Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json)
Hash identifier: wgfs8AkKAX/1a5Qbsdc2KO5CUGZtDOnO0pF0qenEsjM=
Subject key identifier: 58:A9:86:85:22:C8:0B:96:A4:32:E7:E1:3F:A5:FE:21:86:F9:C7:1E
Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D
Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d
Certificate serial: 0196BAB6953310BF32945D8399D37CD4F9D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
Manifest number: 088C
Signing time: Sat 10 May 2025 15:00:50 +0000
Manifest this update: Sat 10 May 2025 15:00:50 +0000
Manifest next update: Sun 11 May 2025 15:00:50 +0000
Files and hashes: 1: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: zpUfnOFSeLRUJFEiX7c6ECkvsbOqQu4qMeA74Wqcwpk=)
2: x-UkkAB6bBHjnvfgkifHZfsul34.roa (hash: Z+EoTHR/GmNeC+PGL9FT4NMDxcyauPnVaWgbSwI9JOU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:b6:95:33:10:bf:32:94:5d:83:99:d3:7c:d4:f9:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6991c56f11a7171c6153239769f557beba10182d
Validity
Not Before: May 10 15:00:50 2025 GMT
Not After : May 11 15:00:50 2025 GMT
Subject: CN=58a9868522c80b96a432e7e13fa5fe2186f9c71e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f8:4f:dd:ee:90:5a:e8:6e:17:ff:d8:d8:d2:
45:93:5d:90:b3:b4:4a:18:8b:49:52:1e:7c:95:51:
0a:c9:5a:5e:f5:49:75:d1:3b:63:0b:39:81:64:df:
a5:36:79:77:bf:e0:a5:be:9e:09:0b:36:6e:46:cd:
3d:61:47:bc:c0:37:6f:63:42:db:1b:54:28:16:15:
b8:98:f9:80:e6:a4:c5:a3:cc:71:67:af:21:d8:8e:
f5:9c:a5:4a:d4:8b:56:e3:88:d2:bf:8f:65:c3:00:
e7:1d:80:af:2a:a7:f4:f2:1b:e9:3b:58:28:7f:58:
79:4f:4d:76:e5:bd:8b:c9:f1:1c:15:7c:2d:71:b1:
65:9c:41:b5:a4:9f:02:65:16:16:d2:8e:b6:e4:9c:
87:cb:84:ef:94:b7:1f:ef:18:ff:b8:a2:2f:70:84:
07:0b:2c:3f:18:f2:ce:14:45:03:07:6e:cc:62:78:
d8:a2:e9:42:9a:b4:af:26:6e:01:c4:11:84:f2:f1:
2b:42:c7:4c:93:9a:31:2d:6f:43:e8:49:90:5e:f9:
49:6d:3b:f0:cf:a2:74:4d:4f:49:03:d1:db:7c:91:
5b:7d:31:bd:43:75:1b:e2:58:ff:9e:95:b1:b6:49:
19:57:7c:f7:ee:c4:0f:84:c9:dc:c9:7f:63:ff:e3:
5f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A9:86:85:22:C8:0B:96:A4:32:E7:E1:3F:A5:FE:21:86:F9:C7:1E
X509v3 Authority Key Identifier:
keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:5c:62:e0:38:fc:34:c4:56:5c:29:18:df:c4:9c:5a:62:2b:
bb:37:bb:db:7d:ae:8b:03:62:00:6b:e1:9c:6b:0c:81:ed:1b:
9f:68:74:40:84:ca:63:8f:fa:ea:9c:8f:f7:fb:b5:b6:10:b1:
ad:83:e7:87:0a:8b:17:84:c7:84:4e:9f:08:75:1a:e0:03:d3:
a4:b4:d1:4b:65:2f:a5:24:12:f6:4a:fb:ee:3b:11:8a:c9:87:
a7:5d:07:fc:5a:e0:fa:11:e8:82:d6:14:66:8d:b6:b6:64:00:
ce:75:34:7a:cb:d6:65:c7:32:40:c1:be:df:7a:a4:03:69:e6:
be:d1:1b:bc:dc:0e:ea:1f:de:fc:b7:14:18:69:bd:93:bb:01:
44:1d:45:1c:fd:74:4c:d5:5c:dd:91:94:3e:c6:6d:f8:68:ea:
c3:eb:5e:84:be:dd:50:92:f2:6c:c2:f0:54:6d:f8:f3:55:f9:
f4:88:1d:a6:cd:be:f2:d1:ee:cd:2b:a9:3c:05:dd:19:da:d9:
bc:90:5b:fc:53:20:47:af:cc:3a:af:6e:80:d2:ce:a9:31:94:
72:da:7d:b8:9d:76:81:d1:ee:70:27:a2:5b:ff:ac:79:ea:a1:
51:12:ff:97:0e:f5:0a:7f:22:9c:ba:31:64:3b:1e:7a:7f:2b:
c1:a7:0d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 16:46:14 2025 by rpki-client