118b60dc55868
Certificate serial: 019674C2B03AB7181387B06311EE64111E0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
Manifest number: 0C18
Signing time: Sun 27 Apr 2025 01:00:38 +0000
Manifest this update: Sun 27 Apr 2025 01:00:38 +0000
Manifest next update: Mon 28 Apr 2025 01:00:38 +0000
Files and hashes: 1: ArfVzV_ad27WSg6MSNAJVOVO4Jk.roa (hash: 7YOwLzYn+04mEiM6zjtu45GNMFpON/tmtRVeglwvQWQ=)
2: aIt13GcpXVhht31RoCEYtg3FWGg.crl (hash: iTAAmQSw3bCSCoZBB32pQdklxEYbrbh8PEiImS+VAC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 01:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:c2:b0:3a:b7:18:13:87:b0:63:11:ee:64:11:1e:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=688b75dc67295d5861b77d51a02118b60dc55868
Validity
Not Before: Apr 27 01:00:38 2025 GMT
Not After : Apr 28 01:00:38 2025 GMT
Subject: CN=04f8fa74ba0005567ecd477138fb6b8d582a9db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:98:69:9d:d1:fc:d9:8c:f8:8e:04:ea:8d:66:
63:72:63:60:a7:01:a3:68:7d:10:c1:e7:76:1a:1c:
23:93:2f:f0:f8:b9:47:8c:6b:d6:ed:a1:c0:f7:bb:
a2:c2:52:24:79:c5:f6:3e:25:39:7f:53:0d:8b:9c:
75:61:47:73:d6:4e:b7:9c:b6:8f:0a:47:95:38:46:
4f:c3:fe:9c:ea:8e:56:35:b7:72:39:5b:7e:08:ea:
6a:7d:94:68:9f:fe:c3:f8:1b:5a:cb:0b:4e:f6:3e:
00:ea:79:20:46:76:45:13:1b:64:8b:65:3c:b5:b9:
df:87:96:a7:d2:74:22:01:eb:6e:2f:11:79:4d:26:
d3:0f:b2:e3:50:62:10:79:b3:d1:3c:95:e5:ee:be:
f2:98:7f:82:b9:e1:57:ac:46:52:79:e4:a6:9f:fa:
72:30:ca:3a:f6:64:de:f4:d0:6c:d0:04:ec:fb:1e:
69:7a:f9:8d:6c:3b:9d:83:ff:69:26:a3:6d:f4:4a:
fa:0a:9e:86:80:61:68:07:ac:bb:b8:a7:cb:df:88:
cd:45:41:ca:bd:a9:11:d4:1e:27:a4:ed:d9:89:fc:
c3:e3:93:28:db:96:89:69:4e:e1:39:d3:53:53:e7:
02:c9:20:9d:bc:8e:25:dc:cd:60:3b:e8:4c:74:0a:
03:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:F8:FA:74:BA:00:05:56:7E:CD:47:71:38:FB:6B:8D:58:2A:9D:B8
X509v3 Authority Key Identifier:
keyid:68:8B:75:DC:67:29:5D:58:61:B7:7D:51:A0:21:18:B6:0D:C5:58:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIt13GcpXVhht31RoCEYtg3FWGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5a4561-5092-4c28-9d5f-518ee7bde1f8/1/aIt13GcpXVhht31RoCEYtg3FWGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:ba:ea:ad:44:38:bd:a4:04:be:3f:2a:ed:a9:59:23:bc:ec:
49:f8:d3:e7:70:56:5e:01:2e:f7:b8:77:53:2e:99:f9:df:ad:
91:60:b6:bf:46:24:b2:59:90:e0:e7:10:0d:3f:22:d2:3a:04:
92:8c:fd:a4:43:79:fe:67:f1:b9:76:d9:fa:51:6b:3c:0e:95:
13:c6:1b:e2:dc:b6:ad:68:0d:24:30:aa:b2:23:c3:25:70:5f:
70:34:31:76:c3:23:c5:bf:38:45:83:5f:5b:58:82:7d:bf:6c:
03:b0:9a:72:2b:93:b5:52:70:88:9e:ce:3b:8e:ce:f0:68:ef:
b4:71:09:9b:f5:a9:eb:f5:9a:13:c3:2c:5b:47:c3:1a:e4:83:
05:8c:ca:2e:b6:b4:1e:db:1d:ae:a1:04:0b:9a:a2:f7:e0:ee:
46:4c:4c:ff:09:d8:cf:bc:61:2a:f9:a4:01:81:b2:88:8b:14:
38:dd:dc:65:5c:ab:92:ea:5f:89:64:91:a8:f5:58:be:7a:c3:
ac:9b:95:97:98:9a:56:87:9f:2f:8e:31:60:ca:70:bd:74:76:
b2:c8:97:e1:b8:f0:2e:9a:f6:e5:9c:ad:d7:b1:cf:60:5e:54:
09:33:ef:b0:7c:b4:fc:10:35:81:74:83:e7:99:d2:ce:d5:3f:
e8:7e:44:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 10:55:09 2025 by rpki-client