Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
File: avL7pFrWUxpj0XNQFPaZgH9H-9w.mft (raw, json)
Hash identifier: gUvAgw+JkEUAZ3cNB9PqYUZgjPX7CC08ad4rv7HLeas=
Subject key identifier: 3E:68:42:F0:3B:99:D2:F4:1C:E8:97:A4:65:DC:43:48:86:BA:11:6D
Authority key identifier: 6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC
Certificate issuer: /CN=6af2fba45ad6531a63d1735014f699807f47fbdc
Certificate serial: 0196BE5C49995878B37E2093ECA88607587B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
Manifest number: 055E
Signing time: Sun 11 May 2025 08:00:41 +0000
Manifest this update: Sun 11 May 2025 08:00:41 +0000
Manifest next update: Mon 12 May 2025 08:00:41 +0000
Files and hashes: 1: avL7pFrWUxpj0XNQFPaZgH9H-9w.crl (hash: LJ0hnLOBjTgAqnlUrJn0S8cWIETT/3L/VPiDc1wUxH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:5c:49:99:58:78:b3:7e:20:93:ec:a8:86:07:58:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6af2fba45ad6531a63d1735014f699807f47fbdc
Validity
Not Before: May 11 08:00:41 2025 GMT
Not After : May 12 08:00:41 2025 GMT
Subject: CN=3e6842f03b99d2f41ce897a465dc434886ba116d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a1:ab:6f:20:f2:d6:a2:a5:a5:b6:3b:69:b1:
87:61:b2:3b:b1:fb:d9:96:93:4b:9f:45:50:6f:11:
3d:b9:cd:6d:1c:51:35:39:ba:07:03:77:68:2c:fa:
e9:cd:da:90:32:c7:98:c0:1a:23:6e:57:c6:71:2a:
28:5f:27:18:2a:e0:d7:18:cb:5d:86:40:37:3d:98:
fc:2c:b7:e8:06:65:1c:40:23:d7:ed:21:40:fb:6c:
33:61:25:c6:a0:09:4c:c1:a7:01:6d:9d:7f:d0:38:
0f:93:ad:48:53:73:e1:8c:a7:32:03:66:43:2b:a3:
ca:e0:00:f9:20:43:22:38:6c:9a:30:ef:8f:7a:eb:
98:69:b1:3a:00:23:08:69:79:83:96:37:3b:40:3c:
11:a9:30:49:34:43:f3:97:a8:44:70:b8:93:6e:28:
7f:2f:1e:7e:74:1f:49:5c:59:8a:45:cb:02:af:b6:
71:5b:1d:be:6e:36:6a:e7:db:32:d0:66:1b:b6:33:
76:db:29:19:8c:46:5a:09:67:de:44:12:73:06:89:
ea:ac:c3:ba:06:88:52:3f:8a:8f:26:13:14:b8:c8:
19:a7:24:59:8b:b7:1a:4e:89:ce:d6:35:43:c8:6a:
2b:07:ba:6d:42:b1:52:21:cb:47:cf:94:ff:2b:94:
59:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:68:42:F0:3B:99:D2:F4:1C:E8:97:A4:65:DC:43:48:86:BA:11:6D
X509v3 Authority Key Identifier:
keyid:6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:88:3e:35:f0:ad:75:ff:3d:81:59:0e:d2:e1:13:5c:f6:28:
e4:01:3b:55:33:28:2b:6e:55:6b:da:e5:00:28:ee:fa:04:cf:
17:3c:fa:60:35:aa:76:17:77:27:ec:28:aa:1e:34:1a:ac:59:
6e:34:df:b6:ba:dd:bb:85:1b:40:a2:97:83:b3:d3:84:59:b5:
56:aa:3a:47:65:29:e4:7c:29:41:ab:09:3e:83:2d:6b:b2:25:
69:e1:8e:b0:fa:f3:1c:f2:6c:4e:23:d0:87:4f:e4:b4:db:ab:
bb:90:ed:38:53:dd:ef:91:4c:95:c2:93:81:52:58:07:37:54:
79:af:6b:c1:89:14:a4:eb:22:f1:01:4f:49:67:ba:b1:3f:91:
b5:91:39:fb:fb:18:a6:85:fa:72:4d:d3:db:58:db:4c:98:0c:
a1:30:ad:2c:4a:4a:05:90:21:c4:b9:13:6b:2f:6d:62:5e:a9:
6f:8e:2f:0b:01:9b:0f:99:a3:d6:9a:2e:c7:e0:eb:e9:90:f8:
dd:7b:a5:04:79:b5:fb:73:b9:dd:97:d0:cb:10:ba:09:37:88:
8e:d5:12:ce:05:84:c4:88:49:e4:ce:96:0e:40:c0:13:59:29:
f2:23:25:36:d4:22:a7:77:11:ee:55:ef:54:a1:a8:71:8e:39:
92:ea:17:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:09:02 2025 by rpki-client