Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
File: ao33d2sW0oLgTGluJYqk-fnOnJg.mft (raw, json)
Hash identifier: BmaLUrNJ02jRevbFqx4vBpuYMeTMy5vM1fth60bGz3c=
Subject key identifier: FE:2E:24:6F:BE:25:E6:1E:26:85:C7:AF:F8:BE:D4:A3:6D:B7:43:55
Authority key identifier: 6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
Certificate issuer: /CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Certificate serial: 0197B7B355FFFD139F42C5595B120B07B00F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
Manifest number: 09A6
Signing time: Sat 28 Jun 2025 18:01:12 +0000
Manifest this update: Sat 28 Jun 2025 18:01:12 +0000
Manifest next update: Sun 29 Jun 2025 18:01:12 +0000
Files and hashes: 1: ao33d2sW0oLgTGluJYqk-fnOnJg.crl (hash: BUErQrbEQGqVovYDUYRkg3mrW9OvS7k3N6CZ3sqpkWY=)
2: zkFI0q7jFUcpvcC1_CEihR1YV24.roa (hash: 783T5wgYEpPQMcRoCX4E0P3B8Y6FUugL0p43iJWmXrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:55:ff:fd:13:9f:42:c5:59:5b:12:0b:07:b0:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Validity
Not Before: Jun 28 18:01:12 2025 GMT
Not After : Jun 29 18:01:12 2025 GMT
Subject: CN=fe2e246fbe25e61e2685c7aff8bed4a36db74355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:02:c6:66:d0:ef:0d:5b:e9:3a:64:0a:19:fc:
15:c0:2b:b9:c1:bb:0d:59:a6:e0:ad:a0:bc:5a:29:
2d:02:31:40:8a:27:b5:0e:e4:d8:a9:62:41:b5:41:
6d:1d:f0:71:72:3d:be:c9:62:66:ef:d2:76:ff:d2:
16:ce:df:2f:5e:f9:22:17:45:11:fb:44:1f:bb:ba:
34:8b:08:44:b2:c7:a2:fd:f9:72:14:80:39:75:ba:
9d:77:c0:0a:a5:e1:7a:7b:be:7a:e8:92:bf:57:f3:
b5:46:fd:20:16:c3:7a:80:ea:49:b8:2e:90:d9:29:
b8:fc:27:17:53:e0:35:60:82:31:7a:24:58:f9:6a:
17:bf:47:ba:f1:66:ee:34:98:b8:48:c2:c9:51:a8:
ce:62:96:bb:00:ed:fd:ca:76:2b:2a:da:38:b8:90:
0d:82:f9:9f:a6:ef:33:ba:33:fc:6b:40:7f:ce:ea:
d3:1c:5a:e3:be:9f:12:13:0f:16:c8:8a:ad:05:6c:
00:2c:62:f3:ba:0e:0d:a7:cc:25:2a:dc:77:aa:b9:
22:77:46:e8:7e:04:38:e2:bb:14:7b:b6:5f:ed:69:
46:1b:ae:13:e7:8f:a4:e3:9f:8f:ad:59:e3:41:b1:
12:ec:f4:59:cc:67:ea:ce:44:62:1e:ac:53:0b:74:
d6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2E:24:6F:BE:25:E6:1E:26:85:C7:AF:F8:BE:D4:A3:6D:B7:43:55
X509v3 Authority Key Identifier:
keyid:6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:85:69:46:64:0f:04:15:b1:d3:c1:a5:11:fc:25:63:0c:5a:
ea:48:af:41:2b:d0:28:bc:1a:23:c2:3d:86:0e:46:db:22:33:
8e:0b:06:19:df:c2:45:13:2b:ed:9f:23:04:74:bf:66:44:1a:
22:d1:31:23:e5:92:b1:80:6e:fd:f2:25:c9:97:02:12:1e:7c:
6f:9c:6d:6e:d5:a8:aa:72:31:20:23:29:51:e7:03:11:5e:e7:
15:69:22:37:11:ea:ce:a8:f1:6d:24:a6:20:5e:ff:b8:2e:1d:
b1:d6:ac:b2:a8:7d:d8:06:e4:8f:86:fa:5e:90:1c:b6:70:12:
fc:eb:0c:f8:07:7e:9c:73:df:a4:e2:de:ca:cf:ea:6c:fa:c0:
c1:c5:f4:3d:ff:6c:18:a2:74:8a:bf:5f:ed:31:ae:35:5a:8f:
d7:8e:ba:08:64:fe:77:6a:72:7d:0e:34:7b:e4:ea:47:a0:7c:
42:89:99:b6:df:05:82:13:df:6d:00:a5:bb:d1:0d:0f:b2:b0:
59:97:2a:49:50:12:ed:e7:a3:41:8b:04:10:35:a8:2b:08:55:
56:8f:91:33:e1:df:34:3d:2f:22:e3:52:b6:9b:5f:ac:92:bd:
3d:70:3c:8b:b6:1e:ff:d1:67:3e:4b:7c:ba:90:19:95:6b:7d:
22:0e:31:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:32:27 2025 by rpki-client