Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
File: AvxcBk9RWcih-kBmyMuP9wFnHdI.mft (raw, json)
Hash identifier: kLZGeN7cVghLo+BMH904gJ129l0h4XZH/xvCJthzSpY=
Subject key identifier: 57:62:64:34:23:69:2D:0C:7B:9A:E1:DE:F2:72:98:30:C8:39:A9:DC
Authority key identifier: 02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2
Certificate issuer: /CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2
Certificate serial: 0196D3D15CCC13CA692561D3E82CC4910BBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
Manifest number: 0A60
Signing time: Thu 15 May 2025 12:00:35 +0000
Manifest this update: Thu 15 May 2025 12:00:35 +0000
Manifest next update: Fri 16 May 2025 12:00:35 +0000
Files and hashes: 1: 5d3BkT4g6BSm4A2tPk7SLnm-a2o.roa (hash: r7O0hom8hw87s+SCAknwxnQSAbbhz820jIMuUD9IwqI=)
2: AvxcBk9RWcih-kBmyMuP9wFnHdI.crl (hash: 3xZh5eI40cwVx9nY3bDvT91kUEL0SI/Q/btG2CgpO0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d3:d1:5c:cc:13:ca:69:25:61:d3:e8:2c:c4:91:0b:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2
Validity
Not Before: May 15 12:00:35 2025 GMT
Not After : May 16 12:00:35 2025 GMT
Subject: CN=5762643423692d0c7b9ae1def2729830c839a9dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cd:9b:a1:fc:c0:a5:21:3c:55:9b:c8:e2:08:
9b:a4:4e:38:74:8c:f6:3b:c2:06:a6:05:d5:55:88:
13:57:20:2a:2e:9e:f3:5d:7f:1d:bc:8a:8a:e6:49:
7e:f1:12:a8:c2:bf:ee:b7:fd:1c:6e:64:af:a5:b8:
ab:2e:76:7e:dd:4d:a7:62:1b:f4:a8:50:32:37:c1:
69:62:2f:00:e9:78:0a:e0:cf:43:83:cf:3b:11:7f:
a2:58:9f:37:8f:81:f7:4e:04:a6:51:45:55:5c:a7:
37:fb:cf:7d:98:7c:85:33:23:ec:d9:a8:eb:d3:eb:
5e:a2:20:72:a5:41:a9:67:4d:2d:61:04:3d:6e:01:
03:5e:27:8a:6b:49:99:3c:31:97:05:08:9b:19:d5:
a3:c7:65:ef:18:87:90:4e:cc:6b:a0:38:d3:dd:df:
6b:92:1a:b8:ef:50:04:b3:2f:56:93:17:94:02:75:
55:3b:31:f3:dc:ff:2b:ed:16:d3:77:10:44:36:52:
ce:c3:44:09:04:20:1d:78:16:4e:76:dc:4d:30:cc:
3a:b6:3d:88:23:db:c1:e7:3f:44:2d:11:cd:f9:23:
bb:df:1b:f8:2a:c0:06:3a:ce:ca:df:09:27:2a:08:
1c:6d:40:64:12:5b:b8:a6:0f:72:18:b0:ac:d2:5a:
aa:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:62:64:34:23:69:2D:0C:7B:9A:E1:DE:F2:72:98:30:C8:39:A9:DC
X509v3 Authority Key Identifier:
keyid:02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:02:0d:ee:e7:cc:4a:50:67:c9:8b:a6:f9:7c:6b:c4:ba:c1:
dd:da:f7:01:50:8d:7f:50:eb:09:9a:63:f0:7f:ac:73:8c:49:
34:87:24:69:8e:83:a4:85:59:0d:67:08:59:4c:54:4d:db:cd:
1a:4c:b2:8f:cf:8e:7d:78:1a:3d:fb:1c:e6:c1:55:8f:f4:42:
bb:8f:56:4a:8c:c9:3c:38:2a:d7:8e:e3:d6:b4:4b:91:c6:b5:
2b:e8:e7:42:90:e4:3b:82:6f:cd:79:03:cb:96:2b:cf:fd:97:
1c:cd:57:09:8b:fa:06:6f:4e:6a:87:f8:65:15:0d:28:bc:9f:
1f:7c:07:25:fb:7b:a2:ca:f1:bb:08:1d:a6:2b:0e:94:45:f5:
38:6f:8e:29:d4:3c:76:32:79:99:e8:52:b7:2a:8c:7f:3c:a5:
34:e3:68:44:b9:8f:c5:28:c9:d4:06:b5:50:ad:a4:22:75:df:
07:92:f9:2b:1a:19:dc:51:a5:49:6b:e4:d0:d0:03:70:c5:e7:
a8:c9:17:1e:00:c0:f7:b7:db:67:23:a1:46:0f:f0:1a:fc:4a:
5b:5f:d9:8e:7b:3d:52:86:a5:cd:44:d6:2c:45:30:d1:27:b8:
7c:e8:29:e3:dd:2f:bf:cb:5f:bd:bd:f0:b9:a2:39:6c:32:aa:
c6:61:08:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 13:54:08 2025 by rpki-client