Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.mft
File: aA4gzPstWJjCFikA0UaAcKcCSVY.mft (raw, json)
Hash identifier: bXaNdXNol7SMx2IDPzSNKmwEQrnKrj2rVnL3kdCfX3s=
Subject key identifier: B0:D4:89:16:F2:77:67:0B:3D:DB:77:BF:E8:CB:E6:02:79:63:59:F3
Authority key identifier: 68:0E:20:CC:FB:2D:58:98:C2:16:29:00:D1:46:80:70:A7:02:49:56
Certificate issuer: /CN=680e20ccfb2d5898c2162900d1468070a7024956
Certificate serial: 0196760CBF6FA60D6C0BA97D5B9D9F90F58E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aA4gzPstWJjCFikA0UaAcKcCSVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.mft
Manifest number: 0907
Signing time: Sun 27 Apr 2025 07:01:09 +0000
Manifest this update: Sun 27 Apr 2025 07:01:09 +0000
Manifest next update: Mon 28 Apr 2025 07:01:09 +0000
Files and hashes: 1: aA4gzPstWJjCFikA0UaAcKcCSVY.crl (hash: BBh9X5m8wfnDUs6G0Zl0cz5H0XWwxLDjdrR3PH7JSgY=)
2: eBTbPsjV8Iac9Fj-9vOQH-ERQ2w.roa (hash: iez1H7XNs3tkU5sUoydCWQiAyCLsYR+kgbtLIrffu48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aA4gzPstWJjCFikA0UaAcKcCSVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:bf:6f:a6:0d:6c:0b:a9:7d:5b:9d:9f:90:f5:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=680e20ccfb2d5898c2162900d1468070a7024956
Validity
Not Before: Apr 27 07:01:09 2025 GMT
Not After : Apr 28 07:01:09 2025 GMT
Subject: CN=b0d48916f277670b3ddb77bfe8cbe602796359f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:dc:72:0e:ce:75:27:81:90:70:30:0d:54:bd:
36:b2:ab:4c:54:aa:31:f4:07:30:bf:a1:ba:2c:5a:
a8:d7:31:00:59:fc:4c:7e:50:39:10:b5:57:86:53:
f7:ba:ef:89:8f:6f:f0:1b:c3:95:25:af:72:3e:ee:
cf:14:2e:ec:fb:2f:bd:87:3e:8e:ff:65:01:f1:7b:
23:e6:0a:cb:33:be:00:32:ba:0c:b3:1b:bf:43:55:
1f:da:9e:95:15:46:eb:4b:fc:f7:38:8e:d6:df:ce:
e6:02:64:23:45:68:58:2c:d7:77:93:7b:22:bb:6f:
76:e0:a3:b4:10:be:dc:fb:26:01:02:b0:29:83:86:
ca:01:dd:d1:54:c9:e2:bf:7f:fd:98:46:5f:94:bb:
5f:cd:82:0b:29:be:cd:74:7c:56:36:ea:fd:3a:bd:
35:86:65:f4:ba:ee:96:f6:d5:c5:12:f1:55:c6:e7:
38:8f:65:07:3f:11:86:3a:c1:9c:7e:d8:f9:ec:ae:
1d:0f:93:b8:6f:38:2e:a4:20:58:94:86:ff:9b:66:
a9:dd:3e:b5:d0:9e:bc:67:26:7a:d9:08:90:82:71:
77:d0:df:db:fd:68:b6:e2:63:6f:71:c7:0b:06:bb:
9a:72:cf:bb:73:4e:43:09:41:98:3b:2b:c6:35:91:
0c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D4:89:16:F2:77:67:0B:3D:DB:77:BF:E8:CB:E6:02:79:63:59:F3
X509v3 Authority Key Identifier:
keyid:68:0E:20:CC:FB:2D:58:98:C2:16:29:00:D1:46:80:70:A7:02:49:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aA4gzPstWJjCFikA0UaAcKcCSVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/796f8c-bdb7-441f-bdbb-03541d231574/1/aA4gzPstWJjCFikA0UaAcKcCSVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:01:08:3c:40:ff:39:f3:0e:ff:ea:eb:5b:8d:6c:2b:bb:b9:
90:9b:ef:98:91:92:ce:6e:4d:46:21:56:95:94:5f:e3:a5:db:
b7:67:f1:f3:4c:62:6f:a9:81:a4:8c:c1:f9:65:a6:70:26:a3:
51:74:3c:37:46:d9:91:df:90:18:5d:5d:b9:e4:1d:09:9f:51:
76:f5:66:b5:d8:51:8a:10:17:9f:7f:98:4d:77:77:20:75:f2:
7f:b6:5e:18:35:cd:c6:cb:36:eb:93:09:ee:c1:74:95:1d:42:
c4:34:61:34:cd:b2:03:c9:26:b5:b7:de:a7:5c:f9:79:b5:62:
cc:e7:a9:07:41:f2:30:59:c3:85:52:0f:25:64:ac:39:97:17:
40:14:c3:01:63:15:c6:93:97:be:d8:9b:bb:d7:4e:0c:53:52:
7f:63:fb:d0:38:a8:9c:aa:84:9d:e8:0c:16:9d:69:e7:0a:63:
dc:e7:0e:c3:1d:6b:0c:d6:dd:ee:a3:81:72:62:11:13:f2:7c:
18:e0:d1:d6:37:48:ee:01:cb:5f:19:af:1e:18:fc:31:e3:87:
d6:53:8e:89:07:0b:fb:f6:c6:b3:17:4d:00:fd:a9:2d:70:c1:
23:a8:83:3a:15:17:da:d4:10:86:f8:b1:88:0a:ca:6c:bf:07:
96:54:21:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:55:49 2025 by rpki-client