Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
File: ao33d2sW0oLgTGluJYqk-fnOnJg.mft (raw, json)
Hash identifier: fjg7tjY/OEPsV+4AGS8aRMOm9N8etIC6X5K6INC6Mg4=
Subject key identifier: C3:50:CA:51:E6:D4:5B:35:DB:41:CF:79:DF:70:39:76:CF:95:74:F2
Authority key identifier: 6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
Certificate issuer: /CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Certificate serial: 0196A19B1B8550E5EB55BCB3C254150F890C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
Manifest number: 0916
Signing time: Mon 05 May 2025 18:00:18 +0000
Manifest this update: Mon 05 May 2025 18:00:18 +0000
Manifest next update: Tue 06 May 2025 18:00:18 +0000
Files and hashes: 1: ao33d2sW0oLgTGluJYqk-fnOnJg.crl (hash: /kKB9fQ/hbYml17/esE8wu0djZlBKzZfSbo331cVkWc=)
2: zkFI0q7jFUcpvcC1_CEihR1YV24.roa (hash: 783T5wgYEpPQMcRoCX4E0P3B8Y6FUugL0p43iJWmXrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:9b:1b:85:50:e5:eb:55:bc:b3:c2:54:15:0f:89:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Validity
Not Before: May 5 18:00:18 2025 GMT
Not After : May 6 18:00:18 2025 GMT
Subject: CN=c350ca51e6d45b35db41cf79df703976cf9574f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:14:33:31:d4:8c:75:77:5a:ae:c1:c9:8c:27:
25:d3:f6:68:b6:3d:ed:75:19:ea:0c:e0:67:51:77:
81:f9:b9:a6:a0:cf:f8:47:c4:b2:18:bc:be:4b:98:
e6:ac:86:dc:f1:7d:09:45:83:59:40:01:92:3d:23:
60:a4:40:02:f0:49:2c:d9:55:a5:66:0f:de:bf:1e:
62:08:eb:c7:64:6f:16:32:cc:21:76:be:df:3a:57:
7e:95:e5:af:76:e5:b4:a5:39:32:51:2e:8a:42:2f:
8c:fe:bd:05:92:e7:43:a5:3f:27:c2:35:a5:79:98:
23:af:05:8e:69:7a:83:12:df:4c:49:20:47:49:cf:
fa:15:cd:b3:aa:18:fc:7e:ab:b8:dd:9f:1c:92:16:
82:ee:51:9f:2a:d7:7b:29:48:42:5c:26:39:f7:1c:
93:3e:09:20:c6:9e:55:aa:17:d1:36:bd:8b:64:54:
1a:f9:24:09:22:2c:8d:57:db:a1:1a:49:1c:08:d1:
b2:d7:5c:ae:32:5e:dc:7c:bb:39:44:a2:a3:e7:6b:
1f:91:dc:3a:87:14:10:c3:f9:cb:6b:e9:39:ad:14:
0a:bf:31:df:dd:a6:8d:49:c8:26:68:4d:50:5a:10:
7e:12:2c:04:28:41:33:46:f9:19:7b:13:1d:6d:28:
d7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:50:CA:51:E6:D4:5B:35:DB:41:CF:79:DF:70:39:76:CF:95:74:F2
X509v3 Authority Key Identifier:
keyid:6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:71:4e:d6:12:2f:70:35:46:0f:ee:5c:00:5f:4b:18:d2:07:
9e:76:ea:1d:73:6c:db:d1:fc:9b:b5:b5:17:89:6d:55:be:82:
8e:49:13:db:58:1c:87:9b:97:53:b3:c2:4b:a1:ed:41:7c:1d:
ea:f5:56:3d:15:53:dc:e2:b3:fe:ba:a4:d3:47:66:9c:55:c7:
a2:03:21:ff:92:62:91:bf:a9:f1:0d:40:fd:6f:6f:46:2e:b4:
ab:27:a6:15:29:a9:e7:88:39:79:cf:da:85:d4:a1:a8:50:ae:
bd:a1:92:e0:17:52:ff:e3:fb:9c:fa:27:4a:37:03:ab:2a:2c:
48:4f:ca:b6:1a:00:ba:1a:d1:e3:1a:07:3b:62:ee:4f:a6:88:
97:f7:19:60:a1:68:db:4b:6d:b5:6a:f7:42:05:c8:23:0d:2f:
ba:fe:6d:2e:f5:2a:56:f9:e0:35:c5:94:53:73:15:b7:4e:ba:
7e:37:b8:1d:05:15:f5:43:27:92:31:4e:6b:90:ba:19:47:3e:
67:13:a2:a2:3b:85:48:2a:d0:70:6a:fa:5b:5e:5d:cd:17:af:
bf:67:43:e4:2b:c9:5c:c8:ce:c4:2f:1f:f4:92:ea:00:8d:a8:
1f:0a:bd:5d:f8:fd:56:39:40:82:94:cd:e1:26:e2:97:7e:c7:
a2:ce:08:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 03:39:41 2025 by rpki-client