Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: Dx9YfVVebYJuBKJdgVBMefLeNb3Nx6InKMmYenO6IMs=
Subject key identifier: 08:A7:05:EE:2F:7F:66:3D:3D:86:46:3D:FD:31:91:0D:2C:9F:A9:66
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 0196C314AF7BC07D53DEB08910BFF486AF21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 1536
Signing time: Mon 12 May 2025 06:00:34 +0000
Manifest this update: Mon 12 May 2025 06:00:34 +0000
Manifest next update: Tue 13 May 2025 06:00:34 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: ZKZThXezEZ43uN1hSftA7hbENO0OOGcxuh1lHrgSKAw=)
2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 06:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:14:af:7b:c0:7d:53:de:b0:89:10:bf:f4:86:af:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: May 12 06:00:34 2025 GMT
Not After : May 13 06:00:34 2025 GMT
Subject: CN=08a705ee2f7f663d3d86463dfd31910d2c9fa966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d0:ce:51:9b:88:22:ad:88:af:33:5b:c2:6b:
9f:55:71:89:49:68:94:f2:0b:95:d1:e8:1a:fa:3a:
05:05:6e:81:6d:04:fc:73:f2:bd:c1:ac:3a:d2:0b:
17:66:9b:5f:37:75:29:e3:cf:2a:d3:2f:1d:d8:25:
bd:b2:c7:01:69:ce:6e:49:48:8e:dd:df:cd:16:b5:
db:37:b1:47:60:24:55:be:0b:d0:a8:7d:10:25:f3:
96:44:55:3f:21:5a:5f:6d:18:16:f4:28:52:08:96:
6d:fd:66:2e:62:4a:2e:80:e8:d5:74:ba:f3:40:10:
4e:a4:04:a6:89:d6:ae:b6:6a:df:85:ed:6a:7a:9f:
7f:0f:a9:7e:9c:ab:5b:0c:ec:d4:63:c1:a4:8b:cd:
ed:4e:ca:4e:a8:a6:9d:09:34:64:0d:d1:56:b9:12:
56:99:a1:2c:c6:ec:e0:0c:6d:92:75:4d:5e:84:2b:
62:3e:25:7e:58:11:64:47:3f:1b:04:52:49:5b:b1:
ca:76:90:5a:39:ae:39:e6:66:78:23:82:7f:4b:da:
bf:a5:9b:6f:fb:b7:73:6f:19:1a:88:45:a2:d4:8e:
25:46:83:85:bd:dd:ca:aa:10:73:a9:72:cc:db:4e:
ed:b8:ce:9d:4b:26:53:8e:99:63:ba:bf:73:71:a7:
81:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:A7:05:EE:2F:7F:66:3D:3D:86:46:3D:FD:31:91:0D:2C:9F:A9:66
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:ae:9e:a7:e9:2f:e9:13:1f:0b:82:8b:0a:13:89:5e:63:8d:
ad:29:7d:b0:18:a7:ff:ad:ca:1e:fd:cf:8c:5f:5c:7e:70:ab:
5a:80:cc:a7:e7:5e:14:52:dc:5f:50:d9:ab:3e:e5:cc:6d:23:
26:a4:bd:25:82:a7:ea:3d:4b:88:1e:eb:b5:26:b0:9e:cd:f2:
fd:2a:ba:c4:7b:02:c8:52:87:04:f2:e8:5a:a9:79:4d:d8:c9:
be:c1:5a:2e:12:76:df:c3:cd:65:53:b8:fb:ec:54:af:f9:af:
79:b5:68:23:fb:ab:ef:b9:1c:03:ed:97:10:de:bb:94:52:0d:
a0:24:0c:80:be:7a:5c:9b:03:52:41:33:15:c4:b9:ea:8b:71:
06:de:60:8c:11:c6:18:2b:ff:2c:41:7d:58:7e:c2:0d:a9:bc:
eb:27:a0:47:5b:3b:d9:1e:c3:9a:7a:70:16:4f:9e:40:79:ef:
14:a9:1c:6e:ca:78:7b:93:af:aa:24:f0:9b:68:ef:95:39:87:
6b:27:eb:63:37:17:7f:ad:af:1e:f0:38:95:0f:55:fd:93:4c:
d2:68:ee:f2:06:b5:35:3d:56:f8:51:5f:26:db:6a:52:33:4f:
02:e3:5d:0f:5f:1a:b4:1f:c3:ec:be:26:5d:eb:18:a0:4f:78:
93:9b:71:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 16:08:22 2025 by rpki-client