Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
File: aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft (raw, json)
Hash identifier: w5tozfkrV1+T29t/Aj72K/6mrzuC7FP8V0FM2wcfOXc=
Subject key identifier: 14:A9:0E:3B:72:9F:FC:BA:02:CE:55:C3:D4:FE:D0:67:2F:CF:BF:CB
Authority key identifier: 69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
Certificate issuer: /CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Certificate serial: 0196B5C6A02759C21C99780A1DCE5AE74B5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
Manifest number: 09B7
Signing time: Fri 09 May 2025 16:00:15 +0000
Manifest this update: Fri 09 May 2025 16:00:15 +0000
Manifest next update: Sat 10 May 2025 16:00:15 +0000
Files and hashes: 1: aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl (hash: 2CGlIkvIpkDITx+LzQnSveT60niHV9/3n4MG8/oHC3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:c6:a0:27:59:c2:1c:99:78:0a:1d:ce:5a:e7:4b:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Validity
Not Before: May 9 16:00:15 2025 GMT
Not After : May 10 16:00:15 2025 GMT
Subject: CN=14a90e3b729ffcba02ce55c3d4fed0672fcfbfcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cb:82:e3:b3:56:f8:45:c6:26:28:71:76:fc:
cf:f6:66:6e:ec:61:4c:5b:82:86:73:0f:71:09:d7:
0c:89:bf:f3:c9:ae:52:f8:87:24:db:48:63:aa:3e:
4b:1c:10:3b:b1:11:2d:56:26:7d:b0:37:e4:76:00:
88:a2:fb:0d:2a:77:58:01:9e:81:c2:8c:a9:16:1f:
19:c5:af:37:c0:ce:8b:51:7f:b7:0c:96:33:11:6d:
c3:20:6c:40:e5:0f:fe:35:bc:d8:53:a3:27:47:a5:
a6:3d:30:d0:91:f4:29:27:93:42:0d:d0:39:d1:b8:
4e:a8:94:33:2d:5d:44:a7:f4:d8:dc:de:cd:0d:85:
5b:d9:50:fd:49:31:06:97:03:c7:9e:11:26:28:3f:
0a:68:65:f7:8d:4c:54:da:32:ca:bc:b6:5b:da:96:
e1:bf:ae:a2:06:9c:8d:df:b1:33:d7:21:aa:7c:42:
9f:be:b2:a2:9a:1f:d2:43:33:38:1d:54:c5:0b:b9:
3b:63:89:99:9e:87:bd:39:62:cd:88:fc:59:b5:e0:
20:72:23:cd:91:f4:5c:f9:88:a7:1e:ea:08:70:b4:
87:77:f3:86:eb:ad:6b:82:14:b9:96:f2:fe:6a:a2:
7e:f0:2f:93:64:eb:38:38:db:e7:dd:5f:6f:43:b9:
93:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A9:0E:3B:72:9F:FC:BA:02:CE:55:C3:D4:FE:D0:67:2F:CF:BF:CB
X509v3 Authority Key Identifier:
keyid:69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:04:32:e0:e5:f3:48:fa:0b:e6:6a:ef:d0:c0:6d:98:7f:56:
f8:3d:8b:60:c7:8d:bf:82:9e:42:58:15:22:49:f7:93:83:ac:
fb:93:7e:2e:7d:6e:4f:b6:4e:aa:94:f6:56:4b:b0:0e:88:78:
71:c4:d7:53:fc:9a:27:6d:8e:be:f6:9a:54:ef:c5:16:14:07:
a6:b8:ee:c8:fe:45:4a:49:37:7e:4d:1d:ca:ea:ed:d3:64:19:
77:0a:b2:28:85:d9:6f:f9:d7:da:0d:43:b1:bd:71:53:f5:2c:
57:eb:fb:53:3c:7f:28:02:3d:c1:73:29:52:a3:51:3d:62:be:
fa:bb:e6:59:cf:f4:92:4e:f3:90:5c:b0:76:bd:d8:61:eb:4d:
38:c6:3b:c5:18:28:1b:ca:9e:d0:4c:66:50:8d:4a:32:5e:22:
14:f3:dc:d3:18:24:ac:62:a2:f7:f7:74:0b:7d:e2:eb:59:bc:
a0:24:fc:73:1b:72:fa:36:e0:be:44:69:ac:fb:03:de:e4:1b:
ac:17:cb:0c:64:6a:df:91:ac:85:d7:12:1a:25:a9:94:35:ff:
a7:b3:f1:de:e7:77:51:e1:02:19:9e:fe:3c:ee:2e:0f:dc:b7:
c9:11:9c:b1:c3:64:09:81:52:53:51:38:f4:fa:16:b4:c3:3a:
fd:df:35:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 18:01:50 2025 by rpki-client