Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
File: aQomMkmEfPlzRHQiE2RPkpvqqZc.mft (raw, json)
Hash identifier: 9Ph8XKkg6Mm7AW+4kRBlbHKpb8Obi8lnexwvc1XUFBw=
Subject key identifier: B0:4E:3F:17:E3:53:84:62:02:6B:28:F0:75:57:38:C6:DB:2C:C9:D1
Authority key identifier: 69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
Certificate issuer: /CN=690a263249847cf97344742213644f929beaa997
Certificate serial: 0196D0D0C899CD359647E0B40EE16231EC77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
Manifest number: 079D
Signing time: Wed 14 May 2025 22:01:05 +0000
Manifest this update: Wed 14 May 2025 22:01:05 +0000
Manifest next update: Thu 15 May 2025 22:01:05 +0000
Files and hashes: 1: DY21Bg3oUbtzm77wQkCwRHIkQQk.roa (hash: qZIMcnP47zIIcLpWesPleUJ2XdB9zCYyYyzYWyBj/nk=)
2: aQomMkmEfPlzRHQiE2RPkpvqqZc.crl (hash: EzQOzs8JBcMf2a+/E0Lrj55GGN22VrDlLApX2wUkvt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 22:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d0:d0:c8:99:cd:35:96:47:e0:b4:0e:e1:62:31:ec:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690a263249847cf97344742213644f929beaa997
Validity
Not Before: May 14 22:01:05 2025 GMT
Not After : May 15 22:01:05 2025 GMT
Subject: CN=b04e3f17e3538462026b28f0755738c6db2cc9d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:31:1a:b7:5b:bf:54:82:0e:02:80:b7:a9:bc:
8b:57:87:2a:6a:40:b0:8e:ff:3a:60:46:49:5e:de:
ed:3e:44:76:72:49:d6:a3:0c:d1:40:3b:2e:e9:5a:
ed:ae:99:c0:39:09:a5:41:94:de:af:90:78:1e:42:
a8:65:47:72:f7:6e:d0:28:d9:c7:a6:f2:9b:47:a9:
05:da:68:7f:e1:7e:dc:e4:04:76:33:e4:e5:6e:a5:
50:9c:4d:3b:3e:08:5d:70:f4:f9:bc:df:e2:7d:33:
03:9c:49:7b:c2:55:c1:4a:ff:7e:e8:98:e8:9f:93:
e5:de:8c:aa:cc:b3:ea:0c:2f:c5:8e:5f:56:98:41:
86:62:63:d2:d8:25:fa:06:1e:62:20:9f:3b:0c:a9:
06:6c:f1:68:d9:67:dc:88:b0:3d:9f:13:dc:69:80:
c9:c7:eb:ee:12:b8:d6:e5:a1:90:1e:23:e1:23:6a:
34:66:7e:d2:1b:49:a8:df:2d:c3:46:e2:26:5e:a4:
bf:14:cd:a4:8e:d4:18:1a:43:58:5e:9a:25:c1:2e:
10:a7:dc:91:c4:52:7d:46:0a:7c:bc:e2:98:72:b4:
11:4e:26:fa:12:6b:89:4a:3b:fb:3b:7d:32:22:4d:
69:78:2b:5b:46:66:ad:d6:1a:ca:e5:06:03:0e:4a:
64:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:4E:3F:17:E3:53:84:62:02:6B:28:F0:75:57:38:C6:DB:2C:C9:D1
X509v3 Authority Key Identifier:
keyid:69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:27:a5:c7:f0:72:78:52:ad:29:3d:3e:8d:a4:ff:1a:a2:b4:
c8:28:90:ad:9c:ab:cf:55:80:0d:a8:ea:30:14:4b:83:cb:95:
58:8c:ec:39:77:8d:9b:c4:ad:b0:f3:ee:1c:65:50:3e:28:30:
cc:55:a0:70:0e:a7:71:c6:f4:1a:e2:47:b3:2b:07:c7:de:a7:
d1:c5:2a:8f:07:e6:e3:99:21:20:3e:f4:e5:d6:b5:0b:d3:1e:
57:62:f6:97:95:44:6e:1f:59:eb:19:d1:fc:a1:4d:5e:2f:36:
a0:21:e7:92:10:6b:3f:4e:1c:de:7b:19:8f:5f:64:7d:26:b6:
2f:eb:b6:60:7b:05:9c:f9:71:4e:4b:fb:4f:e9:84:8f:b8:64:
dd:22:c5:8a:2c:f9:3b:ed:72:32:30:a5:34:0a:bd:8f:dc:d7:
71:59:ef:9e:1a:d2:7f:ef:00:1a:aa:7d:84:07:e0:72:98:e9:
5d:4d:d4:71:8f:0c:f3:99:00:9c:08:43:42:3e:16:16:59:31:
c8:9d:bc:f7:c7:d1:4d:48:54:15:93:8b:63:2a:c7:68:cc:b7:
0d:13:72:e8:da:23:ae:03:c5:17:17:ad:c9:f4:5b:b7:f0:4d:
cd:4c:e2:73:8f:f8:c7:22:2a:53:25:9b:33:d9:e0:9d:25:d6:
4e:10:ca:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 07:44:21 2025 by rpki-client