Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json)
Hash identifier: TAyrriPb3me6Gnuvonmv2DFTIqgsqu8re8n0LoYEPJg=
Subject key identifier: B2:5A:3B:95:E2:70:47:A8:92:BE:23:4C:A4:7E:B5:E1:59:45:21:FB
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 01967755965AB89AD69077B49EDECC32D8D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
Manifest number: 1510
Signing time: Sun 27 Apr 2025 13:00:19 +0000
Manifest this update: Sun 27 Apr 2025 13:00:19 +0000
Manifest next update: Mon 28 Apr 2025 13:00:19 +0000
Files and hashes: 1: Q01X85MGyHMF5rr2gbqyxSbVGJU.roa (hash: 3pLndBzBIS9IcjtzdUX4XacaMZCMolKRG+4KwxWHWEU=)
2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: m6VNAwEbhgRX9+xxVmXeuFwcYYSgu22Deo/gvG7I2zs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:55:96:5a:b8:9a:d6:90:77:b4:9e:de:cc:32:d8:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: Apr 27 13:00:19 2025 GMT
Not After : Apr 28 13:00:19 2025 GMT
Subject: CN=b25a3b95e27047a892be234ca47eb5e1594521fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:df:11:51:39:08:f2:b5:18:ac:1e:ee:d8:48:
8e:e4:0b:fd:83:c9:e2:03:2c:20:73:03:93:64:19:
4a:40:21:57:d1:09:20:e3:a1:43:ea:c2:11:55:b8:
ea:b7:c3:ad:e5:80:3a:55:69:12:84:40:15:f8:10:
97:d3:e5:62:ac:7e:55:30:d3:d7:30:d7:54:5e:db:
d2:24:32:29:ed:dc:eb:ec:49:e5:b9:11:cb:dc:8d:
c6:79:cf:06:bd:8e:80:c7:59:60:7f:92:7b:94:6d:
82:ef:d5:f9:38:04:17:ac:b1:63:6d:39:18:83:a1:
90:4a:19:64:ad:1a:46:31:0b:5d:46:76:0f:c1:8a:
ee:64:13:d8:c1:99:b7:f1:53:4f:62:b7:4e:dd:6e:
e2:aa:e5:bf:02:e2:43:62:8c:c2:16:80:33:86:21:
08:2d:f1:eb:5f:d0:46:fe:fe:75:f6:f1:0f:5c:97:
d1:f5:29:b5:bb:da:44:1a:9b:61:4e:32:30:3b:32:
35:c0:8f:40:7a:67:04:b3:9f:09:64:81:21:14:bb:
1a:f2:7a:af:a4:58:b4:8c:8c:28:7c:dc:37:e2:67:
80:14:06:ed:ff:ff:f7:aa:14:44:f4:5a:f7:ed:d8:
2c:fd:34:79:6d:20:75:f3:a6:7a:f5:5a:58:37:e7:
59:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:5A:3B:95:E2:70:47:A8:92:BE:23:4C:A4:7E:B5:E1:59:45:21:FB
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:00:e8:d2:86:86:a7:f3:24:89:fb:c7:32:2d:ad:ea:d2:6d:
fe:a3:43:06:78:0f:a5:43:1b:f7:70:24:7f:3c:7d:18:42:1b:
5f:b7:3c:18:b6:ce:c6:c5:3c:4e:a6:09:c3:4c:23:4b:f7:5d:
7e:5a:71:dd:68:55:95:29:cd:57:44:4f:1b:7a:49:3a:a2:41:
6c:6b:cc:1b:69:a1:91:d4:36:0e:5e:e7:4b:ec:c7:27:30:42:
43:82:df:e3:71:d7:03:8e:02:39:17:64:8a:15:07:9c:62:29:
ab:ab:86:91:c8:6d:48:57:91:80:cf:25:d1:03:dc:f6:6f:33:
16:67:d6:7b:68:76:0a:d9:3f:cd:0d:7d:c4:01:0b:79:fa:6d:
1c:ac:af:fd:f7:f0:09:83:d7:64:34:54:b2:a3:04:79:ad:33:
d1:b4:02:14:e0:d5:f3:64:96:cd:1f:bd:9d:2e:17:1e:5b:28:
6c:ff:03:51:e1:fb:50:69:cf:e9:04:5f:a5:eb:b5:28:e0:98:
3d:da:ab:37:df:17:47:b7:39:6b:6c:36:d5:54:f2:a7:4c:e6:
c5:b9:a9:5a:26:66:8b:2b:29:44:00:2e:65:55:6a:33:41:e9:
61:68:bb:54:69:19:e4:60:f4:f1:75:2f:f7:19:e9:f3:42:e2:
db:5b:7d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:14:45 2025 by rpki-client