Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
File: aHyL8iKia_HJxmOMw1bSg1UC8tY.mft (raw, json)
Hash identifier: jg2TT9MjDmcOHUxrSS/Jd/gEuUL0zwCeqkYSsQs/wtY=
Subject key identifier: 88:61:F0:CD:D2:6E:35:42:72:BD:8A:C4:44:E4:E7:62:76:E3:ED:23
Authority key identifier: 68:7C:8B:F2:22:A2:6B:F1:C9:C6:63:8C:C3:56:D2:83:55:02:F2:D6
Certificate issuer: /CN=687c8bf222a26bf1c9c6638cc356d2835502f2d6
Certificate serial: 0196C34BDE2133997AFD453F2BB849025DF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
Manifest number: 0677
Signing time: Mon 12 May 2025 07:00:51 +0000
Manifest this update: Mon 12 May 2025 07:00:51 +0000
Manifest next update: Tue 13 May 2025 07:00:51 +0000
Files and hashes: 1: aHyL8iKia_HJxmOMw1bSg1UC8tY.crl (hash: UwiIURAX1JP61mWX3t9fRM2QlJ8BIMfy1Jd51o921JA=)
2: szxe0DPYsGTMI_tgKM1yaWgLDtI.roa (hash: fjZgmmGMINi/iYDucRgC4NEVBx45QTUkAnBaw6M5XK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4b:de:21:33:99:7a:fd:45:3f:2b:b8:49:02:5d:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687c8bf222a26bf1c9c6638cc356d2835502f2d6
Validity
Not Before: May 12 07:00:51 2025 GMT
Not After : May 13 07:00:51 2025 GMT
Subject: CN=8861f0cdd26e354272bd8ac444e4e76276e3ed23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d1:f2:fc:c8:06:a3:06:cb:1b:3d:9e:2e:c8:
3a:df:92:c7:23:0e:2c:19:7e:c2:c1:0f:cd:77:20:
7a:b1:db:04:19:e7:ac:f1:db:e9:b6:78:cd:48:9c:
3f:d1:09:e4:f6:b8:1e:0f:5e:a0:68:00:ae:78:a0:
76:bb:b2:3d:2c:51:2b:6e:6a:ba:2b:f9:12:cd:47:
60:61:bb:aa:f6:de:18:5e:92:88:b5:57:45:1f:d7:
aa:cf:82:1a:1a:12:63:15:66:07:8e:0f:e7:a9:b9:
21:65:32:24:6a:45:e6:af:80:61:8e:11:3d:1c:17:
f3:13:f2:73:b0:02:a6:7c:c8:08:d4:d4:01:fc:e5:
64:b2:50:09:c5:a2:ea:59:d6:c8:38:cd:fa:30:8e:
8a:49:9f:69:88:e1:e0:61:80:01:15:28:6e:55:5a:
59:33:38:dc:fe:61:ce:e0:b9:21:f7:90:9c:a9:3b:
60:1c:40:8e:7c:79:4e:c7:00:ee:df:0d:91:b8:0f:
b8:06:ba:27:d5:b1:d4:c1:3c:b1:63:be:c0:cb:dc:
8e:02:f7:80:b3:c5:46:ea:55:c8:24:e2:75:62:17:
7f:a7:05:66:c9:96:de:69:06:f2:53:2f:53:a1:2a:
7e:de:cd:48:b8:73:d2:fe:ff:b4:9e:25:ff:2b:4a:
f8:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:61:F0:CD:D2:6E:35:42:72:BD:8A:C4:44:E4:E7:62:76:E3:ED:23
X509v3 Authority Key Identifier:
keyid:68:7C:8B:F2:22:A2:6B:F1:C9:C6:63:8C:C3:56:D2:83:55:02:F2:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:ea:e6:35:6f:f2:00:72:09:b3:c0:fa:53:ed:9d:9f:49:dd:
55:26:2b:d8:de:2f:5a:ea:b3:d5:3d:09:43:fc:d4:82:9f:a7:
0e:26:7f:8b:6d:b2:20:cf:cb:16:ff:4e:c0:bf:4a:41:af:c1:
1d:ab:34:96:dc:f9:ca:2a:c4:ae:79:af:fb:59:b5:00:e1:d1:
66:83:6f:1c:5e:fc:9e:8f:ce:29:50:cd:2f:da:96:1b:a4:f2:
a7:ab:4b:bc:59:a7:54:09:f5:60:69:d9:c3:39:b8:94:a3:76:
0b:9d:5e:da:ab:d2:db:69:8d:d4:7d:63:38:38:5c:46:6c:fb:
15:2d:9f:ab:72:7c:9f:5b:5c:87:60:f1:66:69:be:c0:90:fa:
2c:ff:c0:0e:be:06:51:61:12:ab:12:ec:0e:e7:fc:0f:3a:47:
7e:82:d6:10:ed:d0:7d:f0:95:1e:95:68:49:34:61:f4:8c:35:
7f:da:95:75:97:2f:06:7f:73:6b:b9:a8:04:06:99:0b:10:72:
46:34:0f:ea:c2:5b:53:5a:2f:7d:f3:c4:94:49:1d:c6:03:4b:
d6:fc:9d:78:6d:74:62:06:75:19:c0:a2:d1:91:e6:e9:f1:75:
d0:ac:5a:fe:97:83:34:e6:34:be:e7:6e:59:cc:47:2c:59:96:
d1:c1:0c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:33:29 2025 by rpki-client