Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
File: aaTWkWuTFZqoCYSps3dGg7tVDr0.mft (raw, json)
Hash identifier: T4QGbhvGT3G2RwjtIPciZpBTCGRf16bmOrm4vtjeCEI=
Subject key identifier: A0:A5:82:FD:08:27:16:37:00:9F:8C:69:C9:65:AE:F3:93:99:27:DA
Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Certificate serial: 0196813472A19897E3E6CA38C5586DE778B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
Manifest number: 1257
Signing time: Tue 29 Apr 2025 11:00:19 +0000
Manifest this update: Tue 29 Apr 2025 11:00:19 +0000
Manifest next update: Wed 30 Apr 2025 11:00:19 +0000
Files and hashes: 1: 0dT9gx4qOXkpqZlNkbev_-uBl0c.roa (hash: AhSSJUvXXS4MCpfi02OS/Sl/WMScliKSAGKKpGr/omg=)
2: Jqr-CXHYnZmzg_xVdImaXbMmVEI.roa (hash: XvpOhA/u1tpu0r7xTILje32qKTHGeywG7gPta8XZExU=)
3: S7cvUB4j_UAWLlorKkQpKplvSek.roa (hash: BzDMJKCxDcsJF5G/pnwJpmaeHc/VSanQaPg+mRpgeIU=)
4: aaTWkWuTFZqoCYSps3dGg7tVDr0.crl (hash: 83Clugv5G06B09IFMjgO4IWw1xa53oVqkZAiLEXu48E=)
5: p5Pxp-2R2mpxd_TdGf_xD9MyhUg.roa (hash: 8XfSlLN4HMzOCIW1k555GHmyKjvtxd9c3WvZ5/ZNc5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:34:72:a1:98:97:e3:e6:ca:38:c5:58:6d:e7:78:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd
Validity
Not Before: Apr 29 11:00:19 2025 GMT
Not After : Apr 30 11:00:19 2025 GMT
Subject: CN=a0a582fd08271637009f8c69c965aef3939927da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:79:bb:8e:c0:78:ef:76:00:76:ad:ee:7e:07:
bb:28:21:1f:bd:0b:ad:0d:55:93:ed:77:11:64:11:
3d:82:a5:14:b8:c8:de:42:eb:d6:b3:5d:5d:f3:94:
ef:e5:c2:a4:51:44:5d:ec:45:ab:c9:e7:ea:ad:f0:
c5:07:06:e0:56:4c:3f:42:e6:17:5b:ef:ec:8e:dd:
70:40:71:e4:07:72:9f:a1:f4:0d:a1:68:37:fd:25:
06:e3:97:79:fe:fc:b9:29:73:cc:61:6a:04:95:42:
3f:72:98:2e:7c:4b:a4:7b:1b:29:86:07:71:7e:3a:
fc:ee:bb:12:a8:d6:99:f8:d4:f6:94:b3:61:69:03:
dd:e4:fd:80:e3:7b:0c:cd:01:19:85:37:72:6c:de:
53:ec:37:44:78:95:7f:47:6b:02:fd:23:76:31:e1:
4d:3f:ee:91:be:23:9f:c2:d1:66:ca:5d:67:61:f9:
49:26:41:bd:20:23:22:94:d4:bf:a1:07:b7:5a:6e:
87:a1:38:c9:64:e2:c1:1d:f0:92:2d:bf:28:6b:9c:
c1:20:0c:69:de:12:b3:89:ba:e3:06:96:aa:e9:13:
fa:55:fb:bf:4c:ad:8d:2c:88:47:a1:ff:56:da:33:
6e:c1:da:f3:11:4e:d8:d1:49:5a:9f:54:f6:ea:63:
49:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A5:82:FD:08:27:16:37:00:9F:8C:69:C9:65:AE:F3:93:99:27:DA
X509v3 Authority Key Identifier:
keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:5b:1c:93:0a:eb:6a:35:40:99:42:d2:4b:07:94:db:7b:e6:
b4:e8:54:c2:a3:c5:26:7c:a4:32:46:6a:dc:c2:66:a2:6e:41:
03:e3:2d:7b:12:22:c2:9f:07:f7:aa:cc:72:c1:0c:1e:15:7a:
b8:71:99:95:ce:ea:ca:36:19:80:9d:9b:25:46:b3:1a:aa:f1:
84:a2:66:17:b1:03:40:d9:55:b3:c5:d3:72:08:54:18:13:13:
18:32:fa:95:0d:5c:d4:15:01:3b:ae:3d:9d:ac:8b:9f:dd:51:
67:2b:1f:4d:67:08:4a:c3:85:ee:f1:8f:31:a1:f8:35:c3:0e:
fd:8c:d1:6f:6b:f8:35:d4:24:99:f2:63:cc:b8:e7:c9:cb:91:
a8:51:75:15:37:6a:5f:98:8e:a7:cb:e7:18:cd:9d:09:85:82:
fc:c1:80:22:a4:60:a3:91:9f:d1:5a:03:69:00:f2:83:2b:4d:
59:ea:ea:8f:16:62:38:c6:21:c3:cf:4c:fa:86:0f:7e:4d:75:
44:0e:6c:4a:cd:cd:d6:f3:d6:52:21:73:8e:c7:14:11:da:d6:
7c:ab:ec:6e:86:5f:a5:f6:36:0e:ab:4f:68:04:65:f7:92:26:
51:50:5c:74:56:72:13:17:60:59:d4:be:f5:ae:71:51:61:17:
9c:d7:81:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 12:49:32 2025 by rpki-client