Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
File: Ay1SsyOaHOPN00MxNIzngN3xZMA.mft (raw, json)
Hash identifier: i04tqwcikQsQWCChIOKlG6sr5R1aKfwjlgQeVsFhKJk=
Subject key identifier: 98:5F:00:A0:32:D2:C8:27:0E:33:6A:4E:AB:81:C1:BD:D5:21:B1:87
Authority key identifier: 03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
Certificate issuer: /CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Certificate serial: 01969ABE2ED29D43371CC54918FE84D957AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
Manifest number: 05D3
Signing time: Sun 04 May 2025 10:01:17 +0000
Manifest this update: Sun 04 May 2025 10:01:17 +0000
Manifest next update: Mon 05 May 2025 10:01:17 +0000
Files and hashes: 1: Ay1SsyOaHOPN00MxNIzngN3xZMA.crl (hash: iMsYcfQk5vZ4/rk9XaJHyDec9XxhUuZXRrdPiUW5sUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 10:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9a:be:2e:d2:9d:43:37:1c:c5:49:18:fe:84:d9:57:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Validity
Not Before: May 4 10:01:17 2025 GMT
Not After : May 5 10:01:17 2025 GMT
Subject: CN=985f00a032d2c8270e336a4eab81c1bdd521b187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a7:97:6a:b7:88:5e:5c:9c:30:1c:5d:3d:f8:
c0:37:e6:86:7f:3a:76:0d:6d:28:e1:a4:4d:3b:73:
0a:12:d8:6e:84:36:d0:36:45:36:2a:fb:b8:e2:73:
6a:0a:5a:ad:02:4f:b3:c5:91:06:ac:76:c8:e1:f3:
4e:4d:0b:c1:bf:b9:94:37:e2:21:5f:3b:1b:31:6c:
e5:33:36:6e:1c:6c:2b:23:78:33:99:53:0b:d8:38:
2a:15:0f:99:53:a6:e5:bf:78:79:18:cd:fb:ca:f7:
e3:81:b5:9c:03:5e:07:76:fe:a0:d9:66:8b:39:db:
64:ac:d1:dc:71:71:42:12:24:da:41:20:7d:69:ea:
b7:b4:0f:3d:0c:20:37:69:d0:29:8a:67:51:d1:ae:
6b:ff:00:89:26:48:fe:32:69:3b:cb:98:25:6c:01:
62:ca:07:60:e8:75:64:d8:9b:2a:21:55:51:a1:92:
da:98:d2:a4:f0:82:a5:ff:5c:cf:f0:ee:8e:0f:33:
55:14:d4:91:54:2c:3b:4a:aa:ea:be:1b:5c:3c:77:
a2:44:51:12:03:25:62:8e:cc:52:84:d0:9f:6e:f9:
5e:f0:af:2a:8c:16:a1:fb:9f:8f:18:c1:35:57:6d:
05:39:e0:2d:62:18:55:69:5a:90:1c:a8:2a:a9:0b:
91:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5F:00:A0:32:D2:C8:27:0E:33:6A:4E:AB:81:C1:BD:D5:21:B1:87
X509v3 Authority Key Identifier:
keyid:03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:9a:2b:e3:29:e9:17:e7:ea:fb:80:20:5f:3d:9e:93:b4:cf:
de:4e:5e:26:b6:ce:da:2c:f4:4d:4a:5b:5f:0d:c0:46:07:91:
54:39:b8:ad:f8:b8:91:0b:1d:a8:e8:bb:ac:17:25:14:20:96:
b1:19:90:9b:2a:7b:e6:86:20:e0:8c:32:ea:7b:bd:4a:89:f4:
c6:72:0d:9a:22:0f:5c:15:26:89:fd:4e:93:4b:13:23:e9:99:
fb:b7:e6:c1:d0:7c:6c:ec:e4:38:43:c5:08:13:4a:e2:7a:bc:
81:be:c1:15:f5:ec:07:9f:44:16:c8:55:07:41:d0:2a:56:bb:
5f:53:19:02:ad:5c:3a:b8:ee:94:58:72:96:d1:a9:4a:ad:b0:
c4:a1:02:18:50:49:ff:e3:10:e6:3b:39:9f:36:df:04:c4:fa:
c9:79:65:ba:9e:b2:d2:9e:54:df:b9:e8:c9:fe:0c:6e:f4:29:
16:dd:3a:51:77:06:fe:c3:25:0a:08:a6:4a:fb:5c:1b:be:7b:
8d:ae:ef:41:dd:03:2d:0a:b8:07:63:02:f3:14:f1:1a:fa:91:
a5:61:9a:9f:6f:b4:c6:58:df:27:36:6c:7d:dc:bd:31:64:0f:
d2:c1:f4:78:5b:7c:30:bd:cc:63:00:b5:cd:89:71:37:aa:fa:
5a:d9:5a:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 20:21:20 2025 by rpki-client