Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
File: aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft (raw, json)
Hash identifier: woAzi5HXmGHb6t5G17vvdJPioi52XJkD4nab959HGy4=
Subject key identifier: C7:A2:41:BB:05:9D:06:19:31:F3:C9:76:07:72:E8:14:01:36:1A:CB
Authority key identifier: 69:8D:47:BE:DF:84:89:AA:02:D3:DB:46:F9:8B:4F:7A:26:4B:48:0A
Certificate issuer: /CN=698d47bedf8489aa02d3db46f98b4f7a264b480a
Certificate serial: 0196C80443EFC1FD2A399D61001AE08768EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
Manifest number: 14C8
Signing time: Tue 13 May 2025 05:00:44 +0000
Manifest this update: Tue 13 May 2025 05:00:44 +0000
Manifest next update: Wed 14 May 2025 05:00:44 +0000
Files and hashes: 1: aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl (hash: QUSMi/rZD90clmDkXXGx6tQIctXIBlhEvObvixF+deU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:04:43:ef:c1:fd:2a:39:9d:61:00:1a:e0:87:68:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=698d47bedf8489aa02d3db46f98b4f7a264b480a
Validity
Not Before: May 13 05:00:44 2025 GMT
Not After : May 14 05:00:44 2025 GMT
Subject: CN=c7a241bb059d061931f3c9760772e81401361acb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:23:35:36:03:ff:47:6e:7e:b2:84:f6:86:45:
92:df:06:56:45:f5:f9:9d:f0:55:1d:e7:b5:c2:4b:
83:c7:4f:26:aa:52:fa:a8:8b:ca:39:18:67:6b:de:
1e:a8:c6:97:4c:5a:78:bc:d1:1f:0e:50:b8:ec:1b:
69:89:9a:7b:22:01:92:40:75:bf:05:18:3a:8b:45:
1a:dc:b8:e0:95:77:52:c5:74:22:19:62:2e:bb:52:
91:f0:74:4f:db:d1:24:b0:60:f2:66:d7:5f:7c:93:
48:a1:b3:43:c3:43:07:53:0f:2a:e6:1a:d9:1c:6e:
e5:72:e0:a6:82:56:6f:2d:16:b0:30:a0:d9:6d:9f:
dc:3b:47:74:ed:be:69:9a:fc:8b:8b:05:af:5e:29:
d8:95:d0:09:71:31:29:13:d3:17:90:c7:7b:c5:bc:
58:b0:a5:d6:07:90:e2:86:7a:3e:2d:94:02:e9:3f:
58:92:17:34:9f:7b:4b:f2:e2:63:c3:7a:d3:16:bf:
a8:95:fa:11:0d:9f:b6:40:aa:f3:7e:d4:91:d7:cc:
17:70:5c:bf:ba:4b:6a:d8:4b:59:15:8c:03:c0:99:
fe:a4:d7:a8:b2:9c:72:85:c1:ee:49:76:06:fc:e9:
c7:4a:57:85:c8:ec:62:3a:cb:91:8c:af:2c:77:24:
01:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A2:41:BB:05:9D:06:19:31:F3:C9:76:07:72:E8:14:01:36:1A:CB
X509v3 Authority Key Identifier:
keyid:69:8D:47:BE:DF:84:89:AA:02:D3:DB:46:F9:8B:4F:7A:26:4B:48:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:cd:d4:70:b9:b9:50:e4:33:22:ab:af:42:71:d3:b4:f5:fe:
f8:1d:7e:d4:32:4b:39:75:8a:e4:bf:83:40:77:90:64:f4:4f:
a5:32:2f:33:6f:2e:e8:9e:e6:0e:a4:a3:d6:f6:43:e9:9d:a7:
b9:14:8e:bd:63:4e:a1:76:f5:36:78:fd:7e:a6:59:9e:b9:70:
15:90:2b:7c:27:67:e2:eb:c7:6f:20:2e:82:b7:65:7a:bd:4e:
8b:fe:7a:88:d4:45:cf:49:d3:45:e4:15:f3:8a:a7:2a:3f:92:
cf:38:0b:7d:d6:c2:d6:5a:45:c9:96:b8:7a:77:34:f9:f6:bc:
9b:4a:83:08:99:fe:11:3e:b7:b1:4f:a5:d3:43:38:22:42:34:
e4:2c:a2:7b:06:77:58:57:61:d6:a9:cb:d4:70:b3:a0:61:c2:
43:5c:e4:33:fa:05:2b:d3:0d:1c:1f:64:d4:f0:1e:a0:1a:3b:
88:20:a3:56:62:f9:91:67:25:57:6e:6c:d1:f3:43:5a:79:59:
e9:4a:20:c9:51:f0:a9:ad:d0:0b:70:41:a2:31:5f:74:2e:f2:
46:39:39:43:77:ae:c3:d7:74:a7:c7:f3:1d:eb:be:d4:14:cf:
c7:60:a6:c8:0f:04:ca:6b:aa:33:60:53:c8:61:76:01:43:1f:
03:7d:da:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 12:40:36 2025 by rpki-client