Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json)
Hash identifier: ZhPc8sIMQUSzXlf19m9I9YoAWrhZzYoAL4YBcsL2uKI=
Subject key identifier: EF:D3:5F:7C:56:97:8E:87:42:6D:58:69:AA:78:15:5D:CA:06:51:16
Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Certificate serial: 0196BF011524587F733D1C410B13AE127CA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
Manifest number: 1488
Signing time: Sun 11 May 2025 11:00:41 +0000
Manifest this update: Sun 11 May 2025 11:00:41 +0000
Manifest next update: Mon 12 May 2025 11:00:41 +0000
Files and hashes: 1: 5gxDURtK1rmOAdh1eWuh-NkY76k.roa (hash: QaQOgPlbLBzFETMJyWwYJQCd8vML1MyClKfr5uYQDoc=)
2: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: QmKOg90azWctTzjgv8ae1DaMb9P5oloSMQtPTUl25uk=)
3: svZ0I0CIbPuXgkYBH_VdeOt4OII.roa (hash: qDnNSem+sBmAuaKOVojckKZEahJzHvEbGjkFY5x9Sqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:01:15:24:58:7f:73:3d:1c:41:0b:13:ae:12:7c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11
Validity
Not Before: May 11 11:00:41 2025 GMT
Not After : May 12 11:00:41 2025 GMT
Subject: CN=efd35f7c56978e87426d5869aa78155dca065116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:98:9f:d5:94:e8:45:1c:97:ba:4b:fe:76:b1:
fb:47:59:7a:96:5d:03:32:bc:15:ad:8e:e8:9e:c9:
99:2e:4e:4c:7a:ec:e6:d5:76:e0:db:3f:76:3a:2f:
27:2d:3e:2b:5c:a8:9b:67:4f:bb:b9:7e:b1:ce:7b:
90:4f:6e:c0:b2:c8:0d:06:a2:6d:a5:77:17:82:3f:
5a:8a:50:d4:b3:86:7e:7c:e9:24:8a:e1:d1:55:54:
5f:ac:6f:0c:40:19:59:76:8a:36:1f:6a:f6:b5:62:
e4:51:b6:c9:24:81:c8:c2:6e:6f:ae:d3:7d:44:44:
e2:8b:87:98:71:52:69:38:98:e0:4e:4a:0d:7c:be:
03:40:87:82:0c:25:35:28:0a:e5:6f:16:18:c7:e3:
0d:16:9e:05:58:e4:cb:7a:17:f6:0d:2a:5f:e3:f2:
9e:0e:3e:ea:24:5e:6f:82:8a:11:b2:d4:1a:d8:0c:
1b:0c:d0:e4:fd:1e:43:48:20:6a:bc:2d:c2:5b:24:
f9:43:9e:86:f5:76:a3:d7:dd:ad:11:9d:73:bc:70:
73:8f:1a:4a:b0:78:4b:77:00:50:6e:cd:fe:49:2d:
4b:6f:70:5a:b8:2e:a4:b1:5c:0b:4c:d0:0d:ca:94:
7e:6c:ce:2a:80:8c:a8:0c:b8:72:9c:94:ff:19:2b:
72:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:D3:5F:7C:56:97:8E:87:42:6D:58:69:AA:78:15:5D:CA:06:51:16
X509v3 Authority Key Identifier:
keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:df:73:f8:71:fa:c0:7b:01:b3:ad:42:32:f0:b8:de:31:30:
75:a0:fd:ea:41:ab:20:0b:25:7f:e7:9b:48:18:76:61:1f:4e:
43:14:9d:68:88:84:55:06:22:a5:32:86:dc:37:de:17:9d:72:
f3:1c:2b:69:5e:b3:6b:98:46:03:b0:a4:75:bb:93:45:b1:cd:
cb:00:f9:e2:9e:5c:5f:d8:0e:ee:1f:cb:f1:9a:60:2b:df:7e:
3f:85:67:7d:31:ca:f6:63:7e:ab:5f:6b:f9:65:3b:40:a4:25:
1d:df:e1:c1:fe:93:cb:26:7a:09:19:07:a1:f5:c5:4c:d5:92:
b3:57:56:cd:f3:42:b9:6f:d5:60:ab:dd:31:f2:f7:7a:99:fa:
61:fc:b3:c8:cd:0c:44:9b:2d:e2:10:e3:04:74:22:e5:45:b7:
d7:56:e0:08:25:55:d8:77:7e:0e:2f:37:fc:ee:cf:2c:b3:06:
b0:16:38:13:41:f6:da:f3:44:a0:59:85:a1:1f:33:da:9e:65:
07:97:23:db:9f:ae:42:05:79:72:9d:0a:84:c8:56:f8:ab:ee:
ab:3e:e0:58:cb:fd:b3:64:88:7a:ba:13:f3:f2:73:d2:0c:a0:
4a:f3:49:4b:6e:22:2f:d9:01:73:5a:6f:13:90:91:04:48:64:
af:7c:d2:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:48:00 2025 by rpki-client