Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
File: l_aXATQzuJHWRpfZKGY75zTbpOc.mft (raw, json)
Hash identifier: dH0rs+qHzOFjPry0cKw9ieY88tppS51T1RWgBGo/b/0=
Subject key identifier: 25:47:F5:91:A8:B5:7D:81:86:2F:E9:19:E1:20:8C:FC:0F:52:57:16
Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7
Certificate serial: 0196B7102EA5A3BAB90739F66B40E5A90587
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
Manifest number: 1531
Signing time: Fri 09 May 2025 22:00:12 +0000
Manifest this update: Fri 09 May 2025 22:00:12 +0000
Manifest next update: Sat 10 May 2025 22:00:12 +0000
Files and hashes: 1: Q01X85MGyHMF5rr2gbqyxSbVGJU.roa (hash: 3pLndBzBIS9IcjtzdUX4XacaMZCMolKRG+4KwxWHWEU=)
2: l_aXATQzuJHWRpfZKGY75zTbpOc.crl (hash: 2XQEPj1Wguy8G9gVp9neuCeldwMwnE8c7zlRd9Sry+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:10:2e:a5:a3:ba:b9:07:39:f6:6b:40:e5:a9:05:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97f697013433b891d64697d928663be734dba4e7
Validity
Not Before: May 9 22:00:12 2025 GMT
Not After : May 10 22:00:12 2025 GMT
Subject: CN=2547f591a8b57d81862fe919e1208cfc0f525716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:cb:4f:c2:58:fe:63:7d:f5:9e:8f:a1:08:75:
68:75:55:14:7e:47:dc:7b:24:22:e9:da:35:ca:fe:
0a:4c:d0:94:94:b5:ab:00:66:e0:9c:ec:03:f4:65:
97:c8:25:d1:44:03:a4:6d:36:18:5c:e3:86:6f:1b:
29:7d:29:23:0b:c6:9b:bc:a8:61:3b:da:de:68:c6:
1f:ac:09:05:b8:54:18:bf:53:9c:4c:f7:ac:55:9d:
01:65:6d:6a:2c:f7:ca:07:4f:59:5a:47:d1:30:a1:
06:10:6a:aa:d9:4e:ec:f6:58:3d:13:7b:75:c2:36:
0a:58:f9:15:d5:38:a6:a1:30:4b:5d:0b:5d:50:f5:
0b:75:2e:b6:f1:df:85:d1:7f:63:bb:f0:89:f0:69:
b5:a5:26:2e:33:ba:61:b1:03:1a:77:17:4a:71:86:
bb:11:5b:1a:06:a5:47:89:26:1c:90:e6:18:2a:3b:
0f:c8:74:aa:65:2c:f2:5c:ef:02:d9:17:da:52:fd:
8d:f2:9f:8b:fc:31:66:43:97:3d:a5:ce:30:28:4e:
fe:4f:23:94:3c:12:0f:bc:62:2a:5b:9e:0d:f9:0c:
1e:ae:01:f2:51:b7:79:88:06:c2:e2:74:64:bf:9e:
8d:ba:a7:90:bb:44:fd:a8:68:08:45:50:be:86:3e:
c9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:47:F5:91:A8:B5:7D:81:86:2F:E9:19:E1:20:8C:FC:0F:52:57:16
X509v3 Authority Key Identifier:
keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:d0:60:bd:25:0e:f5:89:f8:a5:90:47:a8:ce:f8:d1:9e:2f:
b1:b4:01:ae:8b:2d:4d:86:15:44:dd:04:44:b2:df:d8:6e:e1:
32:2a:2f:0a:22:6c:94:48:f5:1b:35:0d:df:92:46:2b:ef:85:
