Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json)
Hash identifier: UY2p8Kzb3g+cHCWN3s+bYjkIp8sRqubOb2E//PRHVT0=
Subject key identifier: 6C:5D:9C:AC:5B:84:29:EE:21:21:3F:83:28:72:7E:DB:40:22:5C:A0
Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Certificate serial: 0196B6D9B76F821B523CE05917F3B4FA83D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
Manifest number: 153F
Signing time: Fri 09 May 2025 21:00:43 +0000
Manifest this update: Fri 09 May 2025 21:00:43 +0000
Manifest next update: Sat 10 May 2025 21:00:43 +0000
Files and hashes: 1: 96CoHDqUFKRWLMKpuPNky2AThV0.roa (hash: 2dbkXGtx2Y2iGJ3uWXJRyOKWK4j+bBsW6iNp6F1vwRk=)
2: Zv6rhEtfx_jSCXc_S8UyXA0vo2U.roa (hash: upx9rJYDv3PHx1B1uURg+ybXETCTfjV8bsr8SvgJ3XM=)
3: biGYeNx8PlSGKHRmVucthKOSlnY.roa (hash: YxlSQax5Hky2oIIKAGXfmWIsjyjpaMRbBxvVdrI+BSI=)
4: g1Zk3nIRea2SYaHqoN92Ss1LCL8.roa (hash: aHQejC3hHy18rRg2jbGxWbnzx0KaJtZTncqKQ8jXn3M=)
5: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: nCych0SPyideLZu5k7pAoAZcJnAtlZbE8nVm39yHi6Y=)
6: mmvuqSKrxCIOK5dTOpgllxAuYB8.roa (hash: cXrhSBrwqA5XppxSkBQnZWJRKIyKnPJRdZjf9M/iItg=)
7: rZuO-15UbHThyJRmeryxRpgLk2M.roa (hash: /ED0vNPFUaV7PRvXzqX2jHZ983s8HtxjtsJuRuMtCvI=)
8: ucC9i3XEX6RhZkWqb6NvZwx0--U.roa (hash: 2+uO/5ecRW47tQiINeeU4pOO33FM+U1i9JrXKMVUjI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:d9:b7:6f:82:1b:52:3c:e0:59:17:f3:b4:fa:83:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000
Validity
Not Before: May 9 21:00:43 2025 GMT
Not After : May 10 21:00:43 2025 GMT
Subject: CN=6c5d9cac5b8429ee21213f8328727edb40225ca0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:36:f8:28:e2:1b:68:14:d0:80:a1:99:b3:9f:
71:94:86:82:42:8c:5a:39:47:bf:c5:aa:ef:33:58:
74:c2:e0:1f:69:ac:cd:9a:61:bf:75:07:44:f6:68:
08:4e:98:ff:75:d8:87:6a:7b:21:5b:f9:2c:12:05:
dc:41:69:07:c6:ea:94:73:5c:bb:02:43:6b:e9:12:
0d:8e:50:fe:8e:3f:c8:4c:e1:d6:d3:3c:e0:3c:36:
1b:8c:2c:d7:fa:aa:82:13:6c:bc:78:5b:03:38:a3:
56:e5:89:30:f5:65:e8:65:04:54:fb:95:0a:f9:b8:
81:32:3a:34:20:ff:9c:0d:3f:7a:ef:d4:a4:36:c5:
6c:04:30:85:f3:45:4a:54:34:a5:04:f4:61:ae:b0:
71:2e:15:cf:2a:a3:44:7d:14:65:e5:5d:07:cb:06:
a4:3d:1f:bb:27:10:53:c7:b0:c8:d4:53:2d:98:22:
23:f8:89:28:55:2e:9c:cf:55:73:e9:83:03:c6:59:
76:31:58:b0:ab:f5:07:bc:09:9c:ba:b6:57:a5:46:
a3:e6:21:2d:95:2c:e7:c3:ee:6c:6b:34:ad:78:3f:
52:c0:9f:61:27:d3:3a:19:8a:f9:16:be:d8:fb:bc:
62:8e:3f:b8:80:91:e0:97:90:3a:29:34:61:67:7b:
a7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:5D:9C:AC:5B:84:29:EE:21:21:3F:83:28:72:7E:DB:40:22:5C:A0
X509v3 Authority Key Identifier:
keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:ca:50:ba:c5:2f:07:ba:43:05:54:b0:ff:61:c1:73:56:06:
f1:4e:b3:c5:61:26:1d:fe:9c:e8:ab:77:c4:9e:99:55:37:d7:
23:36:e5:f0:d4:06:97:9c:d8:81:65:90:25:1f:41:92:d7:13:
27:41:f7:19:9e:09:8b:72:de:cb:d1:45:63:30:91:32:43:3f:
a4:c6:ce:72:a0:51:b2:e6:01:29:8f:8b:6a:5c:0f:f8:54:03:
09:81:b7:f4:38:8f:fe:30:85:2e:0a:7a:fb:f0:27:b1:4e:1c:
22:e1:cb:c3:d5:cc:66:e7:4f:d9:c0:34:72:2c:9c:0e:e3:f5:
d3:6b:79:59:dc:90:af:68:c0:be:40:b8:db:47:64:f0:82:a3:
f5:02:db:69:8e:5a:f1:0a:1f:db:55:b9:4f:d3:1e:a3:d6:40:
3e:de:86:b1:20:64:dd:a1:c8:70:ad:72:bc:bb:b8:e8:23:3e:
d3:8b:8f:63:68:66:61:68:84:a4:40:b0:31:35:5c:80:a9:f6:
f9:59:0f:1b:32:dc:2a:28:7f:bd:4d:3b:d1:9e:86:27:79:d0:
2f:9a:c1:47:fb:a0:ba:7b:6a:68:61:64:ac:70:e0:3e:7d:55:
3c:d1:72:26:ed:0e:23:7b:f0:a3:cf:c3:32:e4:99:e0:a1:da:
24:3a:26:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 04:49:10 2025 by rpki-client