Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
File: 7qq8oRa05zqZRKuXAs-YZleANYA.mft (raw, json)
Hash identifier: c4yc0kvEzwxDiU3198pB66B2cWz7zn8z0aZ43gdygJs=
Subject key identifier: 3D:49:06:D4:1C:01:DD:20:1D:0A:0A:62:5C:2F:00:86:98:9D:30:AE
Authority key identifier: EE:AA:BC:A1:16:B4:E7:3A:99:44:AB:97:02:CF:98:66:57:80:35:80
Certificate issuer: /CN=eeaabca116b4e73a9944ab9702cf986657803580
Certificate serial: 019676E86F6FBDE523FC29733816B4BC7F24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
Manifest number: 0158
Signing time: Sun 27 Apr 2025 11:01:06 +0000
Manifest this update: Sun 27 Apr 2025 11:01:06 +0000
Manifest next update: Mon 28 Apr 2025 11:01:06 +0000
Files and hashes: 1: 7qq8oRa05zqZRKuXAs-YZleANYA.crl (hash: UaAGaq5ukyxIKXCJswWcrSNJVlQWYkD+Hkv9CZCkq2U=)
2: 87MujmzYjqiHmvGtUQfVum9xgYI.roa (hash: wh9UFynd+k4p6PBt8Z51e5f4u9WZiYuFkQCOx8EtepA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e8:6f:6f:bd:e5:23:fc:29:73:38:16:b4:bc:7f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eeaabca116b4e73a9944ab9702cf986657803580
Validity
Not Before: Apr 27 11:01:06 2025 GMT
Not After : Apr 28 11:01:06 2025 GMT
Subject: CN=3d4906d41c01dd201d0a0a625c2f0086989d30ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:37:a8:d0:73:20:ce:66:08:86:61:6d:fc:55:
6f:a4:d4:17:8c:e1:80:0d:a6:ba:57:36:17:9f:b4:
1e:2b:4d:0c:66:ac:08:ae:32:a8:42:36:b1:c0:1f:
1f:54:ce:f1:7e:ee:79:41:cf:75:d0:0e:be:ae:06:
4f:06:37:22:86:0b:33:0c:34:e6:f5:ae:d6:05:ad:
7b:46:ca:a2:f1:98:86:a6:a4:3f:24:b6:9f:cb:0a:
ed:40:bb:44:f5:b3:24:71:cd:08:59:a5:8a:14:1f:
e8:c5:6c:01:43:c1:f7:66:96:3e:23:4b:e6:86:70:
63:a5:83:0b:0c:cb:70:8e:ec:ed:7a:0a:ad:31:5a:
af:7d:44:f0:28:03:d8:66:03:9a:3a:fd:ef:54:52:
0c:1a:e3:a8:c7:8a:07:28:a1:33:bb:5a:7e:9a:23:
be:29:06:06:9b:d3:b5:82:88:23:3e:b7:c4:2f:a1:
66:9d:3b:17:db:a5:05:bc:d0:44:3d:23:6c:6b:56:
4b:d0:82:e6:bb:24:09:0e:21:12:14:1c:6d:a1:92:
62:fe:e1:d8:34:38:ac:f9:ba:9f:d7:4a:aa:9d:80:
3f:48:72:d7:c4:2e:02:32:05:1c:ce:c3:b5:9c:35:
8f:5a:1f:44:5c:fb:81:95:cc:68:65:d2:5a:06:43:
3c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:49:06:D4:1C:01:DD:20:1D:0A:0A:62:5C:2F:00:86:98:9D:30:AE
X509v3 Authority Key Identifier:
keyid:EE:AA:BC:A1:16:B4:E7:3A:99:44:AB:97:02:CF:98:66:57:80:35:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7qq8oRa05zqZRKuXAs-YZleANYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aebd48-a002-45f5-b307-db415a9bebf5/1/7qq8oRa05zqZRKuXAs-YZleANYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:78:e1:df:cc:8b:64:c0:26:33:1c:38:12:b1:4f:5f:b7:46:
e3:39:22:89:cf:36:37:af:6f:2b:2d:e6:bd:92:66:75:cd:4f:
f3:b1:2a:55:d2:ab:07:a0:64:2a:d5:3c:dc:ea:1c:7b:27:38:
9e:dd:72:80:ad:37:c6:dd:a3:be:a4:d5:2f:f2:ed:ba:d9:d1:
e2:35:ec:6f:d4:9f:13:cd:41:a3:55:31:09:e1:0b:7f:db:b7:
ee:0b:e2:c2:9c:00:d0:57:fb:d3:6a:dd:02:45:b7:ac:4f:35:
10:bc:15:f5:d7:ff:f8:d2:7f:b7:58:14:c5:e9:82:76:3c:22:
2c:01:31:96:41:a5:d2:b3:a1:81:a0:5b:4c:16:78:8d:1e:cd:
4c:19:b4:a9:34:5b:4c:04:90:0d:6c:65:68:62:d8:85:33:8a:
94:e8:e2:02:c7:20:20:19:3f:7d:ea:6f:7b:d9:04:44:92:48:
a1:cc:4b:e4:b5:ee:b7:dd:da:32:1a:ce:9f:f8:86:63:13:51:
cf:5c:3b:8a:f2:16:e3:e8:d1:6f:36:e8:ed:5f:21:75:c8:22:
7c:2d:9c:7e:a8:72:34:50:e5:67:41:13:21:b5:bf:1f:86:0f:
fa:97:36:4c:8c:14:b7:6e:a6:db:09:d1:8c:6a:45:af:7b:6b:
73:35:ee:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 15:22:14 2025 by rpki-client