Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json)
Hash identifier: GkXgEQna3djUQaxkT8zGieaspFySqnoGKkJ+QJLYBqo=
Subject key identifier: AC:60:79:6F:64:45:8C:8E:5B:1B:61:82:75:FA:80:52:16:7F:E4:F5
Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Certificate serial: 019676E86235F214B1A853B8842567C337FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
Manifest number: 0F8A
Signing time: Sun 27 Apr 2025 11:01:03 +0000
Manifest this update: Sun 27 Apr 2025 11:01:03 +0000
Manifest next update: Mon 28 Apr 2025 11:01:03 +0000
Files and hashes: 1: 6zOYtzjXBD-DYg3_-ZbwFYlxy-U.roa (hash: bndS1Tzx6VzHh/lOs3pK1BLzPGIXQ0EzQwN4Ak3MXSs=)
2: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: 0AmvuEmC2j8z1y9TIXLUIhunvxeMei4/SVNZevkrFzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 11:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e8:62:35:f2:14:b1:a8:53:b8:84:25:67:c3:37:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42
Validity
Not Before: Apr 27 11:01:03 2025 GMT
Not After : Apr 28 11:01:03 2025 GMT
Subject: CN=ac60796f64458c8e5b1b618275fa8052167fe4f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c3:4d:6f:e4:30:95:7b:09:7b:37:90:4e:e8:
25:84:bf:41:f9:e4:6c:bc:2e:6f:fb:7d:97:23:16:
0f:e2:3e:e4:07:0a:e0:79:79:d2:2b:05:1f:81:c0:
61:92:8b:90:15:e5:e6:c5:3f:a3:c2:b1:07:42:29:
b3:e2:82:4f:f6:92:e9:fc:1a:76:4a:34:77:95:53:
c9:31:23:79:90:ec:8c:0a:33:07:20:d6:e1:64:2e:
aa:06:6d:aa:68:53:49:b4:c3:b4:f8:ab:c7:9f:0c:
a0:1b:8c:50:ff:a7:4d:55:d5:47:f8:2d:3d:a8:76:
b1:06:97:c0:ac:fe:fa:c6:74:ce:50:04:bb:c1:3d:
1f:2a:ee:fd:04:88:ae:f5:6d:c2:5a:9b:15:b5:a9:
58:e6:44:f9:a5:38:fa:ff:a6:44:b3:c9:a1:65:90:
6f:d3:ab:7a:95:de:81:0b:8c:9e:3d:93:e1:12:ea:
ca:14:8d:16:bc:8c:ab:a3:fb:44:7c:ee:77:25:91:
5d:7c:78:53:fe:c1:24:60:cd:31:d8:be:bd:a1:a6:
82:b6:65:ee:2d:b1:82:73:d1:57:8b:c7:e4:93:6d:
bf:9e:c8:09:6b:8c:35:c5:a1:b9:67:e7:57:6a:c3:
13:57:95:3c:29:56:a1:5b:27:84:17:47:55:b5:c1:
86:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:60:79:6F:64:45:8C:8E:5B:1B:61:82:75:FA:80:52:16:7F:E4:F5
X509v3 Authority Key Identifier:
keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:f3:8e:2a:05:99:67:eb:51:c6:69:97:a6:c9:51:cc:4a:ac:
3c:5f:be:7c:6d:41:f0:fe:d2:f5:b1:8a:29:08:2a:59:48:bd:
12:db:af:80:7c:52:c1:c2:14:13:2e:a3:82:8d:cd:40:dd:42:
70:82:2d:87:3c:a7:02:b3:32:11:37:23:23:34:85:b1:8e:8d:
15:ff:7a:4a:3c:77:50:50:9b:81:f1:12:54:06:26:27:37:dc:
8c:07:3b:6e:b6:1b:2c:51:b5:5a:5e:b4:6a:ba:04:26:70:b1:
60:67:24:7c:da:35:86:fa:9e:60:fb:79:99:30:e6:f6:0e:a8:
12:9e:bc:87:40:24:7e:68:c9:af:88:37:6b:a5:e9:51:b3:8a:
d0:19:d9:ff:f4:b6:82:0c:7b:15:9f:b1:45:78:1e:16:e7:2b:
e2:a8:34:44:74:09:31:2e:ac:35:a6:53:c8:f1:4b:b7:4d:54:
ca:50:48:22:e7:51:a8:f2:24:0c:09:a4:1c:19:0c:4f:09:77:
b0:0c:0d:9d:0a:32:ba:b9:0b:c7:8f:07:16:dc:dd:2e:e0:77:
61:a3:ac:d1:5b:46:a0:f9:ff:c6:ff:96:a7:e8:05:5f:b8:2f:
7a:60:6c:65:b0:38:c6:94:a0:2b:ec:62:15:13:33:bc:4c:6c:
c0:25:8b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:08:51 2025 by rpki-client