Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
File: avL7pFrWUxpj0XNQFPaZgH9H-9w.mft (raw, json)
Hash identifier: rMTyT/bbjfUnGTF2GaLY9j9ygXg8YGiwDOnNsJUjfM0=
Subject key identifier: 7E:8B:B5:CC:E8:B4:64:A0:3A:B5:15:09:47:66:D6:78:5E:97:2D:26
Authority key identifier: 6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC
Certificate issuer: /CN=6af2fba45ad6531a63d1735014f699807f47fbdc
Certificate serial: 0196827DEBFE60C4D70A4E20FC36BC8E81FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
Manifest number: 053F
Signing time: Tue 29 Apr 2025 17:00:12 +0000
Manifest this update: Tue 29 Apr 2025 17:00:12 +0000
Manifest next update: Wed 30 Apr 2025 17:00:12 +0000
Files and hashes: 1: avL7pFrWUxpj0XNQFPaZgH9H-9w.crl (hash: kkqeuWvHYY83/WqfsEkJALrWT8aVVh98mevFghir8qA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:7d:eb:fe:60:c4:d7:0a:4e:20:fc:36:bc:8e:81:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6af2fba45ad6531a63d1735014f699807f47fbdc
Validity
Not Before: Apr 29 17:00:12 2025 GMT
Not After : Apr 30 17:00:12 2025 GMT
Subject: CN=7e8bb5cce8b464a03ab515094766d6785e972d26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:61:6b:c4:f2:9c:3f:75:2f:d9:7d:bb:83:be:
d2:44:0f:b2:8b:b6:62:7e:50:27:b9:21:e2:fb:98:
f0:50:5e:7d:e6:10:5e:2f:3f:a9:1b:5f:42:95:83:
e2:fc:2b:35:f9:74:c3:ab:8f:0a:3d:e1:a5:bb:6c:
c9:72:2e:e4:3b:fe:9f:88:60:e9:06:1b:5c:1d:4a:
73:35:84:92:6b:9c:54:33:b5:64:c7:5a:f9:c8:2d:
65:25:c2:e9:dc:0c:28:70:18:e5:e8:d2:76:5b:6e:
e2:4c:8c:4c:aa:af:15:86:be:d8:d1:e6:3b:95:af:
00:81:e5:2b:fc:88:1d:0b:b7:8c:f4:3c:2f:d4:fc:
e6:de:a2:3d:eb:95:8d:a1:95:e2:d4:ed:19:df:c8:
0f:f0:ec:4f:a2:7c:38:c7:7a:c0:c0:98:b7:f4:15:
7f:cb:a0:b9:77:6d:c7:f6:3e:e3:aa:75:e6:24:a7:
40:84:e7:75:d4:1e:14:82:be:2d:7b:39:ec:6c:0f:
44:9a:ab:24:c2:99:b2:ea:16:2c:85:92:93:35:48:
43:53:03:c6:14:a8:d5:41:94:89:aa:de:00:20:94:
b8:bc:0d:d4:87:0f:3b:3e:08:de:2f:ff:4b:b3:99:
ca:57:92:c3:1d:1d:ac:da:25:f2:c1:45:38:29:ef:
99:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:8B:B5:CC:E8:B4:64:A0:3A:B5:15:09:47:66:D6:78:5E:97:2D:26
X509v3 Authority Key Identifier:
keyid:6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:0e:28:9d:c9:7d:ff:bc:c3:f8:b4:27:fd:69:fa:a1:aa:78:
c7:da:f7:2a:cd:1d:8f:f5:e5:0e:c8:1a:ea:68:17:03:90:a3:
44:c3:cd:f6:cd:35:e6:22:da:69:2e:51:da:c2:82:b5:f8:a1:
13:83:a9:fd:e0:2e:6f:1e:07:73:ea:5c:6a:43:68:18:bb:e0:
90:a2:a5:0a:1f:37:23:f3:6b:04:64:9a:1c:e3:2a:ce:f8:16:
97:69:20:38:e3:ab:b8:af:a9:83:7f:94:4f:f7:d2:78:54:c8:
83:0a:48:a7:86:ad:2e:d3:8a:a6:fd:36:c1:75:c0:a7:19:57:
f8:ad:d0:20:0f:b3:0e:5f:4d:6a:07:bf:31:19:ff:eb:e9:04:
80:5e:63:84:6b:f2:7a:31:4a:f4:5d:d2:71:5d:2a:7d:fe:6a:
11:14:05:de:2c:d2:40:cf:fe:1f:87:43:f1:03:19:8a:6b:f3:
9a:48:bb:60:c5:48:9b:d2:b2:72:cf:c4:22:8e:79:94:19:11:
84:85:41:19:35:20:df:75:50:f5:6f:5d:8d:7d:95:79:01:1d:
f8:d1:73:7a:cb:fb:96:94:18:47:a8:d2:50:e9:12:74:bc:cd:
7f:c6:97:57:33:57:e3:85:61:df:7e:1c:99:89:df:ec:d0:88:
e3:ae:15:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 19:20:55 2025 by rpki-client