Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
File: ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft (raw, json)
Hash identifier: pY/hRIuO2rYFKXsy/ZtU8xud7eG4vCAiij+aU5gwRx8=
Subject key identifier: 52:5C:BD:48:7F:22:0A:AD:5E:19:8D:8F:FF:C3:30:11:29:5F:DA:20
Authority key identifier: 6B:20:81:8B:18:6B:0B:9C:B0:9A:F5:42:0D:1E:5A:E3:34:FE:39:74
Certificate issuer: /CN=6b20818b186b0b9cb09af5420d1e5ae334fe3974
Certificate serial: 0196B66BD84FA59EFCA3E84A5DF7618A8B98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
Manifest number: 1532
Signing time: Fri 09 May 2025 19:00:43 +0000
Manifest this update: Fri 09 May 2025 19:00:43 +0000
Manifest next update: Sat 10 May 2025 19:00:43 +0000
Files and hashes: 1: ayCBixhrC5ywmvVCDR5a4zT-OXQ.crl (hash: h52USNJsvP//O6OWPyFcAwrlSfpfelGrfYD0wCOxJsY=)
2: o_9E0nw7QGxoWCZk4QqgNmZyf9E.roa (hash: 1PmMo5WtlImsrpdUj9rWhTyVCZubOTGK5D/YW7g4Mss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:6b:d8:4f:a5:9e:fc:a3:e8:4a:5d:f7:61:8a:8b:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b20818b186b0b9cb09af5420d1e5ae334fe3974
Validity
Not Before: May 9 19:00:43 2025 GMT
Not After : May 10 19:00:43 2025 GMT
Subject: CN=525cbd487f220aad5e198d8fffc33011295fda20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cb:6b:88:6b:bb:ab:1c:d5:49:12:fd:9e:38:
36:1c:2a:db:2b:78:45:bc:93:1f:ee:c5:1d:af:58:
a2:3a:d5:f2:d8:87:c6:ba:e6:be:49:2e:18:d9:9a:
72:5c:88:57:ae:22:1e:48:68:66:37:b0:95:a3:f1:
97:d1:26:68:79:6a:8c:27:d4:f2:b5:07:16:6a:f5:
a1:d4:1b:e2:59:b9:16:7a:ad:7f:ba:9d:20:e8:56:
ac:e0:12:cc:3d:8b:a2:ae:fb:f0:8f:aa:50:38:a4:
9d:e6:e4:1b:d2:2d:55:32:fe:23:53:63:4e:ad:18:
39:be:56:e4:83:77:a7:77:b5:ce:1b:e9:ce:38:25:
bb:44:3d:de:3d:11:44:8d:09:85:18:7d:33:ae:6b:
2b:d2:aa:ed:99:44:13:17:3e:42:6b:81:b0:2a:6b:
96:f1:d4:0d:33:b8:bd:1b:c7:6c:f2:94:5b:1f:05:
b4:e3:35:dd:6c:49:cd:0c:7f:ce:bf:3a:81:e1:56:
31:9f:9f:39:5e:c5:50:d9:31:d2:dd:27:cd:fe:a6:
6c:e1:f9:02:72:68:41:2b:2b:53:ac:e1:aa:ed:82:
c3:b6:d3:2d:d0:60:ce:8f:87:6f:15:9d:81:91:51:
cf:db:c8:fb:50:5f:62:bd:a5:81:e9:a3:c7:f3:7f:
b7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5C:BD:48:7F:22:0A:AD:5E:19:8D:8F:FF:C3:30:11:29:5F:DA:20
X509v3 Authority Key Identifier:
keyid:6B:20:81:8B:18:6B:0B:9C:B0:9A:F5:42:0D:1E:5A:E3:34:FE:39:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayCBixhrC5ywmvVCDR5a4zT-OXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/02f95e-5fe5-4c9a-84d7-e5c9c2e8e9bf/1/ayCBixhrC5ywmvVCDR5a4zT-OXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:3a:0e:32:fc:bb:7f:d4:15:8c:8b:f4:2b:82:30:f8:bd:f9:
66:e9:eb:fd:b9:5a:4d:73:b3:90:40:c3:4d:38:41:fd:80:d3:
b4:31:5d:1e:91:2f:77:ae:13:db:ac:a4:f6:7f:14:1e:5c:e7:
7c:c1:c8:63:79:8f:37:ef:a2:f6:36:ed:95:3a:7a:71:5a:55:
0a:ac:d3:7e:c6:49:4b:3f:fa:cf:e5:c5:14:89:0b:15:23:11:
4c:91:e9:2d:78:6f:72:1c:91:2c:c9:b9:c3:79:1c:bc:e8:b1:
1f:b6:45:c1:57:1f:8a:ea:49:04:10:ca:b6:52:8b:90:d9:bf:
56:8b:85:01:a5:14:2e:c9:63:29:93:ce:03:10:73:5a:bd:27:
d6:67:29:e7:90:5d:a1:09:8a:bd:8b:9f:d1:2e:97:f2:f4:41:
bb:d3:d8:09:7c:7e:c1:e5:ec:a4:a9:1a:13:5a:57:26:1d:dc:
b5:34:b7:df:91:8d:fb:72:7d:a9:49:0f:c3:dc:d9:69:5a:f5:
04:47:b7:a1:fc:1a:01:12:00:29:80:e3:cd:11:2d:d7:ff:af:
99:fe:29:70:b0:cf:2e:ec:dd:16:86:16:ac:07:24:68:5a:5b:
11:c7:37:c0:9a:f3:99:ed:4b:03:dc:13:3a:bd:c0:20:22:0c:
76:63:a0:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 02:57:52 2025 by rpki-client