Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: T19C0IZY3mEyBCf0R9W6jLkaakxXkl82MCnTH/oE/gc=
Subject key identifier: A5:D5:12:57:11:64:EC:91:32:58:34:06:48:5C:92:18:05:8A:DC:5B
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 0196CE06403B5DC1B7B2D1A9D2F6185A5894
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 06AE
Signing time: Wed 14 May 2025 09:00:38 +0000
Manifest this update: Wed 14 May 2025 09:00:38 +0000
Manifest next update: Thu 15 May 2025 09:00:38 +0000
Files and hashes: 1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=)
2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: zokced9BmC2Cj742NtdwH2UHztITio01M68jFDvXyzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:06:40:3b:5d:c1:b7:b2:d1:a9:d2:f6:18:5a:58:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: May 14 09:00:38 2025 GMT
Not After : May 15 09:00:38 2025 GMT
Subject: CN=a5d512571164ec9132583406485c9218058adc5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fd:39:ea:63:67:e1:15:52:3b:c4:f1:cd:ab:
d0:84:c8:ca:b3:10:7e:16:a3:ab:16:77:ae:06:ea:
cc:7f:73:47:01:e3:6a:bc:32:72:fa:05:e5:e4:83:
81:42:cb:22:24:58:a0:03:2c:2a:ae:a3:b9:ba:2c:
d4:06:6d:da:be:70:87:e2:86:f1:91:96:56:73:cc:
cd:3d:cd:83:00:50:c1:ea:3b:fa:ce:25:f2:ee:74:
f3:7d:3a:2c:7d:6d:73:f1:fe:72:8e:54:7e:a1:19:
80:81:32:35:66:32:f0:48:79:6f:7e:ed:bb:db:bb:
a4:5e:f6:81:16:8b:f1:e8:01:d6:d4:b3:e6:72:d7:
44:e6:2c:9a:e9:73:31:26:ad:0d:b6:b3:7f:96:7e:
64:1d:5b:75:4c:1c:9d:98:49:4a:b7:22:bd:da:23:
bd:65:be:91:92:6c:5e:e3:e7:55:b6:ce:f7:d8:78:
aa:22:37:e9:6e:7b:d7:6f:94:1b:17:5e:9c:c0:c3:
9d:70:a3:f9:df:92:af:52:af:c3:12:52:3c:db:1f:
3e:84:9e:ea:d4:61:40:f8:99:48:5f:6f:cb:0d:24:
e1:f1:e0:41:a9:50:b7:7a:5a:7a:73:da:5c:ca:da:
45:6d:73:4b:7e:4c:28:fc:52:bc:fc:c3:02:7c:14:
f6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D5:12:57:11:64:EC:91:32:58:34:06:48:5C:92:18:05:8A:DC:5B
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:a0:fd:2e:63:67:f0:97:41:33:ca:06:5d:be:a3:eb:2d:06:
74:d2:7c:ff:26:e7:d3:49:4c:42:34:f7:bb:b6:eb:0a:96:3d:
3b:39:b8:57:5c:95:23:8a:53:8f:f7:22:10:a4:37:60:e3:46:
30:5a:8a:8a:f1:1a:b4:bd:f6:6e:00:31:32:ab:47:44:8c:79:
4f:e8:9f:aa:bd:d2:66:5f:3f:00:11:56:b8:ca:fa:43:29:18:
1e:08:cd:85:95:36:c1:39:54:24:61:e7:e4:ab:5a:ee:d6:67:
0c:13:2f:a8:4d:64:ef:28:31:c4:8f:72:09:8c:b0:d8:19:82:
0f:b4:90:5f:0f:31:c1:c2:6e:f8:f3:0e:fd:9e:cb:01:67:c1:
f7:9a:d4:4d:98:f2:55:f7:98:89:cc:78:e6:34:5f:70:77:86:
2a:e8:43:c6:ca:77:85:f2:5d:ee:49:e4:7d:6e:89:3e:9d:c8:
b5:c1:2b:bf:fa:c2:88:f6:8c:aa:9f:25:73:8e:6a:b1:cb:a7:
c5:ae:d8:3c:8f:69:a4:c6:d7:2e:e0:d6:f4:16:d4:82:e9:a5:
f6:d4:87:3f:41:6f:49:ce:ec:a4:b1:6a:57:7a:5f:c2:b0:bf:
ef:17:b9:1c:63:70:93:76:a2:12:bb:ce:d5:b2:83:d8:6c:cc:
e0:4e:07:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 19:23:56 2025 by rpki-client