Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
File: AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft (raw, json)
Hash identifier: al+2Fn5kOUgMdx6xUBv45dbR3OUlD4vE0h1DMVrpk8k=
Subject key identifier: 79:BF:3E:A0:9A:74:9D:0E:15:1C:98:61:78:83:73:84:CE:A4:70:94
Authority key identifier: 00:08:58:94:96:BF:86:D2:D0:F8:87:4B:76:CA:C8:43:02:5B:CD:3B
Certificate issuer: /CN=0008589496bf86d2d0f8874b76cac843025bcd3b
Certificate serial: 0196ACC3DB27B28129FEA5479688E38CB912
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
Manifest number: 0DED
Signing time: Wed 07 May 2025 22:00:38 +0000
Manifest this update: Wed 07 May 2025 22:00:38 +0000
Manifest next update: Thu 08 May 2025 22:00:38 +0000
Files and hashes: 1: AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl (hash: UtVUO7fcCkG3SMtrR6bQ6KKBjETwcdPxDQcpv6NQC4w=)
2: D6FQ_AOx7VEUAwBlUYJ5Pt1jupM.roa (hash: 4lHXyj3pRBx2LFAwlRyUS6mFr8ntH6TaBTAezCtdNUI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 20:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ac:c3:db:27:b2:81:29:fe:a5:47:96:88:e3:8c:b9:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0008589496bf86d2d0f8874b76cac843025bcd3b
Validity
Not Before: May 7 22:00:38 2025 GMT
Not After : May 8 22:00:38 2025 GMT
Subject: CN=79bf3ea09a749d0e151c986178837384cea47094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8c:56:79:7b:68:5b:b9:fe:6a:26:aa:10:1b:
b5:df:42:4f:63:ba:a5:34:a4:03:44:7a:5b:73:66:
07:54:16:1a:30:a3:ce:94:1f:43:50:f6:7f:b3:18:
69:7c:0c:8f:88:5d:09:fe:8c:41:3f:dc:c3:13:33:
36:7f:4b:08:60:76:82:72:68:27:b6:be:54:5b:ad:
ee:63:3d:e5:c0:da:ab:77:60:64:ad:cd:7d:35:4d:
28:7c:8c:d8:27:a4:a0:2a:09:40:3b:c0:34:e0:de:
64:88:74:d3:6d:95:d7:24:4c:69:c8:6b:f8:71:bd:
92:6f:0d:35:9b:ef:10:90:4e:e8:e0:aa:f9:ac:31:
ee:ee:9d:c9:89:cc:80:8c:a2:21:4b:f6:57:84:ba:
99:82:83:bd:32:02:6f:19:35:ad:30:4c:30:43:fb:
80:37:b9:73:5d:89:c7:43:c6:dc:aa:e9:5d:98:71:
4a:00:40:32:e9:23:b7:5e:02:8b:28:47:74:ad:74:
9e:ff:b5:c2:8e:5c:39:9b:33:30:25:7e:ba:8a:ed:
e8:d4:2d:29:c3:37:9f:97:64:0b:76:70:bd:b4:c6:
90:4e:97:52:35:43:c6:eb:fc:43:a9:9a:72:b4:6d:
b8:86:b5:81:21:8e:95:29:cc:30:4a:40:5b:4a:b6:
5c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:BF:3E:A0:9A:74:9D:0E:15:1C:98:61:78:83:73:84:CE:A4:70:94
X509v3 Authority Key Identifier:
keyid:00:08:58:94:96:BF:86:D2:D0:F8:87:4B:76:CA:C8:43:02:5B:CD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:7e:3e:93:5d:6b:7f:3b:fb:5f:49:62:d6:95:7e:75:e3:a1:
24:66:4b:3b:24:dc:4c:32:d4:c3:68:03:c8:90:95:08:07:9b:
c2:20:21:c8:11:21:f9:2c:38:a3:62:11:2c:43:85:63:38:35:
cf:60:28:e8:20:59:29:39:98:c0:b8:bc:15:30:18:dc:1c:25:
70:18:1f:8a:4e:9e:3e:c0:71:2e:6f:49:69:d3:20:f6:ef:d3:
b4:37:7d:ad:6b:99:02:3b:cd:64:97:6b:b8:07:d1:d4:12:61:
ff:c8:2a:32:8e:f1:76:86:2d:03:70:bd:d2:a7:82:fa:e4:02:
bd:af:08:4b:21:eb:c8:08:0f:d3:88:43:c4:41:db:41:1c:9a:
ae:b0:04:ec:4d:eb:80:d3:67:16:fb:7c:c0:e1:5e:e6:4b:41:
02:f3:44:87:9d:d8:c7:6e:31:05:08:76:7b:18:00:75:1a:f1:
45:97:50:44:a7:3e:ba:12:72:84:16:31:9d:7a:c7:40:62:b5:
e4:ad:64:a4:56:1e:01:b4:b6:a6:f7:d9:fd:fd:c2:d0:77:7a:
63:bd:9e:69:fd:ca:05:dc:ea:65:14:3e:5e:a7:e5:ad:c9:97:
ec:80:b3:0a:3b:98:20:65:e6:a5:c3:69:83:f0:43:95:b6:7a:
0a:45:89:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 01:38:14 2025 by rpki-client