Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
File: aaUdRFt2erm2YncC5KKzkE0gP3c.mft (raw, json)
Hash identifier: hH6+OHsm/9NXoQkwRlMie3kTjT8EysQ/wmxyqcpyySs=
Subject key identifier: B4:45:4B:06:87:04:89:63:AA:1B:97:25:AE:C0:FA:61:49:A7:9A:8F
Authority key identifier: 69:A5:1D:44:5B:76:7A:B9:B6:62:77:02:E4:A2:B3:90:4D:20:3F:77
Certificate issuer: /CN=69a51d445b767ab9b6627702e4a2b3904d203f77
Certificate serial: 01967C0E2ABE8DA4D9FF161BD361C0DB0027
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaUdRFt2erm2YncC5KKzkE0gP3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
Manifest number: 14A4
Signing time: Mon 28 Apr 2025 11:00:25 +0000
Manifest this update: Mon 28 Apr 2025 11:00:25 +0000
Manifest next update: Tue 29 Apr 2025 11:00:25 +0000
Files and hashes: 1: aaUdRFt2erm2YncC5KKzkE0gP3c.crl (hash: X4/5cfRQJOrMpxXhhqzwwfe0JNb4eVwVekBeiqhrjqg=)
2: gvJBtDmrBY4y1m9tVe-S6ndjy20.roa (hash: e9qz/rQIxQf43DTjLpdblCilaun5V9rCKHAnrG6oKJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaUdRFt2erm2YncC5KKzkE0gP3c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:0e:2a:be:8d:a4:d9:ff:16:1b:d3:61:c0:db:00:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a51d445b767ab9b6627702e4a2b3904d203f77
Validity
Not Before: Apr 28 11:00:25 2025 GMT
Not After : Apr 29 11:00:25 2025 GMT
Subject: CN=b4454b0687048963aa1b9725aec0fa6149a79a8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e0:4f:07:a0:b1:8d:d1:59:5c:f8:81:bd:ca:
93:b5:2b:d8:65:a2:5c:f6:57:38:99:45:18:70:15:
6d:55:b3:76:bb:eb:28:8e:c3:7d:cb:df:5e:8f:8e:
48:41:05:6b:42:52:17:0a:ec:32:f7:39:96:5c:4d:
6f:fb:ec:4d:d4:a2:46:48:78:26:1a:f6:87:02:00:
80:bc:99:78:27:7b:53:eb:d8:f1:e3:8f:1c:63:f4:
5b:91:83:5a:0e:31:86:8e:92:19:8f:e1:31:99:ee:
f2:ae:4f:d6:ec:2c:29:c3:04:6a:e1:5f:07:39:16:
d1:ae:5e:87:06:c8:f0:22:5b:ff:7e:85:43:4a:f4:
f4:5b:02:10:10:7a:95:d7:92:4b:78:7a:24:a2:b4:
75:0b:3a:27:c7:75:e1:0d:c4:28:8c:01:d5:e9:19:
34:53:b5:cf:07:d7:bd:8d:4e:5d:58:bd:3a:aa:32:
8a:09:24:0c:71:15:76:02:f2:e3:bf:d4:c0:03:d5:
f2:1f:33:9b:55:3e:89:79:3d:3a:11:89:5e:31:c6:
26:f2:a3:41:78:60:48:c6:71:64:e3:94:68:b0:ac:
b8:ab:05:71:57:cd:2e:54:9c:68:d7:80:99:96:e9:
6a:81:91:92:0f:b5:4c:31:e1:44:4b:41:10:b1:2d:
8e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:45:4B:06:87:04:89:63:AA:1B:97:25:AE:C0:FA:61:49:A7:9A:8F
X509v3 Authority Key Identifier:
keyid:69:A5:1D:44:5B:76:7A:B9:B6:62:77:02:E4:A2:B3:90:4D:20:3F:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaUdRFt2erm2YncC5KKzkE0gP3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/2ba66e-5b3e-41fe-8a09-70520ea76369/1/aaUdRFt2erm2YncC5KKzkE0gP3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:f8:6b:06:e9:0f:40:ca:6f:cf:1d:cd:0b:df:7a:63:42:65:
ff:3d:b5:1f:56:ce:96:7d:05:01:ef:15:41:88:13:45:80:4a:
40:68:f6:7e:cb:50:03:7b:c9:5d:2d:b5:1f:58:dd:cf:fd:38:
b2:c2:f4:5e:19:9c:34:44:14:3e:8f:08:22:c0:3c:df:ea:b6:
58:82:6f:77:ac:8d:ee:67:d5:e0:7d:9b:d5:29:71:ac:22:95:
75:04:9b:86:17:a5:05:a9:74:66:79:25:8c:89:64:e0:55:12:
5a:32:d8:66:42:d5:e0:a6:b5:9b:e6:a2:a3:95:6c:e2:bb:a8:
50:17:d7:d3:92:0a:59:b1:dd:fe:29:62:01:9b:e5:b5:0a:61:
00:73:eb:33:be:df:2b:5c:b2:3c:ee:79:ca:82:2f:f4:8e:a2:
fd:eb:0d:22:34:1f:31:1c:92:2c:9b:c7:1b:b1:ee:f6:78:71:
ac:82:e9:c5:c3:2d:b9:e6:6f:2f:a8:a8:fd:bb:5a:11:a2:a2:
9d:b5:af:b9:6d:19:d6:37:a4:f7:ed:9b:5e:78:54:1a:69:c3:
f2:5a:67:39:0e:4a:40:1a:a9:59:86:ce:d3:6d:5f:0a:1a:b7:
02:12:7c:03:ab:17:19:51:39:61:02:9a:62:bf:b1:7b:5f:41:
99:e6:47:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 15:27:17 2025 by rpki-client