Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
File: AoNhMH79nzq-_mm9FN4OG9YLbmo.mft (raw, json)
Hash identifier: OKjDPvF9pOWTBaHbofjJ2sSuFQYWawz3AxYsaOvV5xc=
Subject key identifier: F8:1A:BB:D9:86:FF:81:30:62:24:14:B0:C0:42:AC:4B:51:6B:86:92
Authority key identifier: 02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
Certificate issuer: /CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Certificate serial: 0196A49C45183314DD09001E9DB741CF1CF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
Manifest number: 1529
Signing time: Tue 06 May 2025 08:00:26 +0000
Manifest this update: Tue 06 May 2025 08:00:26 +0000
Manifest next update: Wed 07 May 2025 08:00:26 +0000
Files and hashes: 1: 2Zm15nya-qIgvvpfAijKMsgEkJ4.roa (hash: R6UtE66nKKM8V86y41wgOOrSUcLC3hcokGTEuECcZNA=)
2: AoNhMH79nzq-_mm9FN4OG9YLbmo.crl (hash: q5K1t7eMcQ1QmR5fsfffYw7n1ACuPi1rDQCqSdHd0Lc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:9c:45:18:33:14:dd:09:00:1e:9d:b7:41:cf:1c:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Validity
Not Before: May 6 08:00:26 2025 GMT
Not After : May 7 08:00:26 2025 GMT
Subject: CN=f81abbd986ff8130622414b0c042ac4b516b8692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:13:d7:49:37:1d:57:38:77:9c:4b:73:51:e1:
a6:e6:80:5c:e9:bc:f1:6d:8c:80:d3:c8:15:ca:c3:
c0:56:d5:86:68:8b:3a:7a:c4:c5:c7:f3:fe:8c:fe:
19:ad:7f:0e:54:69:d6:4a:e7:8a:88:59:0a:74:2b:
24:0c:52:86:6c:b0:18:1f:05:e6:f5:aa:a9:ed:8c:
b5:05:cf:12:93:02:18:c9:60:51:aa:62:64:23:08:
75:eb:73:b4:cc:2d:6a:35:51:0d:58:91:0e:a7:8e:
c5:7a:c6:de:a0:36:a7:c2:0f:58:7a:76:4a:f1:8f:
15:cf:f4:ce:44:67:d0:27:08:87:4d:20:a7:43:70:
c0:f3:17:0a:e6:3c:80:71:ad:61:1f:a2:c0:5c:fb:
f6:1a:fd:9f:36:e4:65:c4:27:4d:5a:5d:02:4b:1a:
d7:c9:28:73:50:cd:1e:57:78:a0:00:c3:97:0f:a8:
84:b4:81:e3:b0:57:b0:a8:58:49:1d:3a:d4:12:7b:
38:87:7f:4c:28:65:fe:7a:c3:e9:20:2e:e7:1e:a5:
ab:bf:09:05:00:f7:0d:1b:a0:a5:0d:4e:24:7f:2c:
fd:2f:2e:b4:16:83:27:fc:25:d2:cb:d7:bf:5e:35:
4b:f9:7f:e1:0c:86:94:b0:80:68:7b:91:b9:48:a8:
24:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:1A:BB:D9:86:FF:81:30:62:24:14:B0:C0:42:AC:4B:51:6B:86:92
X509v3 Authority Key Identifier:
keyid:02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:3a:cd:c1:7e:58:98:c6:7b:eb:db:b2:e1:e1:65:13:4a:d4:
e4:4e:40:81:4b:ba:4f:92:86:a4:93:fa:23:d7:40:e7:46:8a:
d7:02:3f:72:a4:b0:c9:c6:dd:2a:ce:67:86:20:67:16:a6:24:
00:08:d9:e7:3c:35:96:35:90:33:2d:f1:2a:b8:f9:56:6e:63:
dd:73:24:3f:d5:35:1f:5a:77:dc:b2:93:f2:5d:cd:7c:3c:4e:
e6:e1:f9:e0:1d:aa:10:38:2a:d9:15:3e:aa:b0:dd:3f:50:84:
fa:98:33:6e:7b:91:3c:6c:12:c4:7a:29:71:2e:0d:17:01:77:
2c:55:5b:5c:46:39:72:3c:48:9d:d2:e8:19:1d:a2:17:c9:5a:
df:a8:b6:82:8c:1e:ab:73:32:2d:22:46:a7:ab:0a:9f:41:29:
3c:d0:19:72:4e:ba:c0:0b:d6:fb:d5:f1:22:45:ee:aa:4e:64:
03:c0:7e:05:c9:f6:51:1a:5f:58:1d:ea:f5:0f:e0:cb:97:79:
71:e9:8d:d5:8f:fa:0c:8f:34:8e:e6:8a:93:24:04:43:6d:eb:
23:0c:f9:90:eb:de:73:a8:54:08:72:d5:49:2b:9f:b1:cb:93:
f6:db:83:08:d9:cf:f5:d0:94:7c:bf:02:75:ac:2d:34:54:fe:
a3:d8:c1:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 13:05:54 2025 by rpki-client