Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
File: aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft (raw, json)
Hash identifier: I7AbQGtYuTYyBsKWMHuqyi+sPW+3h9CCcjl640X7kqg=
Subject key identifier: B9:C9:D1:4A:E3:CA:53:AC:EE:CE:1D:56:0F:48:BB:3A:C2:05:40:DD
Authority key identifier: 68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
Certificate issuer: /CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Certificate serial: 0196A12D760439A0203887C6637C80B0967A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
Manifest number: 04E8
Signing time: Mon 05 May 2025 16:00:33 +0000
Manifest this update: Mon 05 May 2025 16:00:33 +0000
Manifest next update: Tue 06 May 2025 16:00:33 +0000
Files and hashes: 1: VftZMAe-HTAVpMfwxes2FDGztqs.roa (hash: KKajIYpdkVhXrGRISoXddoe+7uEBtFz7JC2M/TbIWjs=)
2: aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl (hash: PD+FFGvjl3opn0uFV/GKFhyIhG3GZFppp/vQbfdx2BM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:2d:76:04:39:a0:20:38:87:c6:63:7c:80:b0:96:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Validity
Not Before: May 5 16:00:33 2025 GMT
Not After : May 6 16:00:33 2025 GMT
Subject: CN=b9c9d14ae3ca53aceece1d560f48bb3ac20540dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e3:c3:82:af:ce:2e:50:ad:67:36:2b:ec:c5:
6c:0c:44:6a:88:42:72:0d:cf:a3:25:dd:06:d5:35:
d1:6b:0b:f0:d8:df:45:f0:20:b3:67:79:1e:4d:08:
80:e4:00:57:b6:d4:0e:50:f1:96:fa:89:bd:80:31:
4e:a8:ff:38:ce:48:00:2e:eb:63:b8:45:5c:7f:31:
82:1b:af:30:f9:1e:37:f8:26:e9:57:5f:7b:c3:2e:
f6:38:28:e0:83:00:e0:ae:ed:8b:ff:47:20:d5:c0:
db:fd:37:d6:4b:13:3a:64:6d:72:d1:cb:4a:eb:d7:
6b:93:de:f9:7a:88:ef:18:ad:20:3a:74:6b:78:d6:
0f:c1:9e:53:cd:c5:7e:e2:6f:6c:75:7d:87:1b:68:
c7:cf:6d:4d:2a:06:1c:ce:76:44:44:ee:ba:54:73:
0d:72:38:3b:9a:a1:5d:ab:fc:0f:32:de:88:3f:c8:
f5:30:1a:1e:1f:b8:e2:c6:2d:94:c0:3c:eb:de:62:
19:06:ab:79:2a:c7:82:b5:61:8c:bc:c1:8d:ea:18:
e9:42:87:ac:80:dd:83:9a:56:c6:9a:8c:43:7d:15:
dd:4b:23:0e:2b:99:89:8d:ab:e9:f4:a7:53:62:64:
ad:43:f4:c3:8d:0d:3c:88:8a:de:e8:b6:0a:9c:2c:
df:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C9:D1:4A:E3:CA:53:AC:EE:CE:1D:56:0F:48:BB:3A:C2:05:40:DD
X509v3 Authority Key Identifier:
keyid:68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:f3:b6:28:11:54:4b:99:bb:d4:aa:53:41:80:53:17:7d:67:
83:58:bb:9a:4f:91:c5:7e:58:27:e2:05:b2:77:b7:e2:f9:75:
6f:a5:e8:66:bf:13:da:52:e9:74:e5:61:85:62:a8:a6:83:de:
e7:16:57:2f:66:63:d3:80:7b:02:67:81:69:56:62:8e:e4:43:
3d:2d:57:8b:63:11:6a:10:ea:a8:81:a2:ba:5b:80:d9:2c:08:
67:30:9f:96:19:d0:bf:17:75:d5:f1:93:a8:e7:0c:fa:fd:01:
4d:6e:c2:5e:b6:43:65:43:72:70:af:78:8e:b0:e5:07:51:0a:
f7:a6:62:dc:80:45:90:09:24:7c:df:f9:bc:1d:ae:84:ac:21:
29:ba:f3:fd:b9:80:a0:ad:81:f4:4c:1d:00:be:53:8b:c1:a6:
ab:18:d7:a8:c2:16:12:b6:e3:fe:18:0f:2d:26:ca:26:83:83:
9a:78:b6:56:e2:a9:b4:dd:bf:a4:12:97:8b:a3:a2:08:90:9f:
a3:7b:3d:c3:d7:80:c3:f4:7b:ab:7a:d5:1e:6c:41:24:c0:19:
8c:60:79:d5:83:58:4a:79:f0:b7:ad:40:91:b3:35:82:a3:98:
38:87:a6:cd:56:87:eb:eb:60:fb:46:a6:cf:04:36:6e:a6:ab:
00:7a:3a:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 18:03:18 2025 by rpki-client