Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/47e909-7744-4db3-b691-a7b9c7115c1e/1/AMz6LBZvhsPNAcbrrhk3ReHrDyk.mft
File: AMz6LBZvhsPNAcbrrhk3ReHrDyk.mft (raw, json)
Hash identifier: 2QKDFLsFV9AxhYSh4PTtLk4Ui/38Fq6JsqO7tmlM43w=
Subject key identifier: 25:74:4A:BE:A4:6B:83:2D:16:A9:EB:6B:E2:5A:AF:69:01:39:BF:58
Authority key identifier: 00:CC:FA:2C:16:6F:86:C3:CD:01:C6:EB:AE:19:37:45:E1:EB:0F:29
Certificate issuer: /CN=00ccfa2c166f86c3cd01c6ebae193745e1eb0f29
Certificate serial: 0196BCA4A1CA757F00AAEB96854584DE6562
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AMz6LBZvhsPNAcbrrhk3ReHrDyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/47e909-7744-4db3-b691-a7b9c7115c1e/1/AMz6LBZvhsPNAcbrrhk3ReHrDyk.mft
Manifest number: 04A1
Signing time: Sun 11 May 2025 00:00:27 +0000
Manifest this update: Sun 11 May 2025 00:00:27 +0000
Manifest next update: Mon 12 May 2025 00:00:27 +0000
Files and hashes: 1: AMz6LBZvhsPNAcbrrhk3ReHrDyk.crl (hash: AcyzDU27Se4mtbGR8tu6XzZJ8pG/V6/227HlWUR1gJA=)
2: e0RKB6c0KB07YznYp0xB1MsPmzk.roa (hash: qPmTA1Xz3mqQ1fzxdYI8NmB7dWpfMeJeVGXYLIJQJaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/47e909-7744-4db3-b691-a7b9c7115c1e/1/AMz6LBZvhsPNAcbrrhk3ReHrDyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/47e909-7744-4db3-b691-a7b9c7115c1e/1/AMz6LBZvhsPNAcbrrhk3ReHrDyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AMz6LBZvhsPNAcbrrhk3ReHrDyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:a4:a1:ca:75:7f:00:aa:eb:96:85:45:84:de:65:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00ccfa2c166f86c3cd01c6ebae193745e1eb0f29
Validity
Not Before: May 11 00:00:27 2025 GMT
Not After : May 12 00:00:27 2025 GMT
Subject: CN=25744abea46b832d16a9eb6be25aaf690139bf58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ab:a9:fc:67:75:50:ed:8a:ce:99:96:2e:44:
ee:a0:62:53:b0:63:e8:31:a8:c0:ca:0a:b3:39:9e:
c2:58:69:bf:51:9b:cd:5a:71:49:f4:09:92:b0:ca:
b9:05:02:58:73:22:41:a9:98:59:97:c3:92:67:b1:
28:31:19:9c:b7:85:91:ac:1d:1e:73:08:55:97:cc:
b2:20:23:39:8d:e0:e5:3f:50:30:1a:0f:1e:01:b1:
ff:89:43:d6:9a:6e:68:e8:fb:82:03:8c:92:22:37:
44:08:61:06:93:0e:63:47:5b:b8:86:04:06:85:8c:
a6:b9:15:d0:82:54:22:ea:c5:db:59:e4:e7:a6:c2:
d1:54:6d:ae:d7:28:c4:ed:7d:ce:5e:5e:a4:0b:db:
07:63:c0:a4:ef:db:85:7f:11:18:b5:3b:8e:df:d8:
f1:1e:ba:a1:74:66:af:54:46:1c:97:df:2b:4d:0c:
52:46:26:23:92:c1:27:09:55:6e:11:8f:7a:ec:19:
98:b3:33:37:17:03:36:46:8f:71:db:63:f8:d0:8e:
73:c4:53:3e:66:49:c0:d2:d2:ba:b9:8f:d9:70:ac:
96:06:58:0e:87:60:96:09:e3:25:5d:80:c5:69:2a:
7f:db:c7:7c:07:ca:af:ac:d5:71:1e:2a:e4:33:9a:
ff:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:74:4A:BE:A4:6B:83:2D:16:A9:EB:6B:E2:5A:AF:69:01:39:BF:58
X509v3 Authority Key Identifier:
keyid:00:CC:FA:2C:16:6F:86:C3:CD:01:C6:EB:AE:19:37:45:E1:EB:0F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AMz6LBZvhsPNAcbrrhk3ReHrDyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/47e909-7744-4db3-b691-a7b9c7115c1e/1/AMz6LBZvhsPNAcbrrhk3ReHrDyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/47e909-7744-4db3-b691-a7b9c7115c1e/1/AMz6LBZvhsPNAcbrrhk3ReHrDyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:f7:80:56:63:10:0b:68:05:ea:9b:16:06:2d:39:dc:86:a4:
25:be:ab:67:5f:97:8f:76:4a:08:88:4f:85:02:67:ac:01:be:
26:73:7f:ca:2f:29:44:6a:69:d3:d5:cd:d5:62:53:6c:03:04:
a4:79:05:87:bc:1e:bd:3c:59:e8:e6:18:2e:86:31:47:01:f5:
d9:fd:f1:41:95:a3:9d:81:7b:de:e7:bd:d2:f7:72:6f:ee:ca:
0e:1e:77:19:f0:ce:7d:cf:ab:ab:48:b8:d8:a3:65:0f:4c:ad:
34:33:23:a8:29:e1:ae:2d:a7:7d:f9:c3:78:6f:6b:bb:8f:d7:
cc:16:1d:10:5c:88:a4:ce:45:e7:82:67:e4:66:17:80:9c:75:
2c:21:06:4a:40:ce:75:60:2f:6d:1e:48:11:29:92:07:51:4d:
1e:11:6b:80:cf:95:28:56:73:74:f2:05:3a:21:6c:e7:fc:7a:
50:11:5a:43:83:35:4e:e1:52:f2:2d:93:4c:22:27:16:c3:1b:
6a:ef:be:5b:0f:3c:73:a1:77:d7:16:4b:c0:fb:13:f8:7e:b2:
60:0f:6e:f8:1b:21:72:e7:8a:a0:24:e5:3b:a3:ae:a8:79:81:
0b:e0:ec:e3:62:74:c7:f3:f2:fe:af:e9:47:89:75:97:4e:3f:
51:60:10:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 09:22:05 2025 by rpki-client