Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json)
Hash identifier: KkCWAK+trr8lI/Lo8V7gTscDloi9wp3nujVkJdLMldI=
Subject key identifier: 3E:02:49:BE:34:C9:B5:41:6E:27:54:C7:43:F4:B5:DC:39:06:9B:3D
Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75
Certificate serial: 0196B82390769D065BEA71431ABA2E3FEDAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
Manifest number: 018F
Signing time: Sat 10 May 2025 03:01:00 +0000
Manifest this update: Sat 10 May 2025 03:01:00 +0000
Manifest next update: Sun 11 May 2025 03:01:00 +0000
Files and hashes: 1: MyHgwE9JQ37sKu_CcRwNe642FMI.roa (hash: UWTUq6zuuwDHpYw/C8xNP37TF6tAxhLymuOUDHs6DJk=)
2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: SovsuQkdSIrd64JWZpVREPfIt9n9/2p2F0FJtWHBZE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 03:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:23:90:76:9d:06:5b:ea:71:43:1a:ba:2e:3f:ed:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75
Validity
Not Before: May 10 03:01:00 2025 GMT
Not After : May 11 03:01:00 2025 GMT
Subject: CN=3e0249be34c9b5416e2754c743f4b5dc39069b3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cb:dc:7a:5e:b4:13:eb:c7:1c:84:c0:3b:66:
1c:7c:46:ba:7e:52:94:e2:ea:1d:c4:5e:b6:1f:93:
b9:b5:8a:e4:df:70:13:b0:30:c2:0e:34:43:46:e3:
3c:49:81:44:b7:10:ce:f9:95:e4:47:a4:1a:3d:72:
4d:ab:5d:90:45:a6:76:79:6d:e2:f0:5d:ab:be:95:
2c:b1:2e:b3:d7:d1:2a:98:bb:e2:0e:79:b3:3b:2f:
a4:53:6a:1d:6d:04:3e:f1:1d:c0:4b:87:a5:22:b0:
2c:c1:c5:3d:c7:d9:7e:e8:c9:60:06:37:bf:cb:75:
36:de:13:24:6c:85:25:3f:a7:5b:68:12:a0:13:8d:
9b:cf:d7:61:cf:6e:e7:2c:79:31:6f:d3:00:1a:3e:
42:53:30:c4:6d:4c:85:a6:3f:dd:11:cb:ca:cf:47:
78:18:5a:b4:5e:ca:6f:a1:84:e7:3a:8e:4e:55:fd:
73:a4:01:dd:f8:88:df:3a:1d:77:07:59:11:b3:d8:
35:b2:60:d2:f9:7a:ca:0e:4e:98:29:16:16:c0:97:
0e:d1:f2:b9:9d:05:6f:40:3f:d9:aa:e2:5d:49:48:
f3:d9:d3:cb:f6:68:44:39:0b:68:b1:27:cb:f5:eb:
d5:5a:67:56:86:11:49:1a:96:1e:8f:13:dd:f5:d9:
c3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:02:49:BE:34:C9:B5:41:6E:27:54:C7:43:F4:B5:DC:39:06:9B:3D
X509v3 Authority Key Identifier:
keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:b8:3f:ad:9c:45:8d:34:c9:06:51:6e:cf:28:7b:42:83:21:
11:51:76:1d:72:21:ae:d8:e1:f7:0f:90:c0:14:33:00:5f:c1:
53:f1:97:61:ed:c5:af:98:12:de:8c:de:c2:52:1d:b2:08:ef:
63:b0:2e:16:ad:1a:75:32:b8:a2:00:03:9b:f8:34:f7:46:ef:
ad:04:02:8b:49:af:d4:da:6d:96:72:60:d4:64:1c:17:37:4b:
6c:45:4b:96:c9:b5:c9:e2:45:48:69:c4:cb:41:9e:57:bc:d1:
18:4b:bb:44:68:48:98:75:61:c7:b0:b4:5e:18:57:36:71:cb:
9a:e5:f2:9a:c7:47:3a:92:ef:42:c7:ac:fa:07:44:24:5d:69:
6f:cf:7b:9c:f0:16:a2:34:ea:f4:67:f5:2e:1b:a3:0e:ac:29:
6e:08:24:2e:35:16:77:c7:0b:66:0e:b8:a7:1f:b2:1f:9e:23:
0f:1f:56:f7:c1:94:cf:5f:d5:d9:de:03:48:13:8a:1c:3f:76:
c6:c3:cd:5f:ab:5e:da:fd:ce:f1:24:25:7c:59:f8:c6:09:41:
d3:31:a7:37:ed:62:e7:e8:2a:94:03:01:14:e8:f7:da:8c:a3:
10:f2:ba:b0:5d:18:d3:5c:91:65:50:6d:51:c1:79:e0:8a:80:
d8:45:da:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 08:03:22 2025 by rpki-client