Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
File: aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft (raw, json)
Hash identifier: 3IoPJv+jXiipGJax7QycnGeskwADwpPUrndEXg7hPHg=
Subject key identifier: A2:BA:7D:ED:CE:6A:33:50:B5:CF:AC:A7:3D:AA:80:F8:CB:11:63:EB
Authority key identifier: 68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80
Certificate issuer: /CN=6821c8ff0437f7edd829166fde03446f86109d80
Certificate serial: 0196BDEE203551322F1CD7536DD98F9085DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
Manifest number: 1537
Signing time: Sun 11 May 2025 06:00:21 +0000
Manifest this update: Sun 11 May 2025 06:00:21 +0000
Manifest next update: Mon 12 May 2025 06:00:21 +0000
Files and hashes: 1: NmoeARNR5KlnZdBERWuM-iNzYM0.roa (hash: HgaWyfSju8BbiVq620WeDucyKoI/pqgp0CZAcN9HrcI=)
2: OxQUm2cc932_SbZHxUC7er0Sf-I.roa (hash: j3K3BKXe7Af0d19rliHQJv9FsfvecTZMNvSiBZonE64=)
3: ZH-i__Oj4SIwtAOHRRVv0u8J8eI.roa (hash: WEK6Mlk9pLflVadH6HQ/a95uE6G+8NUpMYALAx2797k=)
4: aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl (hash: 6xu1blw7Wy3VXFmn+Pidxa156zHYZAIWAogTACeP2IY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 06:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:ee:20:35:51:32:2f:1c:d7:53:6d:d9:8f:90:85:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6821c8ff0437f7edd829166fde03446f86109d80
Validity
Not Before: May 11 06:00:21 2025 GMT
Not After : May 12 06:00:21 2025 GMT
Subject: CN=a2ba7dedce6a3350b5cfaca73daa80f8cb1163eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ab:c5:93:1f:50:49:79:ac:52:b2:d5:7b:53:
79:6c:3e:3d:7d:48:87:8e:7f:58:ba:fc:f6:d9:34:
98:e6:9a:ac:ae:7a:fd:ca:e6:0b:da:9f:85:4d:fd:
1b:8f:d1:09:c4:91:07:a8:e2:3f:4a:c1:15:0f:30:
37:67:42:a5:64:00:74:2a:33:2b:25:31:b5:a5:ec:
31:9b:56:79:9c:26:21:cf:2b:e3:f0:82:a8:46:de:
7c:cf:b6:11:a0:25:96:3c:19:e9:11:57:9e:63:61:
29:d9:1d:97:ae:3b:cc:28:16:8d:e5:2b:44:62:12:
8e:ad:63:46:e4:9b:cc:82:60:c2:a5:1a:87:b8:72:
4c:bf:29:2e:76:15:2f:b1:4e:c9:f9:e8:03:ac:1e:
f7:e6:ba:17:c2:90:21:f4:b2:8c:51:f1:51:ac:f7:
66:97:57:df:7d:f2:bd:41:f2:d1:25:d7:46:c7:6e:
3c:80:90:3e:fd:ea:e3:33:69:16:0b:91:2d:11:02:
09:d8:06:82:b2:d3:bc:2b:61:9b:85:32:ac:61:68:
64:06:5c:ef:32:71:e9:24:db:7f:05:ab:e9:ab:8b:
1b:95:05:dc:3a:5d:83:cb:2e:c1:fd:a9:3f:b7:e2:
6e:55:e5:54:9f:2b:86:25:bc:92:fb:5e:75:4b:a1:
4a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:BA:7D:ED:CE:6A:33:50:B5:CF:AC:A7:3D:AA:80:F8:CB:11:63:EB
X509v3 Authority Key Identifier:
keyid:68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:c8:2b:6a:b9:e6:c5:4f:9e:96:8a:94:fa:92:17:ec:4c:e5:
fb:e7:40:c1:bc:40:15:56:0a:2c:02:6c:68:32:db:f8:03:87:
4c:64:4b:e3:6d:46:11:f1:c9:c1:f8:1d:b9:df:53:5f:a1:bc:
78:16:69:28:44:74:c6:33:8e:17:10:39:5a:0e:7d:0b:4b:08:
1c:da:f1:85:76:6c:e3:84:07:4a:84:d5:75:12:a6:96:fa:2c:
9d:c7:9f:11:1f:77:62:2f:43:8a:8b:30:15:ce:6a:7b:87:d3:
e8:1f:ce:5b:db:92:9c:aa:4c:fe:68:c2:81:39:df:68:10:e5:
f9:ac:a2:28:63:94:63:88:f3:1a:a5:ec:24:08:89:03:1f:21:
83:30:b2:5e:f2:68:bd:ea:2e:ab:6d:56:3a:a9:48:39:96:67:
f7:33:c4:86:32:2b:77:62:f1:c5:75:73:6f:db:2c:24:89:9b:
37:47:e7:bc:c6:f6:de:0a:6e:b9:6a:f7:cd:62:bd:00:06:d8:
60:5d:cc:ae:0a:92:4a:25:d5:2c:2b:bd:b9:c0:ba:17:37:45:
c0:e8:23:6b:2f:e4:d5:94:ae:bf:27:67:f3:3b:54:ca:4b:da:
bb:40:2c:58:8b:4f:14:b9:4b:7a:e9:e6:f6:c5:83:47:67:96:
8d:ee:9f:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:13:16 2025 by rpki-client