Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
File: AOC06vnBB5HzU7qYfeI2ChOEF70.mft (raw, json)
Hash identifier: LKJXdEIJXt03pUkBNrb3TMRnAYOuEmn9zZqvEzp6UrE=
Subject key identifier: 66:44:CC:F9:48:84:77:03:30:03:75:D5:E2:84:6A:61:EB:24:5A:31
Authority key identifier: 00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD
Certificate issuer: /CN=00e0b4eaf9c10791f353ba987de2360a138417bd
Certificate serial: 0197B7B313333C84BAE35732A61103111C72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
Manifest number: 07DF
Signing time: Sat 28 Jun 2025 18:00:55 +0000
Manifest this update: Sat 28 Jun 2025 18:00:55 +0000
Manifest next update: Sun 29 Jun 2025 18:00:55 +0000
Files and hashes: 1: 7Qz5q4z6Tluf-_C3llmKbm-Y_6k.roa (hash: Btz39reQ2rKKUs2JCEZIO4ZVKwDZCOjT3ZoGf4qNKOM=)
2: AOC06vnBB5HzU7qYfeI2ChOEF70.crl (hash: Vg1jQX4r1je4kzZgqPTDO5/Bj6RllRiY+0tuNx+APCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:13:33:3c:84:ba:e3:57:32:a6:11:03:11:1c:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e0b4eaf9c10791f353ba987de2360a138417bd
Validity
Not Before: Jun 28 18:00:55 2025 GMT
Not After : Jun 29 18:00:55 2025 GMT
Subject: CN=6644ccf948847703300375d5e2846a61eb245a31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:fd:28:59:b4:d0:2b:eb:65:50:e8:f1:05:5a:
a5:e6:69:ea:d3:67:07:73:91:dc:28:51:b6:61:38:
41:48:c5:e1:f5:24:1f:2e:e4:f4:1f:07:bd:0c:b4:
76:77:4d:7a:2d:74:c7:66:93:c2:23:dd:3a:ba:a8:
2d:1e:7c:e6:87:a4:5e:56:da:dc:f3:58:7a:d9:87:
7f:81:35:bb:54:72:8d:1f:38:49:94:64:ab:ae:6c:
ed:b2:42:d7:e4:e6:20:74:30:7b:ad:e5:f7:8f:9e:
5f:5d:ca:ed:ed:bb:c2:58:70:b9:2c:1c:c5:62:f8:
9a:ee:8a:50:1b:ef:a5:e0:44:8d:3b:87:5a:1a:92:
b0:9b:a1:49:67:46:da:00:1a:81:68:da:42:17:9c:
1e:c1:b8:92:41:b6:f2:ab:9f:c3:d5:b6:d2:aa:36:
a5:27:b5:17:63:f7:db:ac:64:34:ae:ea:b5:20:52:
82:22:a7:75:8f:22:98:be:f5:40:17:22:42:89:10:
7f:ba:e5:35:00:45:02:71:64:3c:c4:f8:44:fc:59:
56:ea:5c:70:fd:8b:e3:14:9c:d7:75:66:9b:cb:7f:
4c:f4:08:32:f6:fb:bd:61:88:94:99:49:bb:1e:91:
b1:34:26:da:22:5f:a4:d2:51:28:c0:44:7c:ea:d1:
32:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:44:CC:F9:48:84:77:03:30:03:75:D5:E2:84:6A:61:EB:24:5A:31
X509v3 Authority Key Identifier:
keyid:00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:00:14:6c:99:76:87:9a:43:44:e6:1c:36:c8:0c:31:a8:86:
58:0a:c1:ef:30:81:d2:9f:cf:54:78:e4:a5:be:28:39:ea:67:
a7:c7:ff:e5:8d:02:48:fa:a2:cb:f0:48:58:a5:08:6b:2c:b1:
c7:50:d6:7f:eb:d8:81:9c:3a:a7:19:e6:40:9d:e4:12:2d:3a:
87:8c:16:20:e4:03:ed:10:95:ab:d3:42:e1:01:51:04:05:e6:
00:b1:0e:9d:34:32:98:48:6f:43:2d:9f:d9:d8:ec:c3:2c:41:
07:20:4c:77:04:d9:d6:98:b4:01:98:27:61:86:f6:1b:1b:b0:
4d:47:f8:7b:2c:ec:6e:60:a6:56:fa:a2:c7:41:a2:c2:ad:8e:
3c:f4:2e:af:18:7b:7a:e1:07:e0:b1:c9:9d:fb:ab:a8:3b:6c:
15:0d:96:10:83:75:10:42:8b:57:7b:ed:49:ce:f0:eb:d4:6a:
ed:e4:db:56:cb:ad:39:6c:d8:80:ac:ac:01:3e:3e:55:4b:8b:
87:b3:69:d5:e0:78:79:1d:5e:78:4c:f9:7c:86:1e:7c:13:05:
30:f7:ad:ea:ab:ae:e4:9c:70:0d:29:70:f7:79:59:79:cf:65:
7b:96:cf:85:bb:c3:9f:78:ec:26:2c:20:fd:4e:62:52:f8:89:
a0:4f:a7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:21:12 2025 by rpki-client