Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
File: aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft (raw, json)
Hash identifier: 7jbVU0+Cto3ktNdO2wAyqlfYAhYhoBBdg4VV0zDXZ3o=
Subject key identifier: 41:04:ED:83:AC:64:16:24:C9:47:6B:1C:62:13:15:94:3C:B0:7C:4E
Authority key identifier: 68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
Certificate issuer: /CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Certificate serial: 01967FEB1E96DB2AFD91797ABE2ABD632962
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
Manifest number: 1412
Signing time: Tue 29 Apr 2025 05:00:37 +0000
Manifest this update: Tue 29 Apr 2025 05:00:37 +0000
Manifest next update: Wed 30 Apr 2025 05:00:37 +0000
Files and hashes: 1: aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl (hash: yGhySq8S5BtaSM82TRVAOmdCtGWdelLfbayaPX66Mmg=)
2: cMnqdtCxCnyUSWOfUxTVBWPspak.roa (hash: OOJ4v4cc4LujDvo5fdL7b0ZauPjg9CekPa/sj+wo+LE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:eb:1e:96:db:2a:fd:91:79:7a:be:2a:bd:63:29:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f063ed2e0a2674bc471010189fc77adb31c17f
Validity
Not Before: Apr 29 05:00:37 2025 GMT
Not After : Apr 30 05:00:37 2025 GMT
Subject: CN=4104ed83ac641624c9476b1c621315943cb07c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d4:8d:d8:ba:9a:6a:7e:fa:de:81:78:34:dc:
ac:0a:95:0e:40:25:f9:3c:7c:4e:86:d4:32:2a:73:
38:91:d0:62:87:06:1e:d1:2a:38:43:7f:a2:94:4d:
9a:b5:93:7a:af:74:e3:d2:20:9a:52:dd:d1:3f:75:
77:4a:c2:44:b2:58:2d:86:b6:54:77:90:4e:e4:81:
0e:12:82:f6:d7:1e:3a:9b:8a:cc:37:e5:3a:fa:d7:
ec:21:8e:40:9f:0b:f3:98:1d:8d:54:bb:a9:41:0c:
b0:7d:f9:67:ce:95:ce:93:33:10:be:6f:2e:d0:c1:
d6:d6:50:0f:68:3b:95:54:60:72:f6:69:72:ed:4c:
1d:ba:9c:7a:17:a8:db:06:13:b1:a8:98:bf:a9:5f:
97:8d:d9:12:af:4c:68:a9:88:44:9b:88:db:a3:de:
95:68:80:2a:e4:48:67:aa:52:c5:e8:5f:4f:de:b2:
44:f2:04:5c:b2:60:2d:9b:56:68:82:d0:3e:5f:89:
4e:7d:5f:4a:6c:60:2d:7c:bd:8d:7f:81:1d:50:a3:
be:6f:f0:68:96:10:23:8d:e0:29:c1:9b:76:80:aa:
d3:9b:32:cd:11:34:89:ac:7d:fe:b2:31:f3:0c:cd:
00:ef:0a:ad:c8:07:b2:28:a1:59:92:68:ce:88:ea:
5d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:04:ED:83:AC:64:16:24:C9:47:6B:1C:62:13:15:94:3C:B0:7C:4E
X509v3 Authority Key Identifier:
keyid:68:F0:63:ED:2E:0A:26:74:BC:47:10:10:18:9F:C7:7A:DB:31:C1:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPBj7S4KJnS8RxAQGJ_HetsxwX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/61b73b-f265-43d4-b5b3-946fdafe2ec6/1/aPBj7S4KJnS8RxAQGJ_HetsxwX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:68:45:70:59:4e:2b:fe:58:e3:19:8f:64:86:85:cf:20:1f:
05:29:a9:15:1d:44:eb:4a:31:ec:b1:f2:f6:26:f0:e3:d3:92:
69:c2:35:21:c5:b8:87:40:e4:42:59:1f:22:6d:94:5b:ad:06:
9b:f4:f5:97:93:8b:18:0f:92:4b:51:6f:64:70:01:de:37:dc:
2a:74:89:95:19:ff:f8:a0:3e:6f:d3:33:d9:58:b8:ae:47:74:
82:ce:94:74:8a:79:4d:0b:33:b9:e7:b9:65:d6:54:f0:4f:3f:
9d:f4:2a:bc:55:c8:79:2e:7e:8e:cd:18:12:f2:80:2c:aa:55:
e7:c8:23:7d:e2:18:ef:96:8b:ff:60:d6:ef:5a:0a:33:ff:0e:
b6:14:35:79:c6:88:1a:bd:45:54:fb:2a:da:7d:21:bf:9b:3f:
cf:16:c6:cc:47:ce:6c:e2:62:6f:65:63:5c:1e:3c:63:fe:f3:
61:82:69:59:dc:3c:b1:2e:b5:f0:fc:74:b1:26:f3:32:53:6c:
bd:6c:7a:c6:eb:b3:81:c1:92:ae:f1:63:6d:11:d4:a4:55:1a:
99:ea:ab:48:5f:43:1a:ad:ef:4c:87:a7:38:54:fa:d5:08:23:
da:f2:1c:4a:51:05:c1:23:7f:22:bd:0d:f4:5f:5f:e4:28:68:
2d:45:44:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 08:38:32 2025 by rpki-client