Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
File: a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft (raw, json)
Hash identifier: vPycX18QdLAVgTntfWfWYxFX1KbRvgd/+AFDNID90e4=
Subject key identifier: 3E:89:20:2A:7A:E3:0A:42:16:EA:CF:2D:E0:33:D1:B8:AA:12:55:1E
Authority key identifier: 6B:57:C5:DF:F7:0E:BF:E6:7A:40:0D:55:F2:59:DB:2C:37:19:21:96
Certificate issuer: /CN=6b57c5dff70ebfe67a400d55f259db2c37192196
Certificate serial: 019675D52C0B653B71D20AC348362DC5ED2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
Manifest number: 02CF
Signing time: Sun 27 Apr 2025 06:00:26 +0000
Manifest this update: Sun 27 Apr 2025 06:00:26 +0000
Manifest next update: Mon 28 Apr 2025 06:00:26 +0000
Files and hashes: 1: DXY1aPZOR4ljjfKNnTzK-ui2GtQ.roa (hash: HmRJXl6KdbWQ5yFSi3ORZiwzeQcQdEBbSpqG5+7FJoc=)
2: a1fF3_cOv-Z6QA1V8lnbLDcZIZY.crl (hash: DyB+jtngX1xyUL6bkZG5kcOkZpaJUhtQQYnPfXQVfQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:2c:0b:65:3b:71:d2:0a:c3:48:36:2d:c5:ed:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b57c5dff70ebfe67a400d55f259db2c37192196
Validity
Not Before: Apr 27 06:00:26 2025 GMT
Not After : Apr 28 06:00:26 2025 GMT
Subject: CN=3e89202a7ae30a4216eacf2de033d1b8aa12551e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3c:c6:fa:6c:cf:58:27:b0:d3:9a:ee:16:a1:
69:35:2a:3a:8c:a7:35:bf:5b:c9:0f:60:78:8a:f8:
db:e9:13:40:cf:30:a8:1a:c4:7e:95:dd:e1:69:06:
4f:e8:15:14:bb:d9:dd:2f:62:d8:3e:22:ae:96:4f:
e7:fc:5b:d7:2b:f4:fb:ff:25:ab:9e:f8:c9:7b:cd:
1a:d4:30:9f:86:74:24:08:7b:74:01:1d:68:34:50:
63:d7:62:b9:b3:3f:d1:58:7b:2d:ec:c4:cb:06:88:
52:7b:22:2e:e5:15:08:02:43:0a:8c:29:99:75:f6:
43:22:f3:91:2c:f3:c7:45:cc:1b:b2:2b:68:f1:f5:
de:3a:07:bc:dc:8a:64:9c:99:60:e5:e9:37:7f:61:
b1:76:e1:6c:31:80:76:45:26:eb:e9:8b:cf:4f:be:
0b:f8:47:24:c0:da:51:ef:84:2c:0f:5e:74:b7:e8:
bd:79:22:7b:91:69:ec:61:e1:df:16:b3:ea:5a:fd:
7d:65:55:d0:1e:3d:c1:14:e3:46:b4:01:c2:bb:fe:
76:84:bc:50:a7:75:6f:48:ac:ea:a0:75:97:f4:9b:
f9:68:b8:ae:c8:05:c4:b1:c2:c1:ea:6d:80:01:2e:
0b:bc:b9:a4:49:fb:b8:66:33:20:2b:a3:4e:ec:0d:
3d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:89:20:2A:7A:E3:0A:42:16:EA:CF:2D:E0:33:D1:B8:AA:12:55:1E
X509v3 Authority Key Identifier:
keyid:6B:57:C5:DF:F7:0E:BF:E6:7A:40:0D:55:F2:59:DB:2C:37:19:21:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6ae58c-7618-41ba-a343-c46d7bac02fc/1/a1fF3_cOv-Z6QA1V8lnbLDcZIZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:d1:5d:88:14:73:e1:e7:44:db:88:d2:f6:f6:92:09:f0:98:
24:43:4b:c9:ca:51:ce:fd:a7:22:77:7e:70:7a:58:56:5b:df:
cd:f8:a1:34:e9:4f:df:ec:4f:38:7e:d1:dd:65:7d:c6:77:c8:
ce:de:43:ca:30:8f:02:3e:a7:16:15:fa:75:22:75:b1:7d:27:
3d:c2:0a:03:23:22:1a:8b:be:ff:0a:e6:49:ca:1a:70:b1:5a:
c0:98:52:7d:75:d9:19:07:1b:cc:d1:cf:75:06:2f:c0:2e:00:
e8:b0:1a:82:f2:fe:63:97:57:fc:c8:00:55:4c:69:22:84:70:
b8:17:62:83:ec:f6:7a:28:78:7a:be:a7:c2:66:70:a9:27:d3:
e2:0b:bd:7d:11:a9:6c:7e:e9:d2:70:12:fb:99:24:f2:c1:67:
71:0f:26:ff:aa:07:92:f3:c3:ee:db:9f:91:c2:72:35:c5:61:
51:10:bf:9c:84:e8:38:06:ed:c9:68:f8:b5:b2:bb:af:ef:e5:
4c:32:f8:d6:39:e0:c4:0a:32:56:0b:d3:8a:5e:3b:94:ab:df:
ff:c6:d9:22:23:97:68:cf:b0:33:a9:56:e5:fd:ba:e1:c8:e2:
99:08:34:1c:36:de:e5:a9:f9:52:37:ee:a8:b9:83:22:be:1e:
5e:6b:d6:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:55:12 2025 by rpki-client