Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
File: aNLCXQU0pAJ8aVViqM5PABzVOW8.mft (raw, json)
Hash identifier: OLZTqyjf1j4FFLR5liNFeZQU0HXlT7ZcHs7gLbtleME=
Subject key identifier: 51:89:BA:A8:97:55:17:C2:13:3E:E7:50:67:E2:EA:35:F1:E4:3D:59
Authority key identifier: 68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
Certificate issuer: /CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Certificate serial: 0196BF00E734F0A84EF39F2DAB68747A365B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
Manifest number: 1188
Signing time: Sun 11 May 2025 11:00:29 +0000
Manifest this update: Sun 11 May 2025 11:00:29 +0000
Manifest next update: Mon 12 May 2025 11:00:29 +0000
Files and hashes: 1: SALrx8y5x39WJ8efwGiimpmg788.roa (hash: CtpmQiaYAVz0sehGOLMPmKtW82021GvqOFqhQ5ojIPI=)
2: aNLCXQU0pAJ8aVViqM5PABzVOW8.crl (hash: /Chxfa9FzoZiHmyHgTqNA/tKfEwVsnlMQrJ9CWJOQb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:00:e7:34:f0:a8:4e:f3:9f:2d:ab:68:74:7a:36:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Validity
Not Before: May 11 11:00:29 2025 GMT
Not After : May 12 11:00:29 2025 GMT
Subject: CN=5189baa8975517c2133ee75067e2ea35f1e43d59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:10:4d:9a:1f:7a:b3:7d:45:bf:13:8a:e6:db:
71:4e:e9:08:56:76:6a:96:d5:21:73:f8:08:84:97:
58:3c:9d:ca:0b:a7:07:35:9d:7e:d2:39:fe:cb:15:
9b:b8:61:42:88:29:81:68:b5:8c:a4:a5:9e:4f:cd:
b8:e3:64:7e:b4:cd:67:04:ca:61:99:06:07:ba:fd:
69:04:b4:a0:68:13:d9:95:15:34:92:df:94:25:45:
d1:fe:c1:67:fd:3f:c1:eb:ba:4b:b1:b4:19:81:f4:
85:6e:24:58:cf:e7:b6:29:42:cf:ab:36:c7:9d:0c:
e9:35:11:c0:16:74:26:4f:48:c0:84:f4:a4:37:73:
f2:82:09:b5:87:45:e2:97:9a:76:01:e6:72:0d:fa:
59:8a:46:d2:5a:9b:46:0a:c4:f0:f5:27:c6:75:21:
91:44:7a:79:1a:a4:c7:a2:02:de:63:74:47:df:7c:
57:28:3d:df:e0:ef:98:0f:09:d8:27:d8:55:bc:52:
56:fc:67:65:64:18:d5:ef:35:f7:45:cd:35:77:51:
75:8f:eb:2f:89:09:b3:09:3a:a2:58:e7:11:cb:6e:
33:72:85:58:99:d5:63:10:d1:db:2e:a0:c4:a8:63:
20:4b:d8:3c:31:ea:e4:9f:d4:fd:a5:9b:f9:7f:e5:
24:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:89:BA:A8:97:55:17:C2:13:3E:E7:50:67:E2:EA:35:F1:E4:3D:59
X509v3 Authority Key Identifier:
keyid:68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:b0:28:d9:68:b8:ac:22:0b:3d:b8:c7:8f:c0:2c:ac:7a:aa:
cc:e8:84:05:7b:67:18:bf:7e:71:a7:7e:85:5e:dc:79:f9:d8:
d5:06:98:14:5f:80:79:f3:1f:ce:5d:71:e6:51:47:90:65:e4:
6a:24:9f:00:1b:1e:99:71:d4:e9:83:9e:53:6c:41:49:57:c1:
3f:c3:4e:8c:84:89:fa:12:47:44:5a:5b:fc:7d:38:af:d2:d5:
47:3a:ab:8f:6f:80:d9:f6:de:61:5c:c5:44:1c:50:6c:99:44:
82:2d:0d:ac:06:1a:17:af:03:41:8e:21:c3:37:dc:9c:38:16:
c6:a6:ab:54:bf:8a:a6:cf:87:63:cf:e5:9c:b3:47:52:d6:1c:
ad:8b:ff:ef:3c:4e:fb:2d:dc:d8:56:9e:17:b4:d8:2d:61:5f:
2b:0e:d3:8f:3f:14:d5:ef:38:09:6e:0a:a8:8a:3e:ac:15:ed:
97:d8:fb:0e:09:24:55:7c:3c:c9:12:02:03:92:73:08:90:47:
b2:9b:3c:24:dd:08:56:49:67:8a:93:59:9d:5d:6b:1a:0b:2c:
1f:83:79:40:64:43:32:11:a8:40:61:ec:1d:e5:72:38:e2:8c:
d9:1b:0d:0a:48:3c:c3:63:ad:b7:c3:79:af:b7:31:30:7a:ad:
d7:85:eb:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 16:56:51 2025 by rpki-client