Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.mft
File: aGOaIXWXlv46HZGfm1c362jXCOQ.mft (raw, json)
Hash identifier: x02E8yCFxx/rxLv4+tqA287VNHbfVLEYc2OXMAfd3z4=
Subject key identifier: F5:B6:98:4D:DA:3A:B5:4B:B1:94:AE:0E:45:B1:9A:EF:38:18:D7:3B
Authority key identifier: 68:63:9A:21:75:97:96:FE:3A:1D:91:9F:9B:57:37:EB:68:D7:08:E4
Certificate issuer: /CN=68639a21759796fe3a1d919f9b5737eb68d708e4
Certificate serial: 0196BE5C89E40F51C12FD96CB2917A2AF7BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aGOaIXWXlv46HZGfm1c362jXCOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.mft
Manifest number: 127E
Signing time: Sun 11 May 2025 08:00:57 +0000
Manifest this update: Sun 11 May 2025 08:00:57 +0000
Manifest next update: Mon 12 May 2025 08:00:57 +0000
Files and hashes: 1: HaUn7tg_GQoLwUeKln7B89E1Zus.roa (hash: UBP04zlDEuw8zGqO58s8vILU4LoszVd4p1cFKyVRANw=)
2: Vaj_SKghwhMr5GkrNo3CpxB4bEs.roa (hash: 2ufypWC+H0u1FT85vML3Y3XXLbc7QafpFQUC4EhAO8E=)
3: aGOaIXWXlv46HZGfm1c362jXCOQ.crl (hash: r0E16UivVZf3EqVjp7vku16S2lM3Q2kPKhdsZ+DnNJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aGOaIXWXlv46HZGfm1c362jXCOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:5c:89:e4:0f:51:c1:2f:d9:6c:b2:91:7a:2a:f7:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68639a21759796fe3a1d919f9b5737eb68d708e4
Validity
Not Before: May 11 08:00:57 2025 GMT
Not After : May 12 08:00:57 2025 GMT
Subject: CN=f5b6984dda3ab54bb194ae0e45b19aef3818d73b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:21:2e:c8:a1:36:8f:38:78:2b:e3:49:f6:d0:
bc:01:f2:49:9d:c3:46:ee:f5:2f:db:b4:23:98:59:
f3:0e:18:52:06:51:ff:85:b3:41:96:ba:67:8b:df:
63:2e:64:17:c1:35:63:73:f0:4f:30:3b:c9:6f:c9:
09:0e:81:19:6b:0e:24:d4:73:bc:98:22:b1:f7:cb:
f1:65:fd:3e:72:f8:32:f2:c8:3f:7e:2a:72:7b:fd:
09:ab:f0:a4:f8:39:54:cc:5c:8b:06:25:1e:1f:1c:
98:e2:ae:fe:a5:e4:15:41:4d:af:10:17:fa:81:a1:
f7:99:16:d9:d7:b5:f8:9d:a0:85:bb:95:72:ee:38:
9c:cb:f8:d6:7c:8c:d4:46:83:9a:d5:04:6e:5c:6e:
22:4d:39:38:e2:f3:0e:32:33:a1:fc:93:3c:a4:13:
f0:2b:08:1f:4b:8e:e5:2d:b8:d3:7b:48:a7:af:24:
77:bc:4b:0b:7e:c4:71:c3:e8:42:7e:e8:64:c3:63:
0f:88:9e:76:b6:a3:1f:53:c7:34:90:ca:5e:d3:5a:
a4:ed:68:71:f7:c2:f9:c0:57:8d:0f:18:0f:a3:98:
36:8a:c7:b7:5b:3d:fe:d3:0f:87:ba:39:00:ff:0a:
0c:c0:1a:54:28:f6:74:71:1f:9b:5b:19:5e:2d:d2:
d1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B6:98:4D:DA:3A:B5:4B:B1:94:AE:0E:45:B1:9A:EF:38:18:D7:3B
X509v3 Authority Key Identifier:
keyid:68:63:9A:21:75:97:96:FE:3A:1D:91:9F:9B:57:37:EB:68:D7:08:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aGOaIXWXlv46HZGfm1c362jXCOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:dd:ac:21:34:bf:ce:9a:67:a9:40:0e:00:79:f0:bd:ea:31:
42:ea:6d:a9:2c:92:3b:25:7e:15:2a:c1:bb:12:a6:52:c9:46:
27:d0:bb:91:55:e5:63:d5:e9:06:b2:6e:30:3c:0e:d7:cc:14:
69:ee:f5:2a:1d:14:28:f5:37:4e:72:ec:a9:dd:ce:ba:4f:36:
a8:77:50:ca:5c:c8:a0:78:1f:0e:07:51:59:08:05:38:5c:0e:
c4:de:60:93:4b:1e:d4:89:d1:bd:f7:4a:6b:f7:8e:70:25:ff:
97:09:86:d3:a0:2e:77:a1:3c:44:8c:81:27:55:ab:72:78:40:
d0:bb:da:6f:d4:a0:5a:14:f7:bb:a9:f7:dd:f0:05:e1:76:dc:
6f:6a:ff:7e:f7:e6:da:50:51:15:87:49:48:69:27:f6:25:e8:
f0:6b:33:6c:b3:5b:7d:70:63:79:78:2a:41:9f:34:3f:d3:7d:
b5:fc:06:ce:66:59:9d:05:96:ee:bd:39:c7:8f:e1:94:9b:de:
be:1f:88:20:07:5f:44:70:bb:2f:26:71:c1:1c:5a:d6:fc:9f:
28:e6:e8:46:18:ad:fd:60:87:b3:d8:01:da:31:35:9f:72:16:
d0:34:b6:e6:ff:63:f1:94:ae:87:8d:71:82:c4:59:8a:21:4c:
cf:d2:03:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:27:44 2025 by rpki-client