Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
File: aHyL8iKia_HJxmOMw1bSg1UC8tY.mft (raw, json)
Hash identifier: qhlVDUh0OjpZ/MJUDVGYmLgm2E7vr4Q/bjkVLQlxvEc=
Subject key identifier: 2D:89:EC:22:26:89:49:55:72:00:E4:8D:0F:3A:6A:B0:18:73:16:BA
Authority key identifier: 68:7C:8B:F2:22:A2:6B:F1:C9:C6:63:8C:C3:56:D2:83:55:02:F2:D6
Certificate issuer: /CN=687c8bf222a26bf1c9c6638cc356d2835502f2d6
Certificate serial: 01967FB5102480D52F5FE569480AF83547A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
Manifest number: 0654
Signing time: Tue 29 Apr 2025 04:01:34 +0000
Manifest this update: Tue 29 Apr 2025 04:01:34 +0000
Manifest next update: Wed 30 Apr 2025 04:01:34 +0000
Files and hashes: 1: aHyL8iKia_HJxmOMw1bSg1UC8tY.crl (hash: S8su0LXsSbrhINeSrtxqFhtOtHOZv1E8F2aNX6qlB7s=)
2: szxe0DPYsGTMI_tgKM1yaWgLDtI.roa (hash: fjZgmmGMINi/iYDucRgC4NEVBx45QTUkAnBaw6M5XK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 04:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:b5:10:24:80:d5:2f:5f:e5:69:48:0a:f8:35:47:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687c8bf222a26bf1c9c6638cc356d2835502f2d6
Validity
Not Before: Apr 29 04:01:34 2025 GMT
Not After : Apr 30 04:01:34 2025 GMT
Subject: CN=2d89ec22268949557200e48d0f3a6ab0187316ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:27:90:7e:a2:74:f2:4f:e4:97:48:f9:fc:a6:
eb:e4:3a:87:74:1a:d6:ec:48:88:9f:fb:ee:8f:0d:
20:a6:37:84:a6:e7:5c:ff:e6:0a:d7:ca:f2:68:e9:
58:07:bb:20:40:f0:0f:5b:37:8f:7b:de:32:11:16:
be:87:41:52:96:16:90:d5:71:51:63:8e:2f:e9:c4:
24:ea:c6:08:69:05:01:9c:9b:fb:96:a8:9c:1b:ac:
05:9c:64:45:17:5c:cf:5a:b4:9f:37:5d:b9:ec:a9:
36:73:ff:0a:58:f6:d7:71:60:93:bf:fc:dc:43:02:
92:40:f3:d1:97:b8:51:3c:a6:cf:e5:33:9d:c3:01:
70:5d:8a:33:b4:04:fc:58:a4:14:bf:ba:af:ee:2d:
7f:fc:f8:0f:48:7e:12:53:80:14:ff:3d:17:e0:7c:
3b:9b:db:d7:4a:55:36:8c:39:ef:d2:9f:34:06:c6:
c5:5e:05:27:ca:40:1a:d8:fb:7b:0b:04:db:5a:7e:
10:52:9b:35:f9:51:a3:8b:ca:b8:72:c3:28:26:d9:
87:e6:da:97:2c:85:9d:b8:9f:36:0b:6f:e8:fc:ba:
2c:73:81:a7:df:24:8a:08:be:7f:bb:7c:06:5f:45:
22:c0:05:8e:53:b1:8c:c3:20:45:cc:ec:17:ef:06:
4f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:89:EC:22:26:89:49:55:72:00:E4:8D:0F:3A:6A:B0:18:73:16:BA
X509v3 Authority Key Identifier:
keyid:68:7C:8B:F2:22:A2:6B:F1:C9:C6:63:8C:C3:56:D2:83:55:02:F2:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:2d:04:a3:f6:20:9e:2e:e4:de:29:1e:2f:c8:e1:15:20:23:
09:a8:3f:38:53:ea:33:58:b9:5a:98:94:76:df:82:d0:9b:e2:
0e:89:85:7f:d7:e3:8e:2c:96:8b:c5:c8:3f:dd:cf:0f:2a:d5:
11:b8:a9:4b:8c:c8:b6:3e:1f:56:c4:43:b7:7e:c4:e3:dd:9e:
af:78:d9:81:ed:11:88:53:b3:b6:a4:76:fe:ed:e8:85:e4:06:
62:2b:e7:17:08:69:72:65:d1:dc:c8:e3:8b:d6:bc:66:d1:ef:
18:10:6e:78:5f:5c:ee:ec:6d:3b:0c:25:61:85:68:c6:d8:1c:
94:39:54:4a:a6:80:1b:6b:aa:d7:7e:5e:62:b4:c7:be:ad:da:
9b:d6:da:4f:fb:a2:b1:f0:dd:99:1f:d7:11:b7:35:9a:40:3d:
37:f3:cb:7c:ce:99:a1:c1:42:d1:70:3d:5c:a4:48:56:e4:de:
d3:d3:75:81:88:37:13:8a:af:eb:48:9c:40:f5:d7:77:b4:1f:
64:cd:18:58:12:a8:cd:63:ff:72:77:1e:ea:f4:da:db:44:55:
e2:f2:13:1a:15:f1:7e:12:ad:e5:13:d8:4a:bc:03:f5:19:53:
1d:72:ee:2b:88:64:b6:42:96:35:6d:0b:7f:26:6e:d1:a1:08:
dc:c2:4c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 10:42:01 2025 by rpki-client