Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
File: AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft (raw, json)
Hash identifier: 4X/mrscRyxRSS1aKS+4u69tCtC4uW5kQACDG2jjIZsc=
Subject key identifier: EB:CD:24:5C:F7:79:7F:99:6E:30:6B:F7:4E:7E:E3:C8:66:B3:16:7F
Authority key identifier: 02:64:0B:CC:B7:17:1F:19:9C:43:A0:A9:74:CA:B8:27:ED:18:E7:50
Certificate issuer: /CN=02640bccb7171f199c43a0a974cab827ed18e750
Certificate serial: 0196C0EF0DA140D1D509FE7E8BFBABA8651F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
Manifest number: 1536
Signing time: Sun 11 May 2025 20:00:14 +0000
Manifest this update: Sun 11 May 2025 20:00:14 +0000
Manifest next update: Mon 12 May 2025 20:00:14 +0000
Files and hashes: 1: AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl (hash: d+afIzlz45j44tmtq+AurdPAxjI5WJQFzEsqxc1oiMI=)
2: oyTiWJ913wVTjnCcw6Q4RBUZbq8.roa (hash: /NMMdoNH5sZWYkg6OnNqyz5087fDkPkdrRkbme1onLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 20:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:ef:0d:a1:40:d1:d5:09:fe:7e:8b:fb:ab:a8:65:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02640bccb7171f199c43a0a974cab827ed18e750
Validity
Not Before: May 11 20:00:14 2025 GMT
Not After : May 12 20:00:14 2025 GMT
Subject: CN=ebcd245cf7797f996e306bf74e7ee3c866b3167f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b5:2a:d3:a9:04:af:f6:29:0c:0a:1e:2d:46:
65:b5:b8:44:e6:e0:18:67:7e:a5:89:04:98:fc:98:
1c:53:f3:f5:15:34:93:b8:5b:7d:f0:3d:50:3a:14:
8b:a4:7c:ff:0b:bf:a3:ff:05:c5:cb:37:b8:3d:2c:
fa:45:4e:84:0f:9c:94:16:28:cf:cd:62:cb:de:c8:
35:42:2c:af:d6:87:63:87:3d:40:9d:94:61:2c:8d:
d8:b4:d7:f6:2a:59:48:33:87:d4:54:50:83:1b:45:
2f:a1:00:21:ce:77:60:6b:30:bc:43:3d:3c:ce:f8:
de:bb:29:91:f1:6b:18:e1:26:44:8d:04:c2:ef:a5:
8f:a1:5c:96:a1:f3:af:9a:36:90:54:8a:0e:e7:78:
fc:f6:7d:8d:28:d5:49:1a:a7:dc:5f:f2:8f:fe:57:
a0:86:4c:9b:79:3c:2a:5e:70:a9:47:a8:3b:bd:0d:
97:cd:de:2b:a1:82:55:e5:c7:61:fb:b7:61:a8:2e:
8f:b1:b7:b5:b8:8f:11:b9:1e:b6:da:cc:e8:f5:f1:
72:76:80:bb:42:f8:95:ff:a0:a2:ec:24:33:db:2e:
d3:ed:af:c1:57:df:01:4e:e1:2a:f0:38:8c:98:34:
03:fb:71:09:ac:bc:65:ca:59:f5:ed:3e:02:30:8b:
61:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:CD:24:5C:F7:79:7F:99:6E:30:6B:F7:4E:7E:E3:C8:66:B3:16:7F
X509v3 Authority Key Identifier:
keyid:02:64:0B:CC:B7:17:1F:19:9C:43:A0:A9:74:CA:B8:27:ED:18:E7:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/424bd1-953b-4262-8396-c7bf95e5ab7b/1/AmQLzLcXHxmcQ6CpdMq4J-0Y51A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:de:ce:b5:53:b9:c6:0a:bf:51:59:24:bf:36:57:a1:98:85:
99:23:46:5e:a6:0e:24:ad:63:ec:43:0e:41:0c:89:a0:03:a2:
b3:73:3e:20:e5:b1:9d:32:89:c6:f3:e8:34:2e:4d:ef:66:76:
f8:5d:1b:b6:24:f2:bd:d7:51:70:e6:4d:d5:c7:8f:56:1a:ef:
4d:78:8a:ee:c8:40:b7:8f:8f:05:17:44:b3:3b:a5:f5:8e:00:
9b:8d:b7:f6:03:53:6a:e8:06:0f:d8:9b:83:c1:6b:b4:c4:5f:
31:0a:b5:0f:e3:77:3a:bd:a2:94:0b:a2:b0:e2:a6:8f:fd:22:
17:be:0e:d0:a7:b3:10:41:91:5e:68:11:df:14:9e:73:ca:69:
74:37:f8:cd:e4:f8:8c:3b:97:7e:8d:b5:a9:f9:33:4f:64:ed:
4a:59:eb:d7:fe:ff:91:a2:fa:ca:a8:7a:96:77:03:1f:4f:06:
ca:8c:ec:dd:25:bc:78:8c:98:ef:72:48:38:2e:19:eb:d8:c4:
1f:9d:b3:f3:f6:a7:9d:c5:e4:43:07:6f:20:8b:00:02:ce:d7:
43:e7:c5:f0:56:e7:bb:3a:e3:68:d7:ec:67:30:d6:25:80:f9:
cd:f9:63:a2:c3:5a:f9:c8:98:bb:88:8d:52:75:19:41:6a:81:
a4:ca:a0:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 03:54:22 2025 by rpki-client