Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
File: AYzG9GaiQWV79exSpjDa6wEiL4U.mft (raw, json)
Hash identifier: FhwJRhNGIp1JcKp+RRf1z+1QRUO0X1EsJ1LL5URUkyg=
Subject key identifier: C6:22:21:A7:1E:3A:DE:EF:03:A4:CA:11:5C:77:75:94:74:98:1D:D2
Authority key identifier: 01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
Certificate issuer: /CN=018cc6f466a241657bf5ec52a630daeb01222f85
Certificate serial: 0196AF5700360DCD792B056002B3FC9865C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
Manifest number: 1530
Signing time: Thu 08 May 2025 10:00:36 +0000
Manifest this update: Thu 08 May 2025 10:00:36 +0000
Manifest next update: Fri 09 May 2025 10:00:36 +0000
Files and hashes: 1: AYzG9GaiQWV79exSpjDa6wEiL4U.crl (hash: kwFuIPkY0N9+tj8niDdf74ejoHjaMgOZWxc7vkwTKfA=)
2: dZX-Kvgl9o6BfgDGAkWUKr6z6So.roa (hash: pk+V195UpaNyzxBRisHlqyHLbz6AqZTl0n9ayxOtcCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:57:00:36:0d:cd:79:2b:05:60:02:b3:fc:98:65:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=018cc6f466a241657bf5ec52a630daeb01222f85
Validity
Not Before: May 8 10:00:36 2025 GMT
Not After : May 9 10:00:36 2025 GMT
Subject: CN=c62221a71e3adeef03a4ca115c77759474981dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e3:e0:0a:a4:6e:d2:35:fc:90:a7:87:89:81:
f0:4a:66:45:f3:ad:b8:ec:58:b8:e7:83:e5:8c:67:
e5:20:28:5b:66:5c:a5:9f:0c:26:e1:db:50:09:d1:
c2:c5:e2:27:8b:33:86:48:79:b0:23:f5:07:80:68:
ad:43:db:2e:49:a5:73:6a:4d:8e:cb:44:82:19:15:
7c:53:c9:66:72:ae:b2:a1:f8:9e:7b:b5:c4:c9:46:
f7:f1:b6:4b:ca:1c:a1:fd:57:53:2f:f7:55:41:04:
a1:c8:39:20:65:9c:aa:1b:ca:a1:e0:6a:a9:03:13:
0e:d9:5a:70:d9:da:d4:50:ff:d0:00:00:49:1f:78:
60:f3:70:e5:c4:84:28:75:69:a9:fc:46:5e:c9:a0:
d1:79:34:1b:bd:e6:46:46:5e:6d:a0:63:e6:6c:0d:
64:52:01:63:43:27:19:6d:68:71:2e:91:32:f8:f3:
ed:09:10:37:a0:c3:f5:48:03:90:28:b1:2a:36:88:
2d:58:0f:c1:6a:90:d0:85:f1:3c:c2:42:0a:dc:4b:
10:f5:b0:40:b3:a1:c0:98:cf:7c:c5:9e:d9:ca:94:
1e:b7:c6:41:74:3d:cb:8b:66:19:78:fe:88:a1:1d:
f7:a2:bc:71:2c:2b:1d:fa:e8:d3:11:45:5f:fc:de:
81:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:22:21:A7:1E:3A:DE:EF:03:A4:CA:11:5C:77:75:94:74:98:1D:D2
X509v3 Authority Key Identifier:
keyid:01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:c8:b5:42:11:7f:87:35:0f:e7:ab:be:d6:8d:5e:80:82:53:
25:b6:93:a6:fd:a1:2e:e9:0a:ba:02:f2:90:8e:51:55:5b:81:
df:38:e5:26:cd:ea:b0:61:b0:26:db:50:b4:ea:8b:80:32:33:
7c:ba:f0:74:f3:fc:28:9c:db:09:8d:c7:36:d5:d6:ac:8a:fe:
c9:4e:a8:d4:a8:d3:03:d2:e0:3c:28:2f:7d:0a:63:ee:4c:7c:
9a:73:fd:91:a4:f3:f4:32:4a:ac:e6:de:aa:47:d1:0c:c8:43:
7a:3a:6a:00:39:5f:ee:c9:c7:8d:4a:f8:5c:28:9d:6c:7d:6d:
7d:88:37:df:2a:90:a4:f2:4d:d9:7e:53:61:a6:6c:48:93:d3:
90:ea:7e:43:99:94:fc:25:6b:e1:25:fe:05:11:2a:f1:7c:5c:
3d:bc:20:35:42:3b:3f:57:89:83:98:40:d1:8e:a6:59:89:9e:
26:2c:e5:ab:17:63:02:82:6f:f5:40:3d:1b:47:5d:84:7a:d9:
d6:6e:c8:8b:ce:5c:df:c1:97:30:87:57:48:ac:14:e0:f3:36:
82:dc:bd:3a:18:29:47:d9:a8:c0:9c:50:09:36:3b:e2:06:f1:
cc:63:11:4d:3b:0a:5c:6f:8a:8a:6f:51:d5:1d:91:3c:e5:8a:
43:82:e6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 15:12:16 2025 by rpki-client