Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
File: aNogbIPVBeJUs-88dlD5-5NFNDU.mft (raw, json)
Hash identifier: xYqQOAbYQIWMD2kSOHyHtNK8bu2MhFmpjKcrobwd5l0=
Subject key identifier: 17:3C:08:73:4E:75:42:19:33:FB:12:FF:CB:30:16:89:62:80:19:2F
Authority key identifier: 68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35
Certificate issuer: /CN=68da206c83d505e254b3ef3c7650f9fb93453435
Certificate serial: 0196B446A18C3E601A32D7EA0DEDE739B61F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
Manifest number: 081E
Signing time: Fri 09 May 2025 09:00:49 +0000
Manifest this update: Fri 09 May 2025 09:00:49 +0000
Manifest next update: Sat 10 May 2025 09:00:49 +0000
Files and hashes: 1: 9yjOyCjaNQvZmslgCNfY4UdjDvM.roa (hash: BLcuMbjq4mGuK5Vn41A+M+OAou14cd2H96ukojI5mmM=)
2: aNogbIPVBeJUs-88dlD5-5NFNDU.crl (hash: KP7NVEDAOPWfFEjeN/G7xXOafM8AXMIF8E+MynM6cNs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:46:a1:8c:3e:60:1a:32:d7:ea:0d:ed:e7:39:b6:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68da206c83d505e254b3ef3c7650f9fb93453435
Validity
Not Before: May 9 09:00:49 2025 GMT
Not After : May 10 09:00:49 2025 GMT
Subject: CN=173c08734e75421933fb12ffcb3016896280192f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:db:0c:c4:c5:08:fa:ae:39:a1:71:6e:ea:
72:f3:d4:25:0e:12:af:4c:7c:10:da:2f:a9:7a:14:
a1:07:1e:61:6b:f1:85:04:91:c9:05:a5:cb:43:ce:
e8:c0:c8:9c:9c:b7:3b:48:5e:a7:e9:9a:0a:ac:6f:
aa:29:92:2a:a6:bf:af:9a:98:62:5d:b7:5e:cf:33:
b7:1a:b2:4b:c6:36:42:c0:99:87:74:d7:fe:06:42:
46:de:49:74:2f:5a:87:c5:a4:67:a4:e3:cf:06:68:
c6:7b:f9:34:77:7e:a9:94:9d:92:ef:ab:17:e1:57:
41:d8:5a:7d:6e:55:c4:97:75:e6:f0:0f:44:73:e4:
25:42:9c:1b:a0:d6:2c:a2:4d:99:23:76:34:94:c3:
8e:4c:e6:b1:b7:44:aa:fd:a4:15:5e:29:85:c9:4c:
70:7a:c8:72:cb:a4:0b:a1:d9:da:b5:09:ca:58:32:
fc:8a:01:8d:fb:3b:3e:86:4d:df:d3:b4:f1:12:f9:
2e:ae:12:8d:15:95:2f:e9:36:8a:8d:93:b1:d5:52:
c5:d8:be:d7:12:43:78:ff:81:6b:b5:6d:8d:d9:23:
a8:2d:b8:5d:47:1d:d8:80:3f:0c:d0:de:a0:9a:b2:
ae:cc:8d:f1:46:07:ec:79:a9:8e:24:b7:8c:d3:2f:
18:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:3C:08:73:4E:75:42:19:33:FB:12:FF:CB:30:16:89:62:80:19:2F
X509v3 Authority Key Identifier:
keyid:68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:8b:1e:a0:f6:2d:ad:82:5d:d7:17:92:34:2f:b8:1c:45:1c:
79:15:34:df:a8:c8:63:81:e7:96:cf:71:d1:ae:d5:a2:0b:d7:
32:59:bb:c5:6b:24:99:cc:f8:23:65:86:6c:c6:a1:84:63:c2:
e0:b1:3f:9e:07:16:47:18:fc:81:71:a6:6a:c7:be:d0:24:51:
73:62:70:a1:a8:9c:50:ed:51:3e:8a:70:20:24:4d:9a:8a:0a:
92:37:a6:35:74:fb:2f:d4:04:00:af:eb:80:36:f6:8b:c3:80:
a2:7f:b7:5d:72:03:2f:f1:f5:3e:d9:b1:75:3d:8e:89:03:51:
91:52:ce:4b:47:d8:96:f8:0f:90:b5:1e:0b:e0:af:60:60:fc:
3a:0a:8e:bc:10:1a:c8:8a:55:c2:79:0e:86:73:6c:96:8d:9f:
e6:de:06:92:d2:ec:f8:b3:2c:90:64:56:d3:5d:3a:52:a6:fc:
b7:83:da:c6:75:a3:80:fc:7a:01:d8:b0:b6:8b:02:42:89:83:
fc:dd:fb:34:46:4b:19:cb:b0:81:78:e4:3e:5d:18:0a:f9:41:
54:1b:50:58:40:7c:26:a0:95:53:90:43:f9:a1:d1:61:97:b2:
c9:fe:38:96:ea:48:fb:46:ff:11:f9:b2:67:19:53:d2:14:da:
bb:ef:0f:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 18:10:12 2025 by rpki-client