Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
File: aQqw79d1diHIbXtpx29gssP6w1Y.mft (raw, json)
Hash identifier: a1Pb464vZNKoMpoShZt9550FLE5yfq16QPd5y+5hIq0=
Subject key identifier: EF:C8:D3:B7:44:10:4A:27:08:99:99:EC:04:31:2F:85:D6:C4:B3:AE
Authority key identifier: 69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
Certificate issuer: /CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Certificate serial: 0196AEE96440218C5B69BDBE43FB94ACCA19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
Manifest number: 027B
Signing time: Thu 08 May 2025 08:00:53 +0000
Manifest this update: Thu 08 May 2025 08:00:53 +0000
Manifest next update: Fri 09 May 2025 08:00:53 +0000
Files and hashes: 1: aQqw79d1diHIbXtpx29gssP6w1Y.crl (hash: pzmcO4fdhq7ItN8QcJI/+7n6+YjjxHvw/k621OD4kj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:e9:64:40:21:8c:5b:69:bd:be:43:fb:94:ac:ca:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Validity
Not Before: May 8 08:00:53 2025 GMT
Not After : May 9 08:00:53 2025 GMT
Subject: CN=efc8d3b744104a27089999ec04312f85d6c4b3ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0c:94:d8:52:76:84:b9:4e:08:5d:5a:92:43:
7d:34:a8:ad:29:b4:b2:a7:40:7a:69:93:63:3b:48:
cf:d6:91:40:f0:47:5c:15:cb:41:6f:56:3b:24:59:
1c:7c:77:62:9a:e7:11:d6:8a:e5:20:5d:28:d9:fe:
62:64:a6:39:60:33:03:a4:94:87:3f:0e:29:d9:d2:
09:9f:a0:a1:92:d4:cf:30:c6:68:3f:b1:8b:a6:89:
ad:d8:ab:92:69:41:12:d5:5c:d5:a3:a8:1a:e9:6d:
26:ae:8a:87:c7:b2:5b:0b:ba:08:2d:68:92:96:90:
77:0a:1c:da:38:8a:4f:c8:1e:5a:8c:19:ae:32:c0:
e0:a0:2a:06:7c:9d:ca:be:71:a5:c0:1e:8b:49:d0:
ca:46:d0:65:4e:8b:03:b8:bb:9d:50:e2:72:fa:81:
e7:3c:5e:97:2a:4a:34:dd:13:54:fd:b1:8a:57:17:
78:f5:6b:4d:7e:18:7f:39:21:a7:fb:0f:0a:af:f9:
fb:ad:91:f6:1e:3f:d4:18:1a:ab:a6:40:b3:bf:16:
7a:73:b2:b5:4a:a2:68:3f:7e:3a:5d:37:13:be:d8:
5a:01:b2:ac:49:63:5c:ba:42:7a:20:da:bb:78:1e:
a0:48:ac:2a:df:62:d6:de:df:f7:62:69:fc:f5:07:
53:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C8:D3:B7:44:10:4A:27:08:99:99:EC:04:31:2F:85:D6:C4:B3:AE
X509v3 Authority Key Identifier:
keyid:69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:dc:21:47:3b:5c:9f:7f:76:00:4c:17:49:cf:67:b9:31:b6:
2a:36:6c:14:bd:0f:3a:41:68:17:1d:d8:c2:70:7a:8b:9a:59:
b5:93:4c:4f:83:cc:e5:ee:a4:56:8e:f3:11:ab:2e:8a:9c:86:
4d:e6:2a:80:11:fa:2a:f5:d7:88:03:02:7f:de:41:33:61:09:
b9:de:b6:29:d4:7a:b7:61:3b:2d:9d:0e:d8:51:53:c4:ad:5d:
51:eb:05:80:76:fa:94:fc:45:b7:30:38:94:56:7d:9c:99:bb:
27:1f:7f:50:1f:2f:61:eb:52:5a:b1:4f:d1:f9:22:65:43:2d:
4e:ca:78:97:bf:63:3a:6b:b8:28:cd:37:48:46:a0:b0:e5:ba:
03:a0:c2:83:72:21:eb:9e:db:39:69:1d:42:ba:44:4e:ca:b9:
35:19:c7:95:4b:b7:3c:01:a3:a8:6f:dd:b3:ae:8f:af:ba:85:
23:38:bd:9e:12:af:50:05:57:f4:a5:e5:c3:a4:38:50:f8:2f:
c2:f6:f8:9d:5f:7a:06:2a:a7:fe:cb:b0:ff:0f:04:4c:61:38:
c4:a7:fa:ad:8c:27:f3:bc:9d:36:3b:29:ea:22:b9:2b:bf:81:
7d:c5:10:d9:c8:bc:ed:60:70:bc:41:af:56:ba:6e:36:34:5b:
69:09:05:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 12:40:13 2025 by rpki-client