Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
File: aqNKS6w794E80qZrT0W5x4bdNUI.mft (raw, json)
Hash identifier: UZWYXjpnya634JClxsTdyFnPmw5szVQp7cOtpAk0vTY=
Subject key identifier: 60:B0:42:8F:FE:21:0C:41:58:70:33:60:88:A8:24:88:69:05:3A:17
Authority key identifier: 6A:A3:4A:4B:AC:3B:F7:81:3C:D2:A6:6B:4F:45:B9:C7:86:DD:35:42
Certificate issuer: /CN=6aa34a4bac3bf7813cd2a66b4f45b9c786dd3542
Certificate serial: 019688127B4FE320D55EE1449367A663DE42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aqNKS6w794E80qZrT0W5x4bdNUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
Manifest number: 0767
Signing time: Wed 30 Apr 2025 19:00:34 +0000
Manifest this update: Wed 30 Apr 2025 19:00:34 +0000
Manifest next update: Thu 01 May 2025 19:00:34 +0000
Files and hashes: 1: aqNKS6w794E80qZrT0W5x4bdNUI.crl (hash: D6yW/VuaSN7UclNcfbq7JElqS9uywMdc1KoYh0w/cYY=)
2: b9B102wOebSEH0EiAU4o7haSTNE.roa (hash: w8TiYlYrrX0BopJEemJvanYXKIEW88KrCZAniAUGX7I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aqNKS6w794E80qZrT0W5x4bdNUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 19:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:12:7b:4f:e3:20:d5:5e:e1:44:93:67:a6:63:de:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aa34a4bac3bf7813cd2a66b4f45b9c786dd3542
Validity
Not Before: Apr 30 19:00:34 2025 GMT
Not After : May 1 19:00:34 2025 GMT
Subject: CN=60b0428ffe210c415870336088a8248869053a17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:eb:e9:55:a2:10:4e:9b:37:70:10:03:3d:f0:
ae:7e:75:e2:8f:e8:9b:fa:29:fe:63:41:64:f5:79:
fd:b8:59:5d:40:17:a7:81:9f:d9:31:d2:76:a3:5e:
06:60:db:f1:00:20:ba:e9:78:94:59:b6:f2:36:8c:
b8:e4:b7:ba:cd:f5:63:31:5a:a2:a1:ff:79:36:3d:
40:76:fc:e7:e1:9a:f1:c2:d1:3e:00:19:42:4a:6b:
92:e4:aa:d8:f3:32:af:d3:ca:a6:af:92:69:1b:f8:
36:d5:49:f4:4a:59:c7:75:df:25:f3:00:52:dc:9b:
7f:c6:3c:63:52:df:4a:26:0c:55:2f:21:60:d5:50:
95:7b:69:40:fc:0a:4f:c8:0a:fa:77:8a:bd:2a:26:
41:99:a5:b4:35:3f:92:eb:66:a1:aa:ca:49:eb:f2:
7e:f4:84:49:24:71:5e:6e:7e:84:07:f8:b0:bb:0b:
a0:d9:01:e2:9a:60:0c:07:29:b6:b9:87:aa:ba:ce:
91:f2:83:3b:d8:b7:86:f4:ba:d8:d8:9d:3c:9c:48:
82:fe:4d:f9:ef:ce:77:1a:c1:94:c9:2e:12:8c:de:
8f:71:39:52:6f:71:51:25:a6:35:08:c0:e5:b1:8f:
be:95:5f:11:f2:df:f3:d6:a6:ea:27:eb:b1:48:00:
c8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B0:42:8F:FE:21:0C:41:58:70:33:60:88:A8:24:88:69:05:3A:17
X509v3 Authority Key Identifier:
keyid:6A:A3:4A:4B:AC:3B:F7:81:3C:D2:A6:6B:4F:45:B9:C7:86:DD:35:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aqNKS6w794E80qZrT0W5x4bdNUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:c9:55:be:71:45:d7:61:5a:e8:c0:eb:8b:d8:68:6b:69:4c:
c5:cb:71:98:8b:14:61:02:19:98:c0:42:92:38:f8:4d:c6:2c:
3a:da:f0:16:f9:33:91:1e:e7:77:74:a8:a5:be:03:7a:da:7e:
27:f6:3d:fc:81:59:27:cd:3a:e2:4d:1e:24:6a:dc:0f:55:13:
10:81:c6:ad:56:1e:81:40:8d:ad:fa:52:93:c6:52:f5:e0:82:
dc:08:13:5c:82:b2:17:96:b9:e4:91:f1:d5:bf:75:26:be:ae:
17:25:de:1f:6c:7c:c3:14:f1:de:25:a9:bf:47:67:cf:1c:c9:
7f:4f:4b:0b:32:d6:99:4e:1c:75:d6:81:45:b5:6d:7a:06:50:
69:e1:6d:b9:16:bf:50:10:cd:3e:3b:a7:07:f3:8f:22:33:3f:
9f:95:b2:6d:4f:c8:02:fc:19:0a:e2:2c:05:9a:0a:bf:d7:11:
05:02:b4:80:fb:0e:bb:28:18:ae:76:0c:5e:f5:fc:df:76:a5:
56:8e:7b:c6:af:fa:14:26:62:92:e3:9c:c0:79:b0:fc:36:c1:
e9:26:ce:77:cf:0c:6e:e0:a4:83:11:80:ce:ee:ea:43:78:7d:
72:97:c7:62:50:b1:5e:0f:d7:81:0c:64:66:88:12:a8:46:4d:
37:e9:1f:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 03:37:22 2025 by rpki-client