75:69:b7:a2:d6:55:c0:8e:0b:62:bf:45:99:32:40:76:df:e8:
be:15:cf:4e:40:f3:b3:13:3b:a9:0f:01:bb:db:dd:22:a4:54:
1d:88:8b:62:64:24:6b:d9:e8:0f:0e:3b:b4:fb:03:63:8b:b5:
09:f9:1a:0b:ff:10:1a:a6:e1:1f:ec:d9:a9:cc:8d:d0:18:fc:
d1:fe:e9:a0:22:b3:5d:4f:09:3c:04:fb:f3:3c:ba:25:0d:f0:
6d:f8:42:32:cf:f2:40:4d:67:0a:4a:c4:ce:2a:9d:89:ec:fe:
35:a8:5d:c8:b4:88:1f:27:04:87:7c:2d:99:6f:22:2b:2d:25:
16:59:e1:9d:77:0a:96:06:a1:d6:cb:65:49:bc:d5:e9:8c:78:
ef:16:af:f5:5b:8c:ab:d6:4f:ea:d2:69:26:5b:38:30:8b:e0:
ef:f9:58:4f:ed:e7:ec:41:81:5a:47:75:67:37:30:ae:69:46:
cf:3e:09:f5:a2:5b:48:2f:37:77:81:04:f9:09:c1:59:9d:61:
5a:d0:49:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa3EC6lo7q5Bzn2a0DlqQWHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3ZjY5NzAxMzQzM2I4OTFkNjQ2OTdkOTI4NjYzYmU3MzRk
YmE0ZTcwHhcNMjUwNTA5MjIwMDEyWhcNMjUwNTEwMjIwMDEyWjAzMTEwLwYDVQQD
EygyNTQ3ZjU5MWE4YjU3ZDgxODYyZmU5MTllMTIwOGNmYzBmNTI1NzE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ctPwlj+Y331no+hCHVodVUUfkfc
eyQi6do1yv4KTNCUlLWrAGbgnOwD9GWXyCXRRAOkbTYYXOOGbxspfSkjC8abvKhh
O9reaMYfrAkFuFQYv1OcTPesVZ0BZW1qLPfKB09ZWkfRMKEGEGqq2U7s9lg9E3t1
wjYKWPkV1TimoTBLXQtdUPULdS628d+F0X9ju/CJ8Gm1pSYuM7phsQMadxdKcYa7
EVsaBqVHiSYckOYYKjsPyHSqZSzyXO8C2RfaUv2N8p+L/DFmQ5c9pc4wKE7+TyOU
PBIPvGIqW54N+QwergHyUbd5iAbC4nRkv56NuqeQu0T9qGgIRVC+hj7JJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCVH9ZGotX2Bhi/pGeEgjPwPUlcWMB8GA1UdIwQY
MBaAFJf2lwE0M7iR1kaX2ShmO+c026TnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbF9hWEFUUXp1SkhXUnBmWktHWTc1elRicE9jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9hZTExNjYtZDYwNi00NWI3LTlhMjIt
N2JjODMyMjBmYjYyLzEvbF9hWEFUUXp1SkhXUnBmWktHWTc1elRicE9jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9hZTExNjYtZDYwNi00NWI3LTlhMjItN2JjODMyMjBmYjYy
LzEvbF9hWEFUUXp1SkhXUnBmWktHWTc1elRicE9jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATdBgvSUO
9Yn4pZBHqM740Z4vsbQBrostTYYVRN0ERLLf2G7hMiovCiJslEj1GzUN35JGK++F
dWm3otZVwI4LYr9FmTJAdt/ovhXPTkDzsxM7qQ8Bu9vdIqRUHYiLYmQka9noDw47
tPsDY4u1CfkaC/8QGqbhH+zZqcyN0Bj80f7poCKzXU8JPAT78zy6JQ3wbfhCMs/y
QE1nCkrEziqdiez+NahdyLSIHycEh3wtmW8iKy0lFlnhnXcKlgah1stlSbzV6Yx4
7xav9VuMq9ZP6tJpJls4MIvg7/lYT+3n7EGBWkd1ZzcwrmlGzz4J9aJbSC83d4EE
+QnBWZ1hWtBJWQ==
-----END CERTIFICATE-----
Generated at Sat May 10 05:13:59 2025 by rpki-client