Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
File: AaVsQu18uWPyhVA87AYG1g0Ks4c.mft (raw, json)
Hash identifier: D217aEdVPd2Fe7qfF5DkClEWM6DbAU9nhNZ8P9Dk+Tw=
Subject key identifier: D4:61:60:44:12:A1:68:7F:B1:D7:B8:B2:CF:62:3A:9F:2C:81:8D:9C
Authority key identifier: 01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
Certificate issuer: /CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Certificate serial: 0196A465575DAC09424F74C2A71DAF6C335D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
Manifest number: 0DE8
Signing time: Tue 06 May 2025 07:00:27 +0000
Manifest this update: Tue 06 May 2025 07:00:27 +0000
Manifest next update: Wed 07 May 2025 07:00:27 +0000
Files and hashes: 1: AaVsQu18uWPyhVA87AYG1g0Ks4c.crl (hash: moA6E4O2K3NBS2UJ/PFn7BE8q+Dlus1Nvt8qoHEW3l0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:65:57:5d:ac:09:42:4f:74:c2:a7:1d:af:6c:33:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a56c42ed7cb963f285503cec0606d60d0ab387
Validity
Not Before: May 6 07:00:27 2025 GMT
Not After : May 7 07:00:27 2025 GMT
Subject: CN=d461604412a1687fb1d7b8b2cf623a9f2c818d9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ce:b1:fc:bc:6a:b4:3a:19:f1:09:d1:95:40:
c1:43:c5:3a:c5:a2:3c:f2:15:30:c7:65:0d:1f:64:
c9:34:34:ff:21:00:68:11:18:44:58:71:ea:65:3f:
dc:a9:51:94:e2:70:08:4a:bc:94:97:08:75:db:88:
9a:97:f5:49:cc:1b:7e:ce:fb:e7:23:b7:a8:51:3e:
73:96:be:cd:08:85:63:84:c7:42:a8:7a:2e:89:8b:
d5:46:d1:5a:42:0c:f4:c1:4b:69:3c:2f:7c:20:c3:
9d:de:4a:92:70:a2:32:63:e4:35:60:e3:38:f4:6b:
c4:77:64:40:ad:69:ce:91:9c:b1:88:43:ee:2d:58:
c3:11:a4:de:f0:9c:1e:cb:8b:2b:2b:9e:19:f2:ea:
c6:56:bf:c6:1c:a5:65:d4:0a:cb:35:7d:84:89:57:
95:31:d3:e8:5c:bf:5b:31:24:6c:05:bf:cd:b2:7f:
23:26:48:7e:7c:f4:bb:31:15:f2:4f:1b:2e:02:fc:
97:ea:e1:32:23:03:66:f9:e9:46:14:94:21:e6:11:
2e:7d:40:2f:e6:aa:ac:c9:48:3c:25:7c:f7:1b:a4:
36:84:25:10:ab:b6:01:c1:5d:70:4b:3a:27:0f:fb:
12:df:16:e0:de:2e:d7:ea:83:cb:1f:0d:4e:f3:ab:
0c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:61:60:44:12:A1:68:7F:B1:D7:B8:B2:CF:62:3A:9F:2C:81:8D:9C
X509v3 Authority Key Identifier:
keyid:01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:0b:66:f2:6f:38:bd:b4:4d:8e:b8:ce:34:c7:ed:10:e5:e8:
ca:14:88:11:c0:73:da:82:d1:64:c1:5a:9f:a8:80:de:50:ae:
36:4a:30:8b:8d:66:2c:0a:b3:aa:79:84:ea:58:9b:96:c3:eb:
e8:c3:94:7a:9a:b5:44:b4:79:18:37:83:77:a4:46:22:8a:48:
8b:7c:07:33:93:94:b2:54:d2:6a:3f:a9:4a:a5:e9:07:af:73:
23:52:df:d3:a0:ca:02:98:7f:95:0e:09:4b:ba:49:2a:ee:18:
75:06:6d:35:5a:46:12:9b:ed:20:65:87:c9:68:41:5c:cb:af:
9e:38:8f:4a:eb:29:e8:41:85:5f:75:16:fe:e8:36:b0:51:75:
1d:b1:e5:64:75:ad:12:0c:b0:4b:93:4f:55:46:27:eb:c7:9c:
4f:6b:a4:1f:67:7a:bb:93:93:84:fe:e0:5c:70:eb:d0:24:d1:
66:ab:c4:50:53:45:05:7d:76:c6:8a:1a:7d:6f:64:cf:7d:39:
01:a3:31:46:ed:b2:f3:1e:a6:d7:69:cc:4d:e6:69:df:8b:12:
c7:2a:99:cf:31:f1:05:9b:d5:87:98:50:e9:ef:02:d9:f8:75:
5a:26:8a:b4:ab:ee:53:db:48:1a:ee:94:88:7f:7b:df:02:8e:
ed:6f:31:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 09:07:57 2025 by rpki-client