Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft
File: AYGCKpyioAj1zRG5-duhbuLGFFk.mft (raw, json)
Hash identifier: 2w2x0ilWijRcEkiV8iskNIUnchbhehA9eMlB1nsblGY=
Subject key identifier: 9D:7B:9D:7F:61:D5:E7:85:F2:FA:5C:58:B8:E3:FE:8D:9F:AF:42:79
Authority key identifier: 01:81:82:2A:9C:A2:A0:08:F5:CD:11:B9:F9:DB:A1:6E:E2:C6:14:59
Certificate issuer: /CN=0181822a9ca2a008f5cd11b9f9dba16ee2c61459
Certificate serial: 0196AF20348BE64F98A21A5AA1D6A37CB3C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYGCKpyioAj1zRG5-duhbuLGFFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft
Manifest number: 72
Signing time: Thu 08 May 2025 09:00:45 +0000
Manifest this update: Thu 08 May 2025 09:00:45 +0000
Manifest next update: Fri 09 May 2025 09:00:45 +0000
Files and hashes: 1: AYGCKpyioAj1zRG5-duhbuLGFFk.crl (hash: yFV22qBDBXNwQg/4ZCDqliKCriDHkyGfHXxsvXvkWWk=)
2: g2CXKA0Q172jL1FvPLyV_ep5ju0.roa (hash: 11gRkpCQE+58w0mcA/1mDxt2mYAAWr8ch94H20jZvcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYGCKpyioAj1zRG5-duhbuLGFFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:20:34:8b:e6:4f:98:a2:1a:5a:a1:d6:a3:7c:b3:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0181822a9ca2a008f5cd11b9f9dba16ee2c61459
Validity
Not Before: May 8 09:00:45 2025 GMT
Not After : May 9 09:00:45 2025 GMT
Subject: CN=9d7b9d7f61d5e785f2fa5c58b8e3fe8d9faf4279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:bb:41:f4:a4:43:33:c4:70:5c:db:70:0d:b6:
03:8d:63:d1:b2:0c:52:b4:75:a8:cb:cf:36:80:de:
a9:ec:b5:c4:04:51:d3:78:a6:68:e9:72:f5:09:50:
54:23:79:fa:82:f6:9f:d1:3c:90:7b:7c:04:28:1a:
b3:87:00:3f:70:32:83:95:e2:e0:d0:57:40:2a:8c:
60:1e:c3:be:b0:65:5e:be:49:9c:dc:9f:74:6e:6d:
e8:4a:84:34:53:ba:a6:f9:e6:da:38:d5:0c:51:b5:
49:cc:0a:47:01:98:42:a0:1c:61:cc:fb:95:1e:7c:
fb:eb:c0:bc:11:0b:1c:91:43:11:17:00:b8:17:38:
15:9a:3c:9c:f9:2c:48:bc:b3:a5:4e:37:c0:68:79:
88:59:91:6e:72:28:b4:63:1f:e6:ed:4b:b0:18:de:
24:41:1d:87:a2:5b:c8:02:1f:5d:71:41:64:64:67:
3c:eb:85:ad:bd:0d:30:43:f6:be:23:8a:05:c5:e0:
bc:86:d9:46:af:6d:26:a0:2d:22:55:11:3d:40:c4:
71:ca:68:6f:2b:f9:73:a2:f8:dd:ec:8d:46:48:0b:
41:03:bc:7e:8e:b6:05:ff:18:b7:91:4a:f5:0a:3f:
41:26:9b:df:d2:45:fd:aa:a4:0e:5c:2b:77:2a:1e:
af:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:7B:9D:7F:61:D5:E7:85:F2:FA:5C:58:B8:E3:FE:8D:9F:AF:42:79
X509v3 Authority Key Identifier:
keyid:01:81:82:2A:9C:A2:A0:08:F5:CD:11:B9:F9:DB:A1:6E:E2:C6:14:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYGCKpyioAj1zRG5-duhbuLGFFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:9f:0e:be:a3:2d:21:87:1e:c4:f7:e9:c4:02:9a:a5:32:09:
54:df:d7:3c:94:e4:4d:28:f8:ba:8a:45:ce:e4:17:bd:c6:06:
34:05:0a:b3:1a:19:78:86:af:17:f8:ad:93:ab:ac:fa:57:c1:
2f:ec:3f:38:16:7e:15:f8:b2:f0:41:d6:d6:cd:c1:d7:2a:1c:
a6:0e:37:2e:ca:9e:26:4b:5c:b5:d7:e0:0d:4a:d1:94:9e:ad:
ab:13:c6:4a:89:04:37:d0:8f:51:5d:4c:2f:7e:36:35:0a:13:
32:de:fc:2e:f4:6e:ab:27:26:fe:9c:63:19:f5:02:04:41:03:
28:98:f3:40:51:43:6d:d1:c5:22:dc:36:56:5b:a7:d1:d5:80:
85:ca:27:8a:e3:cd:a1:95:11:73:5f:1d:64:6c:88:29:89:e9:
e6:37:c5:11:67:34:1e:a1:b2:b5:5d:89:1c:1d:6b:4d:40:b9:
06:4a:e4:ce:eb:bb:83:9c:27:22:a8:63:30:f5:66:4a:1e:a3:
9a:da:51:73:d0:a3:00:5f:c0:e1:bf:e5:77:02:d8:e5:f5:fd:
75:2f:d6:8e:64:e6:80:db:01:e2:b9:e6:9f:6f:30:38:07:b5:
88:26:c1:63:56:33:95:c5:fb:11:cc:58:09:d6:6b:7a:c9:22:
f9:af:1a:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 11:37:33 2025 by rpki-client