Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
File: a1a9UK-T9GN-LAfi7EAya8ZABSc.mft (raw, json)
Hash identifier: RLaE14aIXZtmU9A7qOGGUr+735lly5IsZJni57xTMhE=
Subject key identifier: 1F:45:0B:6C:96:54:31:4E:50:59:27:D1:8D:52:83:BA:51:3A:4A:EE
Authority key identifier: 6B:56:BD:50:AF:93:F4:63:7E:2C:07:E2:EC:40:32:6B:C6:40:05:27
Certificate issuer: /CN=6b56bd50af93f4637e2c07e2ec40326bc6400527
Certificate serial: 019686C8FF24B449B89C4391EB3F511A5FC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
Manifest number: 0174
Signing time: Wed 30 Apr 2025 13:00:41 +0000
Manifest this update: Wed 30 Apr 2025 13:00:41 +0000
Manifest next update: Thu 01 May 2025 13:00:41 +0000
Files and hashes: 1: a1a9UK-T9GN-LAfi7EAya8ZABSc.crl (hash: p0TYh+sMyyJTxt7VpU36rJ0pP7jUCRNNQ08UGDyHSH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 13:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:c8:ff:24:b4:49:b8:9c:43:91:eb:3f:51:1a:5f:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b56bd50af93f4637e2c07e2ec40326bc6400527
Validity
Not Before: Apr 30 13:00:41 2025 GMT
Not After : May 1 13:00:41 2025 GMT
Subject: CN=1f450b6c9654314e505927d18d5283ba513a4aee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:64:84:35:e1:a3:c2:92:8f:86:be:d5:c3:dc:
bf:ef:c5:de:5d:ff:47:bc:4e:f6:4a:81:5f:dd:52:
4b:c1:69:ef:fc:34:b9:19:9b:a8:9b:8d:7c:3b:7e:
d6:4d:7c:45:2d:79:6d:07:d8:9b:9c:04:62:ae:32:
a1:80:ef:74:15:d7:45:7d:80:2f:f4:29:89:8d:26:
da:35:66:22:87:e7:ea:e3:23:93:f4:e3:14:c4:df:
0c:2d:0b:83:6d:0e:21:57:28:c8:a0:23:29:6f:7a:
9f:d5:35:53:75:c3:b0:aa:72:44:83:d6:db:01:6a:
80:69:02:00:ab:8a:a1:c6:9d:7c:d8:c5:03:c4:d9:
b6:a1:b2:61:c0:69:cc:36:ca:00:b0:21:d6:61:95:
32:ab:58:36:09:71:79:01:be:3b:de:74:6a:ff:f4:
80:98:2a:b3:f2:cd:cc:61:10:84:84:c4:10:f2:06:
2d:1b:f9:c9:5d:7f:83:02:88:11:68:ab:3b:79:44:
b6:09:cb:aa:8a:a2:91:a8:33:f7:2e:6d:1c:6d:6e:
2c:ee:74:2e:8e:47:e6:c8:1d:52:2d:58:e8:ab:5a:
ba:c8:8e:b3:a3:41:bc:33:75:f5:df:5f:39:09:8c:
db:9d:1f:a6:d6:88:e7:2d:4d:3b:ff:a7:42:4e:c3:
db:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:45:0B:6C:96:54:31:4E:50:59:27:D1:8D:52:83:BA:51:3A:4A:EE
X509v3 Authority Key Identifier:
keyid:6B:56:BD:50:AF:93:F4:63:7E:2C:07:E2:EC:40:32:6B:C6:40:05:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:c7:f9:12:d1:1d:b0:de:86:56:ad:60:19:b4:ef:10:fd:70:
9c:e8:35:b2:e2:22:85:34:65:46:e0:61:8e:77:9a:56:07:58:
77:ac:d9:b5:bb:9b:c2:fd:07:5c:97:ed:32:16:fa:f7:50:a4:
40:e0:54:23:dd:6d:ce:eb:5d:18:c5:69:c5:3f:8e:14:a1:c0:
9f:d9:f2:b1:6f:2a:f9:45:b1:48:9f:3b:02:af:d3:02:56:10:
7b:e1:e7:23:a0:fd:5d:96:73:bf:94:93:5c:d5:9b:8a:a8:31:
bd:b3:d3:f9:91:37:bb:6e:ff:34:f2:13:f1:1e:93:c9:ac:65:
75:2f:e9:76:b7:b1:28:54:c3:2e:75:e8:ef:f3:54:e8:44:a8:
44:9c:f7:50:1c:10:03:b2:80:70:22:52:8c:86:e1:85:bc:96:
b7:60:77:2d:5b:9b:38:1e:be:31:8b:f7:ba:cf:9b:b6:19:89:
73:02:af:3d:b2:db:95:02:7c:02:7f:0a:04:3b:a9:ed:14:a5:
eb:51:4a:5f:49:db:ef:b2:04:23:e5:df:56:8f:0c:0c:4c:13:
55:08:46:06:f7:56:f4:b5:ab:a9:b3:df:7f:52:27:8c:5d:56:
38:62:a3:e7:00:84:05:e2:e9:2a:e0:7a:e7:5e:2b:51:17:99:
6c:89:91:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 15:58:52 2025 by rpki-client