Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
File: aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft (raw, json)
Hash identifier: Aqu5F/1eGhUvBj4Oh3CKwiXmvldk6NXrgodiMoZCAFE=
Subject key identifier: 92:78:61:56:2B:AB:A1:91:E3:AD:AD:B7:DB:34:7E:F7:71:27:F9:72
Authority key identifier: 69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
Certificate issuer: /CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Certificate serial: 0196C7CCE560815A8D6543AEB60BB404EB8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
Manifest number: 0572
Signing time: Tue 13 May 2025 04:00:16 +0000
Manifest this update: Tue 13 May 2025 04:00:16 +0000
Manifest next update: Wed 14 May 2025 04:00:16 +0000
Files and hashes: 1: WhLENsO2y4UEzkuswA1wx41c4K4.roa (hash: qqWz2hpUFCfdOvnndjkfI9tgPQ2D7KLxkWgnxyi1reI=)
2: aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl (hash: CEQnE6JL/y7pr/CHy5tNmiyoUCQfcz7KZs2J1Z631Ag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:cc:e5:60:81:5a:8d:65:43:ae:b6:0b:b4:04:eb:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69829b448ad8f963a0ecff8b2216ca9ce9ce6f41
Validity
Not Before: May 13 04:00:16 2025 GMT
Not After : May 14 04:00:16 2025 GMT
Subject: CN=927861562baba191e3adadb7db347ef77127f972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e6:62:4a:a7:ff:cc:42:20:37:2f:7f:a3:f6:
d9:8c:ce:5b:ec:13:02:b6:c1:96:03:c5:77:a9:75:
07:06:46:5c:aa:b2:c6:c2:9b:4e:3c:2f:8d:77:34:
73:59:09:78:bb:ce:ba:0a:94:c2:d0:ce:2b:1d:d4:
19:0a:ba:5c:27:eb:f7:da:68:76:2b:bf:08:1b:8f:
d9:48:51:df:d0:3d:b1:9b:45:e2:1b:ec:ef:a2:71:
79:ab:83:6f:a8:cf:d7:1b:87:16:1f:98:9d:e7:5e:
d9:de:05:b4:cd:ac:34:43:34:5b:57:41:72:2b:cc:
63:ed:97:48:60:31:a3:7d:b7:73:f7:ce:d9:7c:50:
52:a4:95:7e:07:00:9b:4f:33:59:79:c1:ea:11:15:
a8:f3:6b:c9:60:37:06:bd:31:a8:96:90:d6:c8:16:
3e:e1:37:67:0a:81:03:3c:d9:b3:31:c7:7d:cd:0b:
a9:1e:0c:11:32:35:07:dc:e9:55:25:66:06:29:4c:
8e:98:90:cb:e9:f7:a8:66:bf:02:3b:cc:cd:ad:60:
26:40:89:f2:02:bb:ae:24:33:17:17:f8:cf:9f:8b:
ac:d8:ed:c0:fc:f3:1e:3e:88:4f:a8:2a:4a:9c:a7:
ba:0f:be:e6:e7:6d:77:04:e6:6b:79:47:e0:96:99:
0d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:78:61:56:2B:AB:A1:91:E3:AD:AD:B7:DB:34:7E:F7:71:27:F9:72
X509v3 Authority Key Identifier:
keyid:69:82:9B:44:8A:D8:F9:63:A0:EC:FF:8B:22:16:CA:9C:E9:CE:6F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYKbRIrY-WOg7P-LIhbKnOnOb0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/590e2f-decc-4887-8e03-e76b54466654/1/aYKbRIrY-WOg7P-LIhbKnOnOb0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:d2:cf:33:a0:ef:d6:76:7c:df:0f:a9:4d:0e:76:54:aa:a3:
62:9d:dd:73:00:be:5b:d5:24:52:23:f7:04:7b:7b:8b:0f:c3:
e0:f7:70:0a:66:6f:f8:9e:96:24:1d:64:85:7a:ce:d6:00:41:
a7:08:bb:4e:3d:ea:95:4c:4b:e8:00:ff:fd:d9:b6:79:88:71:
b1:bb:03:87:c3:67:84:44:21:1b:d9:69:6e:84:3d:54:3d:6f:
6d:8c:0b:8c:f2:eb:06:88:72:12:f2:d9:d3:30:d6:b5:ca:35:
cf:a8:6d:3d:1b:ec:bb:c3:c4:10:43:97:d1:f1:4a:f5:15:ff:
ea:c2:01:58:e8:80:ae:72:d3:7b:d3:54:c0:6b:89:8b:c8:02:
e1:ba:70:85:df:e3:01:1a:50:ef:58:1c:d7:2e:3a:78:d4:99:
b3:d6:dd:72:4b:a2:b1:f3:12:59:62:e7:bb:3b:35:17:22:82:
2f:d8:da:1b:64:a7:e3:28:aa:d8:a5:b0:ae:51:d6:2f:9b:3e:
cb:88:6d:fd:a4:31:5c:81:04:f0:f9:b4:59:b7:95:56:93:a4:
6f:af:56:9d:0d:4c:d2:f2:97:74:a9:e0:f5:60:5f:5e:70:17:
99:38:90:b3:e2:f4:ec:49:fd:74:b4:82:df:78:0c:2e:0b:ac:
ff:9f:bc:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 09:08:42 2025 by rpki-client