Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: Y9LnRwTNBSrsD7IyfFKXH4uJberT1oVTN3q6VPQ+FtE=
Subject key identifier: C3:6C:B0:8E:39:A9:D4:E2:0F:A6:C4:9A:EF:DA:13:9E:DC:C7:31:87
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 0196C2A6A854A23F15159A932318EC75FADB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 1537
Signing time: Mon 12 May 2025 04:00:23 +0000
Manifest this update: Mon 12 May 2025 04:00:23 +0000
Manifest next update: Tue 13 May 2025 04:00:23 +0000
Files and hashes: 1: 1-wEZKS5ROln113VYj-rYIVv3HMw.roa (hash: zd3NK5lHmlo7IZCKvHCkj4ue/ewdTG041qEpUCwPhSg=)
2: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: AOc2SI76je0pgFjCOY4hBaGlOPLkNQdiIngMHM3Mpqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 04:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:a6:a8:54:a2:3f:15:15:9a:93:23:18:ec:75:fa:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: May 12 04:00:23 2025 GMT
Not After : May 13 04:00:23 2025 GMT
Subject: CN=c36cb08e39a9d4e20fa6c49aefda139edcc73187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b0:0a:52:4b:a2:cc:2a:aa:06:c1:4b:32:72:
1c:68:44:a2:b0:9b:00:d2:73:1b:77:77:ac:75:49:
6c:aa:35:8f:d8:f0:94:04:e9:9f:38:ff:d2:fc:96:
e8:fb:50:75:d7:f8:02:d1:25:c8:d2:81:44:77:ef:
83:47:74:74:1b:46:17:f4:ac:68:a6:4f:b4:2e:ab:
48:66:39:de:21:91:da:15:5f:82:6d:70:b9:96:0a:
f6:2f:d5:9f:9d:6d:43:6e:b3:9f:a7:e1:c9:53:9e:
32:fa:ca:5e:75:d3:15:1b:54:05:c7:81:cf:13:bf:
41:3d:6c:8f:64:f5:e7:66:43:8d:4f:39:da:ed:76:
e9:c5:95:44:09:bb:d5:b4:0f:8b:ce:d6:35:db:fa:
b6:76:19:19:c5:d5:e9:d5:9d:b0:af:bb:83:9e:68:
66:63:5a:e0:8f:79:89:36:69:15:45:5b:13:e1:6f:
69:98:69:ca:27:06:49:f0:41:f9:59:fe:08:b0:5b:
14:b2:e4:11:bb:f9:b9:23:f3:ac:6b:e3:2b:0e:4c:
e5:8f:82:21:9e:0d:3d:9e:9b:60:6d:aa:d6:70:cf:
dc:87:2f:45:74:57:79:51:84:6e:d8:75:7c:96:da:
76:1a:19:4c:bc:b6:5c:55:9b:60:a1:63:d9:e6:98:
f9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:6C:B0:8E:39:A9:D4:E2:0F:A6:C4:9A:EF:DA:13:9E:DC:C7:31:87
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:46:70:90:bb:7b:67:32:65:98:44:74:0c:f0:49:51:46:78:
fd:67:a5:8a:70:a5:f5:3e:b6:3a:6c:44:12:7a:7d:82:63:fa:
c3:d4:3b:7f:6e:81:62:6e:b5:38:e4:44:77:1e:8b:e9:83:b4:
6c:e0:4a:e5:8e:5e:a0:ce:e2:ab:3c:72:f4:0e:f8:09:48:59:
51:dd:66:3c:f2:2f:50:66:40:11:59:a3:75:41:94:1d:10:34:
d8:e1:d6:1a:95:fe:2a:dc:97:64:51:4c:0b:12:3d:f2:f0:ba:
dc:b6:ec:fe:b2:ca:0b:97:f2:63:d0:6b:54:47:e3:aa:f6:df:
e5:5d:f4:1c:cf:51:da:4d:87:e2:fe:8d:4c:39:f0:9d:95:39:
d4:6d:7c:d7:fa:4b:6d:ad:26:a8:ac:57:94:72:35:f7:0d:50:
00:3c:82:2e:79:19:5f:16:6c:d6:19:4b:a0:fb:45:23:fd:2a:
b7:72:28:ed:d0:6b:fa:06:7b:c8:15:06:70:6a:73:d2:21:95:
d7:72:3e:03:eb:4b:b2:5c:4d:6d:73:26:a9:7c:c1:60:98:20:
0e:d3:8a:1b:5f:89:76:80:3e:53:5d:b2:7c:cf:ee:23:4c:55:
2b:97:5c:92:57:3c:f0:9a:3e:c8:5d:ae:d5:de:d5:14:78:8b:
63:0b:03:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 13:28:04 2025 by rpki-client