Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json)
Hash identifier: cYc3BlDZm+ion6wCboyXeXq7bzYTU0whCCq9QV2e/9s=
Subject key identifier: 3C:1B:EE:FB:33:97:AD:68:FF:97:EB:36:56:D2:70:00:D3:65:E1:98
Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69
Certificate serial: 0196A01B1102EA8082726F812D7E1EFB8ABA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
Manifest number: 0562
Signing time: Mon 05 May 2025 11:00:50 +0000
Manifest this update: Mon 05 May 2025 11:00:50 +0000
Manifest next update: Tue 06 May 2025 11:00:50 +0000
Files and hashes: 1: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: bxoiJ1/6V+vtnNCuuTPyAX3BcylIufbAk2+pRlIK/LE=)
2: hnTM8e9DDp88O_jCAHz8InVW_vE.roa (hash: 8skhoEZiI2jfYQ4DDQgvqEaBRoMspiQzmuxF61YcMEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:1b:11:02:ea:80:82:72:6f:81:2d:7e:1e:fb:8a:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69
Validity
Not Before: May 5 11:00:50 2025 GMT
Not After : May 6 11:00:50 2025 GMT
Subject: CN=3c1beefb3397ad68ff97eb3656d27000d365e198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3e:1e:aa:58:a6:42:e3:b6:74:7b:bb:1a:52:
8b:21:cc:c4:cc:39:20:c5:f4:7e:c9:85:8c:6e:fc:
a9:98:eb:4d:fa:d1:71:b0:08:ac:75:e4:07:48:f8:
d1:46:44:db:72:2d:1c:f7:9d:82:df:ed:2e:c9:d1:
49:c1:3c:dd:de:06:3a:4f:6c:0d:e9:7d:8b:e2:f1:
83:aa:20:42:47:be:85:5f:d3:b7:be:88:68:ee:14:
96:35:d4:22:c6:37:77:59:39:06:2c:fd:d5:3d:95:
cc:fe:4d:36:19:42:6d:50:18:a9:45:7c:c4:ea:ab:
03:90:d0:d8:b9:86:3a:64:d5:19:f1:ef:ee:98:54:
6d:e4:de:d7:41:1a:e2:ad:06:05:f7:69:6e:ed:f9:
81:83:65:09:d3:db:9a:99:c5:90:27:43:7e:c9:7a:
38:55:5c:33:b1:f4:4c:d7:7a:12:c1:c0:69:9f:74:
3e:d3:a0:53:f7:2d:53:ce:47:8d:db:70:d7:bb:46:
d3:b8:9f:0f:5f:20:9c:9a:ab:88:02:a7:1e:0b:51:
6e:e7:fa:81:00:43:82:ad:60:2a:cc:06:3d:de:1d:
b2:37:ed:a2:95:9a:03:89:07:b8:fe:cb:67:4c:7d:
2d:39:be:98:8f:7f:86:50:a6:8c:7b:20:1d:12:89:
f6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:1B:EE:FB:33:97:AD:68:FF:97:EB:36:56:D2:70:00:D3:65:E1:98
X509v3 Authority Key Identifier:
keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:b8:4f:90:41:00:33:91:e5:ac:f0:8a:78:0b:3e:9b:d7:39:
ab:20:d9:f0:53:86:06:28:74:d2:8c:56:a0:27:b4:f2:3b:67:
fa:24:e3:3e:fa:ae:20:98:9f:70:e0:2a:cd:0b:3b:72:10:4c:
8a:06:51:91:64:53:50:cb:ca:37:a3:21:1f:06:a3:1b:78:e1:
44:90:3f:c1:69:6c:e6:20:95:58:71:82:69:e1:a3:ba:0f:e1:
25:16:90:09:7a:11:48:92:28:c0:1e:da:1f:ea:40:19:81:57:
19:58:d3:dc:7b:90:4c:fb:f3:06:20:c8:db:11:65:4c:b0:19:
80:a5:37:a9:b3:c7:a5:dc:bf:3e:a8:1e:56:8e:4c:a7:ce:4f:
f9:38:7c:85:5c:85:aa:1e:30:f2:56:ce:71:98:b6:d9:2b:8c:
29:37:cd:25:59:e2:9a:6c:e9:a6:ff:bd:1b:ab:42:a7:8d:3d:
c3:4f:7a:9b:43:c2:0c:ce:6e:a8:21:84:73:db:e9:df:43:dd:
99:aa:0a:2a:9e:c1:b2:44:77:9c:8c:bf:aa:f3:94:cf:89:ab:
ed:b4:b4:a7:7b:9b:b6:03:87:7b:b7:53:3f:17:4d:21:5b:e0:
d6:a9:84:6d:a0:0f:90:6a:2e:3e:46:57:9b:92:2c:2a:0b:1c:
12:1c:ca:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 14:32:30 2025 by rpki-client