Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
File: aKfCyE_6STTPD3PvGhoaM3hzGCY.mft (raw, json)
Hash identifier: SKBYkEByqr3Eqyk6BO15+GZZypNNzlwXa/UJu6sbJ1M=
Subject key identifier: 4B:88:3D:4C:42:EE:3A:84:AD:52:96:C3:F0:B1:03:BD:20:A1:09:58
Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Certificate serial: 019675304DC072C5BDD0BBD455D73340F5B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
Manifest number: 0BF4
Signing time: Sun 27 Apr 2025 03:00:22 +0000
Manifest this update: Sun 27 Apr 2025 03:00:22 +0000
Manifest next update: Mon 28 Apr 2025 03:00:22 +0000
Files and hashes: 1: KnUOYk5bdwDOyPRpWUFQ6FTo7gs.roa (hash: oV64n7K/Nu3TxpzkL+waUqCMMUTsVFeqTi3s1yY0Zn0=)
2: aKfCyE_6STTPD3PvGhoaM3hzGCY.crl (hash: FZYgZJHrM9/BN+K5HK6PSOSnZTlsH8q7tX0pk7BchCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:30:4d:c0:72:c5:bd:d0:bb:d4:55:d7:33:40:f5:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Validity
Not Before: Apr 27 03:00:22 2025 GMT
Not After : Apr 28 03:00:22 2025 GMT
Subject: CN=4b883d4c42ee3a84ad5296c3f0b103bd20a10958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9d:8d:5f:4a:e1:a0:42:74:69:62:b8:56:a4:
ce:7c:d5:74:43:47:c5:18:ad:03:75:57:e0:c9:cc:
5f:50:8b:17:b0:27:3d:1e:79:5a:fa:0d:bf:79:63:
81:eb:38:82:fc:09:bd:f8:6f:2e:38:eb:5f:37:62:
2b:7e:0f:3a:bf:a0:86:32:b6:95:10:be:1f:1d:b4:
94:2a:66:a2:4f:0c:59:81:8f:81:b6:fd:12:5c:85:
88:6f:42:8e:30:96:db:0c:6b:d3:1e:27:27:55:05:
8d:85:18:81:37:20:3b:3f:86:84:c8:47:44:cf:d2:
1f:40:45:ef:a5:6f:fd:70:2a:36:89:88:ac:b2:21:
13:34:cc:26:c2:57:cc:82:92:5e:69:4d:e8:e2:b9:
08:56:f4:cf:7b:cc:07:10:a0:e6:1e:a2:d4:61:7e:
6a:e0:98:ff:39:13:20:99:e4:3f:13:9f:fc:7c:dc:
90:81:53:2a:2c:b8:f2:0d:e0:d8:75:f0:54:34:ec:
c8:70:b3:4b:e6:90:e0:d5:2a:8d:71:0b:9e:be:3f:
26:ea:ec:00:f9:b0:cd:63:59:ce:2d:11:12:86:94:
2f:ff:be:64:0e:03:00:d1:d0:81:f4:8b:af:f7:06:
ad:47:a3:17:19:c5:2a:83:e3:bc:27:ba:aa:73:ca:
08:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:88:3D:4C:42:EE:3A:84:AD:52:96:C3:F0:B1:03:BD:20:A1:09:58
X509v3 Authority Key Identifier:
keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:34:14:86:2a:5d:d6:25:88:28:5a:11:45:6e:44:eb:cc:18:
63:5f:e8:27:ca:29:b8:ef:fc:c4:94:05:da:14:9d:f7:ce:e4:
15:ba:9b:00:f1:7d:6f:d7:c3:bb:9c:ac:3d:bb:1b:af:cd:9f:
23:72:09:a2:16:ae:1a:1f:35:32:6d:15:1e:af:9b:2b:6a:40:
79:d8:35:ad:49:51:9d:64:f6:41:bf:fc:40:94:85:e6:fd:0e:
c3:e6:21:cc:28:82:2e:1a:5a:d3:5a:2d:3c:fe:c7:c5:85:b6:
fa:e8:1b:e5:be:9d:40:3e:cb:53:46:3d:b3:06:91:2a:72:b2:
7a:11:0c:c1:03:fc:e8:00:2a:21:65:8d:c9:77:15:b1:92:8b:
4a:ee:3f:ac:a3:0d:ae:05:ad:33:4d:2f:ae:31:7a:ec:09:3b:
29:08:22:fd:bb:81:cd:27:d3:95:61:3b:79:c9:fb:50:ff:2a:
3e:2f:f6:51:9e:a7:1f:cb:91:df:7d:e3:58:61:07:e2:27:2b:
a8:a0:d4:6e:11:c8:3d:f7:7d:24:d2:77:ad:34:66:cd:74:8a:
ad:b3:29:73:d2:05:39:1c:0c:54:10:dc:3f:e9:46:3f:74:9f:
d3:47:71:a4:18:44:d1:01:00:92:15:4f:67:85:fa:78:ad:7c:
54:8f:ea:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 08:12:52 2025 by rpki-client