Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier: vasbV/t34yxKqNT6l3ODCZuL2eqrP+pmoyQ1X8zt3aI=
Subject key identifier: 8E:4E:2B:77:E2:02:1E:1E:45:B7:34:A9:30:D9:EB:BD:A2:DF:3B:48
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial: 01969E2C2A05A705B729165A4CBC14585027
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number: 1524
Signing time: Mon 05 May 2025 02:00:16 +0000
Manifest this update: Mon 05 May 2025 02:00:16 +0000
Manifest next update: Tue 06 May 2025 02:00:16 +0000
Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: gWSOmxbOl/bCjJDUCVWN1RBxia/AkniiKYpdsx/8l7M=)
2: nJZ2h-CE2RpObbNuUbuQAsAe9wo.roa (hash: XjXLrJ8ZAfMXOtdh84OSK02UeKqf16aa2sgmGiELBao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:2c:2a:05:a7:05:b7:29:16:5a:4c:bc:14:58:50:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Validity
Not Before: May 5 02:00:16 2025 GMT
Not After : May 6 02:00:16 2025 GMT
Subject: CN=8e4e2b77e2021e1e45b734a930d9ebbda2df3b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e7:15:3b:03:ef:f4:d7:c8:9f:22:d9:e6:b4:
96:3f:30:11:09:33:39:6e:9c:5e:b8:99:50:59:b5:
a8:b3:f3:0d:51:70:84:8c:27:03:3b:68:df:20:0b:
e6:63:78:03:0c:e8:db:10:de:85:24:51:96:ed:e1:
b7:21:d7:c5:ab:cc:1d:2b:3f:1f:e5:5b:19:8c:86:
17:68:29:e5:b9:19:72:ad:fe:a6:b1:19:4b:07:49:
33:bd:77:36:8d:94:f9:d3:25:dc:c0:47:ba:f1:53:
38:91:0e:45:31:cc:5b:b4:51:fc:0d:48:fb:16:50:
86:b5:ec:3c:db:eb:ff:c5:ad:28:96:c4:25:cf:83:
5a:00:ce:23:ba:eb:75:40:bd:08:a9:70:a6:2a:93:
d7:c3:42:8c:df:43:02:41:df:c7:20:9a:a1:53:8e:
7c:1f:6e:91:a3:ce:0e:81:26:32:c0:b6:32:cb:9d:
a8:e2:70:95:05:41:d0:ea:83:63:28:1f:62:fb:ca:
71:4e:c5:c6:8a:3d:e1:07:37:e1:fa:8e:39:d8:26:
12:04:4e:55:1a:3f:97:b4:24:a6:88:97:1b:b4:e5:
9c:ce:cf:c7:6a:18:16:e3:36:c4:a2:5c:11:de:99:
ea:59:92:e0:49:f4:4b:cf:b9:a3:db:98:9a:fc:f0:
48:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:4E:2B:77:E2:02:1E:1E:45:B7:34:A9:30:D9:EB:BD:A2:DF:3B:48
X509v3 Authority Key Identifier:
keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:c9:f4:cf:ec:2c:e0:02:46:fc:98:b1:31:e5:2b:5a:a3:cc:
18:a7:fd:74:49:04:af:6f:13:94:85:d2:3e:ea:f0:ac:48:57:
12:eb:85:3d:31:84:41:01:30:d6:f3:9a:03:6c:86:87:43:6a:
61:27:8b:ca:86:86:68:c0:4f:e0:f4:42:fd:c1:96:c3:93:44:
05:a7:a8:dd:fe:6d:a9:91:84:0f:ab:45:93:46:ba:fa:22:31:
59:ee:bc:7e:dd:23:b7:38:a2:e0:62:be:c9:83:03:a6:51:00:
1c:52:17:6e:7b:c0:58:26:ef:8e:dd:14:2a:e7:eb:5f:f5:13:
f1:2a:1b:eb:76:db:b3:2f:67:8b:fd:29:6c:e8:67:02:e9:87:
9d:00:26:32:aa:b1:13:00:4b:68:d8:26:36:42:6e:71:63:48:
ce:c4:5d:19:ed:0e:c4:29:31:fa:8f:d9:48:ce:51:ab:d8:b8:
d6:d3:b6:87:43:97:c6:2e:51:98:09:80:bf:e6:7e:19:db:1d:
93:4a:b0:ab:25:04:e5:06:3f:3b:16:ce:d1:56:1a:17:29:3a:
36:74:26:29:08:ab:8d:46:bb:a0:8c:9f:b9:f2:bd:aa:f8:da:
f7:6d:e8:b1:6b:15:ad:09:b3:bb:17:f4:ad:8f:4b:1c:88:9a:
57:e0:57:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 05:01:48 2025 by rpki-client