Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: JfvVfwAwk8935Wq1VLBdu5oCRPOcP1l4O0HsnfqkiQ0=
Subject key identifier: CC:6D:AD:8E:47:0D:5F:32:EA:AB:C5:9A:9D:86:79:91:99:9F:CC:46
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 0196A61D0997715BC1E4B6C20D58A87121A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 1529
Signing time: Tue 06 May 2025 15:00:42 +0000
Manifest this update: Tue 06 May 2025 15:00:42 +0000
Manifest next update: Wed 07 May 2025 15:00:42 +0000
Files and hashes: 1: K-gQWrDorOWk95T1Ck9YnvOvyOw.roa (hash: M7ISU7dx2mACRrVyXnpQ2vx1ALS4joyLkkEwNFtNto0=)
2: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: o2I9/Qw4BE01MqWXytZz5Yvn3DE7Egdafy7h3Gb0ozE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 14:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a6:1d:09:97:71:5b:c1:e4:b6:c2:0d:58:a8:71:21:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: May 6 15:00:42 2025 GMT
Not After : May 7 15:00:42 2025 GMT
Subject: CN=cc6dad8e470d5f32eaabc59a9d867991999fcc46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cf:17:18:da:27:71:39:d9:0d:66:1b:c5:48:
13:a5:92:ea:56:85:0d:6c:5e:74:a6:23:2c:61:04:
0f:c0:fb:d9:7c:c0:68:84:75:69:4a:5b:69:36:57:
88:cd:71:94:f1:8f:25:81:0c:20:c7:2f:64:8e:c5:
51:fc:59:83:4e:3f:21:28:8e:5d:ca:6c:89:79:e7:
66:3a:33:03:37:57:6a:f3:73:a2:ac:37:6f:a0:0e:
8b:e0:6f:bc:87:45:f2:4c:f3:bb:69:32:e6:e7:c0:
09:60:c2:9a:7a:b9:61:f5:57:8f:80:c0:6c:01:13:
cf:11:59:8d:49:4b:76:ec:24:4b:98:9f:9b:88:e3:
ff:db:14:90:26:77:c7:94:3a:f8:00:68:9d:38:6a:
41:b2:9b:6f:bf:fe:f2:2b:e0:71:7c:e0:7f:01:4a:
a7:20:ff:95:ce:88:7b:ca:0e:f7:97:27:33:2a:e4:
43:f2:16:44:fa:19:7f:85:2c:5b:bc:37:1f:c3:8a:
86:c7:bd:06:81:1f:23:41:14:63:c3:16:ee:b0:c7:
2e:8c:31:76:0b:da:8b:b9:f7:4b:4b:ae:fb:97:ce:
bc:36:31:f1:c6:f9:d5:a0:5d:d9:e8:51:71:9e:b5:
d9:c1:cf:04:87:52:f7:4b:80:87:ba:09:64:ca:59:
3d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:6D:AD:8E:47:0D:5F:32:EA:AB:C5:9A:9D:86:79:91:99:9F:CC:46
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:57:53:a8:95:16:3e:81:af:b6:2d:e7:5c:a6:3a:1b:5f:44:
ca:ce:da:8b:3b:f9:25:42:fe:db:1e:72:08:42:be:da:db:2a:
a1:8a:3d:2a:1d:d6:99:f3:69:8c:b8:2b:fc:36:b0:f1:87:57:
e1:c0:f3:b8:13:21:07:2d:00:57:e2:07:3c:43:e2:dc:66:91:
83:0a:e7:eb:2b:b6:44:a8:9b:18:ac:41:e6:dd:ef:e3:b9:fa:
32:37:95:38:6c:6e:ff:6a:c7:27:d3:83:42:4e:42:90:4e:66:
35:6d:06:70:a1:46:96:36:e5:62:99:d9:27:72:21:c2:43:b8:
1f:de:df:26:be:75:0c:b6:41:29:c8:84:d1:ab:55:6b:fd:56:
97:d6:f5:5a:21:ec:90:a5:a2:ba:0c:aa:c5:ae:d4:e3:55:8a:
57:0f:af:7f:4f:46:c2:b8:24:3e:b3:48:24:95:b4:fe:07:5f:
14:7d:87:35:60:5d:94:2d:8e:2c:68:aa:3a:47:ba:e3:ed:c5:
60:8a:2e:ba:43:f1:ad:35:3f:c5:97:a6:3d:15:12:51:dc:e5:
dd:db:15:b7:44:af:92:17:da:18:81:15:96:ab:f9:31:44:74:
3c:a5:70:9a:1b:02:4a:bf:cd:0b:cc:0e:69:3e:bc:27:14:b1:
82:2a:56:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 17:56:33 2025 by rpki-client