Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
File: 0aiWnX4yy_knZkstxDa5bnFJpis.mft (raw, json)
Hash identifier: TFkFVIwi5/SNVUGtS0MBZoI9FoXaI6ofIWROfzARoc4=
Subject key identifier: 3C:BF:AB:20:87:72:14:E2:62:7B:3C:96:5D:3D:7B:68:2D:87:37:10
Authority key identifier: D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
Certificate issuer: /CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Certificate serial: 0196C2393058BE7B3874C34CC1BF1AFF6FEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
Manifest number: 0E6D
Signing time: Mon 12 May 2025 02:00:49 +0000
Manifest this update: Mon 12 May 2025 02:00:49 +0000
Manifest next update: Tue 13 May 2025 02:00:49 +0000
Files and hashes: 1: 0aiWnX4yy_knZkstxDa5bnFJpis.crl (hash: 1R60FxCCh7IX4qaZgOEGvotnmazQBQ18RdhW6ZfsGzQ=)
2: p1fyn5poKGi3v6udklaZLK6DaPs.roa (hash: ksuBLRSUua1zFmd4JmcnhcAsP8MWyD8OR/dcK6d/pkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 02:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:39:30:58:be:7b:38:74:c3:4c:c1:bf:1a:ff:6f:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Validity
Not Before: May 12 02:00:49 2025 GMT
Not After : May 13 02:00:49 2025 GMT
Subject: CN=3cbfab20877214e2627b3c965d3d7b682d873710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:69:3c:b8:02:1f:7a:88:ca:78:40:32:89:d0:
4a:3d:74:24:42:6e:f5:6c:b6:05:5e:13:c4:3f:46:
d8:9f:22:3f:fe:59:0f:e8:7e:fc:45:4b:49:04:d1:
83:58:e1:d9:f5:c2:7b:cc:28:67:c6:72:56:e1:0b:
89:8e:8b:be:2a:cd:0c:51:27:79:0a:a8:71:15:0b:
10:53:b7:a5:dd:00:50:2c:41:98:f1:2e:c5:05:f5:
dd:15:50:2b:12:97:b2:19:b1:8c:08:96:36:98:55:
f7:aa:28:8f:a9:03:76:03:9a:15:73:08:d2:7b:af:
62:a1:bf:69:d1:fd:d6:8b:1a:33:4b:bd:91:9c:78:
d6:a5:02:8e:46:0c:d9:48:c6:8f:40:77:e9:0e:a1:
83:42:6c:55:b0:4d:95:71:98:03:49:7a:f5:c0:7d:
f2:8a:35:0f:98:18:09:10:42:2c:26:b7:23:32:36:
2b:3b:4f:4a:f2:e9:c0:ec:15:fe:a1:10:5f:85:f1:
c1:d2:cc:28:14:ff:3d:1b:d6:f4:90:cc:31:45:0a:
04:ec:27:69:47:52:4f:68:33:c6:bf:83:ff:0e:5a:
2a:25:d2:7a:e2:fe:05:12:eb:a4:68:cb:f9:31:ca:
a0:e5:1c:01:f1:30:22:11:8b:c7:1f:86:e3:b0:7d:
a7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:BF:AB:20:87:72:14:E2:62:7B:3C:96:5D:3D:7B:68:2D:87:37:10
X509v3 Authority Key Identifier:
keyid:D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:1c:d5:57:15:a4:fa:46:3d:4d:c1:e8:b2:6f:8b:ae:d8:51:
d4:c2:af:7a:8f:95:18:cf:d8:3d:65:b3:de:0a:1d:0d:59:61:
78:81:a9:d8:0c:d2:b2:92:e9:8d:0a:72:6b:7d:f5:c6:29:e5:
f2:27:57:66:1c:12:a2:7b:74:3f:9f:d7:b4:8a:e5:b5:c7:7b:
86:15:43:ad:e9:b4:58:d4:3c:29:1b:2f:4b:0a:aa:d3:7b:4b:
40:42:32:6e:0d:ac:63:34:58:42:97:2b:27:a2:a5:87:0f:6b:
13:1a:ff:f1:cb:21:18:6d:4b:a3:f4:6f:6c:99:53:a1:fe:6e:
b3:3f:c1:34:67:38:49:0f:93:72:cb:3d:6a:31:33:7a:d1:56:
6f:d4:90:70:64:b7:44:b1:8c:76:c7:4d:8c:07:9f:6d:48:f9:
fe:c1:d2:8a:aa:68:87:48:42:95:69:a7:0a:6a:69:37:5b:df:
f2:c4:39:c7:41:d2:b2:38:ea:97:6f:cf:72:23:56:71:8b:54:
81:9a:66:fb:27:a2:44:d1:b7:c4:ca:7c:1b:c6:a4:cb:f1:ca:
62:78:4f:cb:fa:e2:45:f1:8a:3d:c9:13:f0:8d:7f:a7:87:78:
6f:76:c9:94:56:3d:2f:1a:38:c2:f1:b9:6e:17:68:87:aa:83:
c9:1a:4e:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 12:43:35 2025 by rpki-client