Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
File: Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft (raw, json)
Hash identifier: FIyM3ifE9MDFySNnbvsjl3fTYFNkGVDyUzjWfS7dN28=
Subject key identifier: C3:DA:E5:E7:42:82:9A:EC:E3:91:07:49:BB:24:91:66:F6:0A:89:25
Authority key identifier: 02:3C:39:71:09:34:0B:76:7B:CB:32:45:15:F6:D1:F8:2C:8C:C7:CF
Certificate issuer: /CN=023c397109340b767bcb324515f6d1f82c8cc7cf
Certificate serial: 01968210523E8E6D2EA864C458FC90EAF96A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
Manifest number: 1181
Signing time: Tue 29 Apr 2025 15:00:29 +0000
Manifest this update: Tue 29 Apr 2025 15:00:29 +0000
Manifest next update: Wed 30 Apr 2025 15:00:29 +0000
Files and hashes: 1: Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl (hash: g53OYJ5PJQVtAVykC4z4C6pUc39lR2Woz7ZiHRr+4DI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 13:46:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:10:52:3e:8e:6d:2e:a8:64:c4:58:fc:90:ea:f9:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=023c397109340b767bcb324515f6d1f82c8cc7cf
Validity
Not Before: Apr 29 15:00:29 2025 GMT
Not After : Apr 30 15:00:29 2025 GMT
Subject: CN=c3dae5e742829aece3910749bb249166f60a8925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:62:47:53:8f:6a:f5:81:3e:92:b8:15:75:84:
f8:f9:c4:e0:66:32:70:ac:93:8e:7c:a2:09:c5:56:
36:6e:6c:1c:f0:d1:ea:2d:62:74:69:f8:cb:4f:24:
7e:0e:5c:1b:e3:56:e7:d4:b8:b6:65:b6:39:ad:2a:
f8:ec:1a:80:8f:92:cc:6f:8b:9f:e9:9e:5b:49:0a:
46:f9:69:c3:da:20:8c:5f:a5:51:98:82:3e:09:75:
b0:26:7d:29:2a:2b:2e:21:27:7c:0d:bf:f7:94:0c:
fb:f0:39:12:69:b2:ec:ed:9f:3e:0e:e1:46:f4:98:
11:c5:ab:77:6b:78:ee:a5:c6:b2:b6:ba:83:5c:70:
03:50:fc:5e:e5:a9:81:97:23:64:12:49:a6:58:1f:
fa:b3:01:4f:8c:49:68:5a:2e:0e:1b:5b:68:43:2d:
c6:3a:aa:0f:f3:e9:77:c3:a1:0f:2c:09:f0:31:d2:
38:82:6e:4a:b9:6e:83:d6:1b:8d:d6:d4:97:9c:a3:
2f:54:53:cf:12:48:c6:ba:6e:f0:a9:a5:d8:3e:99:
ee:3f:e0:07:c7:ad:af:2a:1b:6c:ff:98:0f:56:0c:
65:df:6b:ff:68:81:f3:36:4e:29:6e:9e:3e:0f:50:
ba:7e:c4:8d:01:34:3d:72:ed:08:c1:e0:d8:1f:26:
7d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:DA:E5:E7:42:82:9A:EC:E3:91:07:49:BB:24:91:66:F6:0A:89:25
X509v3 Authority Key Identifier:
keyid:02:3C:39:71:09:34:0B:76:7B:CB:32:45:15:F6:D1:F8:2C:8C:C7:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:10:c6:e7:4e:81:48:ce:94:f7:2d:b1:58:d2:70:64:80:df:
fc:ff:3f:af:6b:e1:ec:8b:a2:d7:94:3a:5e:b1:87:0b:3f:22:
0e:11:ec:15:87:57:1c:6e:17:cb:a4:8b:98:7b:63:ec:b7:ec:
1b:71:54:53:e0:59:68:3e:bb:80:5a:72:5f:21:a8:4f:97:02:
85:1a:b3:10:64:dd:45:29:03:73:1c:84:95:6f:fe:b1:7d:85:
ad:dc:23:13:e9:11:a3:b4:5d:85:6e:6d:c7:95:50:d7:a2:5b:
53:e4:3c:3c:9e:ca:66:3b:75:85:ec:2e:e1:36:91:08:20:5f:
0f:45:d5:66:e7:4b:3a:76:fa:11:60:6b:eb:76:a2:4d:fa:c1:
38:ad:83:9c:b0:50:b6:99:f8:6e:8a:ab:f4:1a:36:6a:9e:eb:
17:5b:29:bb:35:ac:d6:23:83:74:b9:37:65:07:30:d0:99:e3:
83:8c:cb:11:9b:db:3e:87:00:ab:6f:38:68:74:06:70:47:94:
8d:bb:66:52:08:9b:a5:8e:4b:7b:fc:53:84:a3:1a:47:b7:48:
12:25:2c:37:49:62:15:e5:f4:4b:4f:31:ac:f3:95:c4:84:e8:
01:74:9f:48:9d:0d:94:62:dd:fa:ae:be:96:42:d0:d8:92:16:
e4:92:16:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 16:51:29 2025 by rpki-client