Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
File: aesALwAL1CbkpkDHHWwCAbUFDjQ.mft (raw, json)
Hash identifier: h9TDbRcGT3osOAXxH0ghDJH/n/fdwAa/BRUYA9/Wggg=
Subject key identifier: AF:98:F9:59:C2:62:1E:0B:D9:4E:2B:1E:41:67:DD:DB:AD:D6:F1:11
Authority key identifier: 69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
Certificate issuer: /CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Certificate serial: 0196B1B3002803445D2B7C2EFDCD56B7D31D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
Manifest number: 1473
Signing time: Thu 08 May 2025 21:00:20 +0000
Manifest this update: Thu 08 May 2025 21:00:20 +0000
Manifest next update: Fri 09 May 2025 21:00:20 +0000
Files and hashes: 1: aesALwAL1CbkpkDHHWwCAbUFDjQ.crl (hash: LO0iH8+IHX5cp2SzlpIe7cdY8OVyyXyTqx7sXLR64n0=)
2: iGWnAlCFQ6pmXTyPhSirCP5UB4U.roa (hash: 4zG8JsxyxdWf4j+Yjdv8Dm4ymHITRyxtThA4racm63s=)
3: rDWkJyuDMvY3qk_P3bLz1VAfXBA.roa (hash: T51bFQ1LTlcOohBY3SvkvA3KStpNAaU7OZJJkLrtQ5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b1:b3:00:28:03:44:5d:2b:7c:2e:fd:cd:56:b7:d3:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Validity
Not Before: May 8 21:00:20 2025 GMT
Not After : May 9 21:00:20 2025 GMT
Subject: CN=af98f959c2621e0bd94e2b1e4167dddbadd6f111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5a:d6:70:be:28:1a:16:14:ec:d2:b9:b8:4d:
ac:ec:7e:96:c5:eb:c1:ee:c5:c8:cd:76:f8:63:7e:
dd:f6:98:cf:83:c7:7f:e4:39:a9:2d:0c:c6:23:92:
87:01:c2:fc:7a:89:2c:3e:40:e6:ce:e6:c1:83:be:
b9:e7:b0:73:1e:b7:08:9d:d9:02:db:8b:de:0c:a9:
19:b0:a5:b3:4d:cb:dd:8b:b8:15:d2:ae:c0:ef:30:
71:45:53:3b:c3:d8:f5:d6:47:20:a7:1c:73:cd:5b:
fe:c7:c1:08:18:c8:cc:8f:13:56:b5:dc:ca:80:2b:
86:40:ad:fe:7a:7e:cd:a7:ab:73:4e:ee:bd:d2:0e:
0a:e0:48:23:d8:9b:f6:ee:70:aa:06:58:36:fa:b0:
9a:a2:58:84:12:2b:4e:6d:08:83:4e:c7:eb:7a:1a:
e0:17:75:b7:7f:11:b5:78:0e:b6:fb:54:c8:66:c4:
7f:4d:f5:89:df:ab:ed:f8:03:87:6c:d3:d1:d0:b4:
11:94:60:ba:5c:c6:b0:1a:06:be:d7:b9:36:68:9c:
bc:f1:f4:47:26:c8:e3:6c:ad:e0:da:0c:39:75:3b:
09:a9:ad:be:17:c7:76:0f:97:d0:44:dc:ab:4d:a3:
ec:20:70:c8:22:59:87:54:80:8f:9b:23:97:ec:b9:
11:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:98:F9:59:C2:62:1E:0B:D9:4E:2B:1E:41:67:DD:DB:AD:D6:F1:11
X509v3 Authority Key Identifier:
keyid:69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:ac:ba:af:3c:f7:fb:eb:43:cd:0c:bd:f0:5c:9c:7e:17:72:
b0:3f:5c:81:e7:01:6b:b3:cd:d0:47:63:91:6c:fc:55:76:ca:
f5:62:c6:80:f3:06:90:28:16:45:d9:2a:2f:68:5d:5d:7d:5b:
ed:c2:bd:56:af:ba:a2:a9:ea:a4:cd:7a:a3:d9:9e:52:b7:66:
01:e9:1f:d6:a8:16:9f:6f:67:7a:88:83:2b:f1:b2:54:a7:b7:
b4:47:dd:c4:23:2f:89:c9:59:06:7a:b7:67:34:c5:95:15:38:
b1:bd:24:87:1a:49:ec:a1:30:5e:40:d0:98:af:b6:4f:e1:57:
b4:19:72:25:cb:b6:c7:4c:23:2c:59:a6:26:7a:a9:58:1f:f7:
e4:28:59:31:bb:9d:5d:ff:3e:3e:45:68:72:48:16:a2:03:09:
d6:3a:21:bd:93:a1:d9:67:95:75:4e:ae:72:3c:9b:85:77:4f:
a5:70:b7:67:7e:06:52:e2:15:9c:b3:8a:f3:e7:7d:8a:12:61:
f6:60:fa:81:a3:55:f6:2e:20:e8:ed:bf:b7:a1:7d:5a:3f:86:
1b:04:3a:2b:df:c7:b9:aa:4c:1d:1f:99:42:7e:04:af:3e:b9:
cc:91:4f:dd:3b:c4:7e:19:ca:c2:45:d9:38:60:45:09:77:90:
23:1a:4f:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 02:44:50 2025 by rpki-client