Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
File: rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft (raw, json)
Hash identifier: w968JUiqR5x+7GF65aLdl8F16aakQqkE0WRNJ6DPFn0=
Subject key identifier: 15:1C:E6:E2:33:CC:9B:F3:56:23:B2:8E:B7:7A:5F:EC:B2:0E:08:D7
Authority key identifier: AC:08:81:5E:8C:65:03:60:1F:25:4C:AB:37:1B:EC:47:1B:D7:EA:A6
Certificate issuer: /CN=ac08815e8c6503601f254cab371bec471bd7eaa6
Certificate serial: 0196C5A80377DBF638AA9DB6EE47C43CD90E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
Manifest number: 0947
Signing time: Mon 12 May 2025 18:00:44 +0000
Manifest this update: Mon 12 May 2025 18:00:44 +0000
Manifest next update: Tue 13 May 2025 18:00:44 +0000
Files and hashes: 1: QsrgGtjjVfYUdnjVBy3FKVxOReM.roa (hash: /bct/glFTr5+fLpXRU1WLa/LnjLyQigL1zGVjyxrPQI=)
2: rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl (hash: six09SlZAQS+H3M/mWDR1AFtZqLXEkOE5PexKSZ4zUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:a8:03:77:db:f6:38:aa:9d:b6:ee:47:c4:3c:d9:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac08815e8c6503601f254cab371bec471bd7eaa6
Validity
Not Before: May 12 18:00:44 2025 GMT
Not After : May 13 18:00:44 2025 GMT
Subject: CN=151ce6e233cc9bf35623b28eb77a5fecb20e08d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:25:21:49:e0:e2:97:ea:a1:db:ac:66:d0:a5:
18:53:dd:5f:e2:57:48:d2:a8:a4:76:95:d4:06:62:
03:af:57:e3:66:08:b7:c0:45:0f:9c:9f:4f:99:f6:
2d:9f:aa:eb:53:04:4f:01:9c:3a:80:b9:98:68:4e:
13:d1:f1:a8:da:2e:76:8e:b0:70:d8:9e:bc:74:02:
ab:52:ce:df:4f:e4:1d:22:18:da:95:4f:c4:40:1b:
2b:ee:b2:91:ef:88:7c:d4:49:21:22:57:0a:8a:85:
ec:c9:9e:40:13:bf:c0:5b:6d:b7:ee:00:98:29:6c:
e7:7c:59:11:93:aa:6f:ce:7d:39:9c:cc:5e:df:58:
f7:e3:91:7e:ca:37:5d:43:17:3f:f4:a8:d2:36:25:
d7:ed:64:10:16:f6:0c:6c:01:66:7e:37:7a:9a:1a:
70:6a:a1:82:d8:31:36:11:46:6c:53:d2:57:bb:cb:
d4:56:94:62:02:df:ae:f5:12:cd:dd:2e:19:aa:f4:
fb:e9:46:be:b7:8d:de:0b:73:b3:3a:fb:5a:9d:7f:
d9:a0:39:87:85:4f:70:48:b0:69:cc:b5:08:20:2c:
b7:6c:db:12:ba:9e:98:c1:31:c3:75:7c:56:83:cf:
73:b1:b6:d3:b0:3c:2b:73:b3:8b:99:bc:bb:4a:e6:
2d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:1C:E6:E2:33:CC:9B:F3:56:23:B2:8E:B7:7A:5F:EC:B2:0E:08:D7
X509v3 Authority Key Identifier:
keyid:AC:08:81:5E:8C:65:03:60:1F:25:4C:AB:37:1B:EC:47:1B:D7:EA:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rAiBXoxlA2AfJUyrNxvsRxvX6qY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/56f2a3-7eb7-4513-9f55-677871a03355/1/rAiBXoxlA2AfJUyrNxvsRxvX6qY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:0c:22:b9:38:37:d0:f8:58:79:60:e2:61:09:d2:49:fb:e0:
03:5c:76:eb:5f:97:27:a3:06:e4:71:95:8c:d9:bb:cb:fc:05:
56:16:aa:63:ae:c9:d8:9a:2b:23:d6:67:7c:8b:10:eb:6c:cd:
88:b1:7b:0c:85:10:71:d0:ee:1e:ba:84:f7:66:2d:70:f3:41:
63:e0:1e:a0:7d:d7:ed:ab:ee:f1:48:52:0f:2d:2a:18:3e:58:
29:8d:cd:cd:cb:cb:df:e5:73:d0:5d:0f:f1:f3:b4:b5:30:38:
cf:19:12:99:fb:db:3c:61:dc:97:ce:dd:76:4b:e1:01:cd:28:
8f:49:c8:dc:52:95:43:d2:d2:cd:01:00:f6:dd:c7:08:d2:f6:
36:24:42:72:dc:6e:5e:bb:b7:5c:ec:d8:ed:6f:23:85:97:64:
69:a8:df:0e:8f:48:4d:7f:29:7f:f9:3e:91:99:aa:73:42:b2:
a2:58:67:b1:13:1d:d7:f3:a6:32:3b:ce:eb:a6:47:96:29:b4:
7c:04:5d:0c:45:f6:f1:89:e2:1e:aa:ce:e6:75:c5:c5:e5:cb:
9f:2c:47:aa:dd:ee:f2:27:cd:c7:34:e3:f7:1a:c9:bc:54:70:
bd:50:67:3f:55:87:4a:af:f5:5f:fd:bc:fa:18:b0:f6:0b:c8:
77:30:97:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 23:26:22 2025 by rpki-client