Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
File: aCMaUAoKgQjcekNYsQArH9vweZU.mft (raw, json)
Hash identifier: SF9/g1p69HN6CeDIw8ddPiyYqHXCTCO3p6V0csd1vOk=
Subject key identifier: 14:D5:26:5C:5A:EC:4E:93:40:8E:18:3D:C5:00:0F:78:A2:8A:ED:B3
Authority key identifier: 68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
Certificate issuer: /CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Certificate serial: 0196C570DB401A77C8A19A18A1E86EA1C4DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
Manifest number: 1539
Signing time: Mon 12 May 2025 17:00:29 +0000
Manifest this update: Mon 12 May 2025 17:00:29 +0000
Manifest next update: Tue 13 May 2025 17:00:29 +0000
Files and hashes: 1: XSGE2n2dKWY3M_jq3MngIc3i_t8.roa (hash: pwMRSRLzn3jyPbMLShLv8HDNQd5Gm8ws1AjCFBEAHaU=)
2: aCMaUAoKgQjcekNYsQArH9vweZU.crl (hash: eEECb64YZsyUObdn9MAW1NaXb0HJm4/nG3GnEv/+md4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:70:db:40:1a:77:c8:a1:9a:18:a1:e8:6e:a1:c4:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Validity
Not Before: May 12 17:00:29 2025 GMT
Not After : May 13 17:00:29 2025 GMT
Subject: CN=14d5265c5aec4e93408e183dc5000f78a28aedb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0e:b8:d5:bc:3c:e1:b4:8b:88:da:95:f5:1f:
6f:4b:58:52:41:42:48:8f:0b:0c:da:de:bb:a5:8a:
4c:bc:7d:d0:40:ba:23:74:ad:01:82:da:61:69:69:
90:cd:d2:b9:ce:d4:a9:d8:7c:a7:a2:55:42:57:7d:
3a:11:94:35:b8:7a:ff:12:79:63:47:c8:df:38:f2:
c2:28:02:d0:d2:46:cb:2d:42:74:c1:d6:8c:fe:31:
88:ea:68:ff:4b:b1:55:30:db:22:48:d8:2a:cd:7d:
30:5b:bf:3c:2f:df:df:9c:c4:92:03:d2:3a:c7:ba:
56:25:14:f0:64:96:00:61:cf:b7:65:0a:ab:a4:54:
5a:cf:50:92:7c:b3:ba:76:74:87:7c:1c:1c:e4:74:
f3:9e:e4:77:21:7c:05:4a:7e:1d:23:03:3a:56:8b:
8c:74:80:a7:5c:30:bb:f6:ea:69:69:1a:ec:2b:3c:
e2:d2:d7:5f:03:75:ba:c3:4b:4d:3b:51:4f:28:44:
42:d0:9e:0d:7c:b6:d0:50:fb:5b:d6:46:1e:f2:82:
8d:43:fe:28:c9:86:b1:e4:6a:b5:97:b3:10:69:6a:
7a:2c:4c:e9:85:c9:72:8d:e8:7b:d7:b4:3f:05:96:
6e:36:b9:3e:43:80:e6:82:c8:3a:81:c3:2d:12:67:
58:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:D5:26:5C:5A:EC:4E:93:40:8E:18:3D:C5:00:0F:78:A2:8A:ED:B3
X509v3 Authority Key Identifier:
keyid:68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:28:ef:7a:75:74:bd:a3:3a:ad:4f:bb:5f:79:fe:4f:af:9a:
43:e3:31:4d:84:22:04:68:9b:4b:55:fc:65:7b:b0:28:4f:8c:
15:81:71:43:6a:9c:48:8b:bc:6f:e4:4b:37:94:eb:38:2a:29:
48:5b:55:4b:01:eb:5f:71:eb:ef:c8:96:4d:db:8c:13:56:0a:
4d:b6:07:24:5c:3b:8d:42:a5:1f:4c:46:90:20:69:42:87:64:
05:1e:00:da:33:a0:ae:3a:33:f1:d9:6d:28:44:b2:28:b5:82:
8d:43:19:9d:24:da:12:93:d1:44:c2:b8:b8:3d:31:21:57:34:
7e:d8:b8:16:a0:87:95:a4:69:e7:fa:e4:da:70:e9:88:3e:2d:
8d:21:20:f8:63:ab:3a:85:3b:7c:45:b9:7e:28:9f:41:c8:1a:
d6:99:37:03:ed:5f:61:d0:aa:1a:56:45:f0:72:fb:20:e3:a7:
2d:3c:4d:97:77:4a:a7:e2:a0:86:89:fa:a8:95:44:b5:76:b6:
be:22:ab:05:28:2b:b0:ff:e0:7a:9b:05:27:0d:f9:b4:a4:73:
6d:1c:85:6e:bd:2b:c9:1d:ab:44:52:74:23:e1:ed:b1:4f:e6:
3b:ad:a0:a7:4b:a5:7e:ca:3a:84:71:cd:9e:91:77:75:65:cf:
df:d0:98:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:31:08 2025 by rpki-client