Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft
File: AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft (raw, json)
Hash identifier: O2PvMz41WZgYReZXiRivIaPOJODplE5bYd6yC+iLXdA=
Subject key identifier: 7F:71:D0:2B:92:70:1A:F7:F6:57:C8:8D:46:A1:7C:42:DF:30:F4:95
Authority key identifier: 03:21:BF:EA:03:05:C4:8E:94:9E:6C:24:9F:48:10:B4:69:05:C8:86
Certificate issuer: /CN=0321bfea0305c48e949e6c249f4810b46905c886
Certificate serial: 0196A164624C485C494D8C8C7CBC1C6F3698
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft
Manifest number: 152A
Signing time: Mon 05 May 2025 17:00:32 +0000
Manifest this update: Mon 05 May 2025 17:00:32 +0000
Manifest next update: Tue 06 May 2025 17:00:32 +0000
Files and hashes: 1: AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl (hash: MrA2pN1XaogSAqSk24A60rw4iwYvUa/pGyMQSEv2+88=)
2: HrI_ZNL0dOaa5SSqv99U6ELy6t4.roa (hash: n13hSIM8J7SvepGBD+Vp8UM2xhOsDHmf6h7aK70kh0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 17:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:64:62:4c:48:5c:49:4d:8c:8c:7c:bc:1c:6f:36:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321bfea0305c48e949e6c249f4810b46905c886
Validity
Not Before: May 5 17:00:32 2025 GMT
Not After : May 6 17:00:32 2025 GMT
Subject: CN=7f71d02b92701af7f657c88d46a17c42df30f495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c8:c5:89:62:3d:9f:9c:34:ad:3e:11:78:ba:
f4:f6:f6:2c:77:64:9c:71:f1:7c:10:5b:87:cb:26:
de:35:b5:ad:7e:65:92:a7:ac:3b:0c:b3:0d:16:e1:
05:3a:27:f4:3e:df:37:a0:59:40:c6:98:e7:3f:8c:
e9:84:05:d4:53:2d:56:8d:86:a2:81:dd:41:c0:97:
aa:d2:8b:20:db:03:64:bd:1c:b6:40:ce:b6:3e:f9:
65:f5:6d:1c:92:1b:e0:89:98:cd:dc:fd:3b:54:6a:
3c:1a:cc:53:e8:37:a5:94:d7:6b:ae:36:6b:df:6b:
31:62:aa:ac:c4:94:78:fd:9b:fe:a7:08:f0:10:3a:
79:5a:1d:45:f4:68:7d:70:42:21:8d:0f:e5:de:d0:
71:cd:8b:c9:7f:c6:e5:b5:2c:13:4e:dc:b6:28:78:
94:92:43:ee:0d:13:ad:7e:c0:e5:0e:e7:65:22:ff:
82:85:1c:61:db:48:b3:1c:29:22:94:6b:b6:ab:2a:
80:0e:3f:0a:0e:3d:45:5e:2b:75:a0:bb:cd:d9:1e:
93:5e:f5:c3:96:d6:98:97:07:73:d7:68:fa:c0:ba:
d2:3a:14:f6:7b:80:47:f9:d5:09:80:a0:ba:80:28:
58:68:78:da:fb:d6:1d:61:67:88:d3:75:83:c8:7d:
0b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:71:D0:2B:92:70:1A:F7:F6:57:C8:8D:46:A1:7C:42:DF:30:F4:95
X509v3 Authority Key Identifier:
keyid:03:21:BF:EA:03:05:C4:8E:94:9E:6C:24:9F:48:10:B4:69:05:C8:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:aa:69:c7:31:53:f8:e9:9f:64:e9:49:cb:89:8c:7f:5b:57:
7a:59:fc:db:b4:c9:ea:4f:f2:b7:40:1a:aa:d5:84:ee:d7:46:
44:f5:6a:50:ab:73:c6:77:76:5c:92:42:21:9c:45:24:ea:67:
29:c9:07:cd:55:f6:e9:1b:df:4e:66:0e:2b:d1:5e:e4:6d:0d:
ee:50:f2:c0:c7:5b:83:7c:1e:16:83:68:51:af:92:16:af:ce:
71:1c:9d:10:d7:d4:d7:02:99:66:ba:82:06:a8:c8:b5:92:54:
99:16:40:71:a6:25:75:4e:37:50:b2:e0:93:41:8e:c9:fd:0d:
7c:60:54:93:d9:31:d0:70:71:1b:db:57:f7:72:c5:8b:50:68:
78:2e:b4:bf:21:5c:1e:b1:4c:c8:11:d9:7e:7c:5d:24:ed:49:
5b:49:57:d1:64:b7:33:d5:5a:2f:74:64:a1:ec:90:3c:3f:da:
7d:9a:2a:f8:1d:47:b9:00:9f:de:9c:dc:45:c0:41:17:6f:1c:
2a:6c:1b:8c:59:2a:32:16:72:bb:b0:59:16:4f:fe:fd:3b:15:
6f:6a:f9:09:98:6b:90:de:0c:b8:0a:e9:d2:10:2e:a8:f5:7b:
98:54:ad:08:c2:78:62:53:99:2f:e7:6a:c4:44:9d:d8:02:ea:
53:86:6b:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 23:16:43 2025 by rpki-client