Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
File: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft (raw, json)
Hash identifier: kdufv9jnlB+A+A+hll/e0tCTqUNiuD/XDOdfT7WOZG4=
Subject key identifier: BB:DE:F0:56:B2:98:06:96:F3:2E:74:EC:70:A7:1F:78:72:8A:83:3D
Authority key identifier: A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
Certificate issuer: /CN=a4068c6655c333fc712832c113f67f1fd688aec4
Certificate serial: 0196CCF360B3D8D1E2A0CDE0E85E2B5A522A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
Manifest number: 1239
Signing time: Wed 14 May 2025 04:00:24 +0000
Manifest this update: Wed 14 May 2025 04:00:24 +0000
Manifest next update: Thu 15 May 2025 04:00:24 +0000
Files and hashes: 1: pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl (hash: 3EqEqjb4SRgxSTW/jWEXZELaFWJAjqhfNXpHz9HR1CI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 04:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cc:f3:60:b3:d8:d1:e2:a0:cd:e0:e8:5e:2b:5a:52:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4068c6655c333fc712832c113f67f1fd688aec4
Validity
Not Before: May 14 04:00:24 2025 GMT
Not After : May 15 04:00:24 2025 GMT
Subject: CN=bbdef056b2980696f32e74ec70a71f78728a833d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:35:11:8a:d1:ad:2b:c5:5d:7d:7e:30:e4:fa:
ed:01:6e:b1:46:dc:05:1c:1d:3e:5a:43:bb:94:5d:
4f:57:5c:64:34:7a:a0:87:14:e3:82:ec:2a:b9:d8:
f8:29:c9:02:9a:76:0c:63:5c:f8:c9:f1:b4:24:cf:
fd:0f:e1:b0:84:1d:15:38:69:7c:cc:1d:bd:cb:54:
d3:91:92:e3:66:8d:63:0d:e7:22:4b:06:e3:9b:6d:
2d:72:d3:66:ee:c7:af:49:73:5a:a8:19:f5:8d:65:
8c:3e:1e:27:de:78:87:db:06:98:9d:00:67:7f:b2:
31:73:36:d2:a5:c8:43:2b:e6:dd:f3:80:05:8b:36:
3d:d6:be:78:f5:12:ba:1b:4d:de:a2:de:28:6c:71:
74:1f:a9:8e:e3:1b:d5:23:ce:7f:f9:be:62:a8:74:
5b:cc:c1:3e:e0:c9:f8:19:78:ae:dc:b6:dc:02:0d:
3c:fa:df:6b:46:c7:b5:d8:52:1e:a8:3b:ee:b9:2e:
64:42:0b:fc:3e:b0:e0:84:bb:90:46:16:f2:55:99:
6a:b2:d2:56:d6:8d:91:37:45:8b:42:a2:18:46:81:
28:12:b9:ee:8d:af:80:00:85:0c:95:e9:90:c2:62:
1a:84:34:fe:5c:b4:7e:8d:77:ac:80:35:da:a9:a4:
ee:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:DE:F0:56:B2:98:06:96:F3:2E:74:EC:70:A7:1F:78:72:8A:83:3D
X509v3 Authority Key Identifier:
keyid:A4:06:8C:66:55:C3:33:FC:71:28:32:C1:13:F6:7F:1F:D6:88:AE:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0aef2b-1e45-4ad5-a80c-86dee207f81e/1/pAaMZlXDM_xxKDLBE_Z_H9aIrsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:05:23:92:9b:b4:cf:0f:60:74:ab:94:72:23:cf:54:8b:5e:
67:20:bc:30:2f:ad:db:32:23:b2:35:a0:2a:b6:ac:10:81:2d:
65:f1:18:e8:28:37:a0:50:1f:1a:8a:3b:0f:5f:43:db:86:bc:
80:b6:44:64:3c:ef:bb:7a:9f:21:14:3c:d4:73:53:08:3d:01:
87:e1:8f:ff:23:98:5a:0c:34:dd:bb:5e:4e:77:39:31:a0:41:
47:bc:8b:59:81:b8:49:c8:b9:36:5e:f5:4c:3c:70:f6:d8:bf:
54:1a:5a:60:4f:b5:c4:ad:58:21:c8:25:80:b4:61:d1:15:1b:
ff:b6:66:41:9f:2d:3f:ad:b8:26:15:eb:de:5d:f6:61:1d:b4:
61:0a:35:41:7a:9a:61:68:f1:12:21:b6:8c:97:6c:c5:3e:4b:
7d:25:8c:5f:b5:93:5b:b7:09:db:8a:19:b7:fd:12:f4:96:04:
fa:96:56:82:9e:50:cb:a4:22:b3:e9:52:b0:d5:d7:df:64:0c:
10:e8:1f:44:87:2e:ee:ef:c5:1d:c8:dc:63:23:84:20:47:d9:
d2:ba:b8:6a:2a:79:88:5c:e8:1f:46:34:b3:f3:d3:e0:28:0c:
ac:5c:26:5c:e0:a7:1c:fa:2a:c5:7b:04:35:f1:99:6a:46:d7:
eb:06:c4:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 12:07:56 2025 by rpki-client