Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft
File: aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft (raw, json)
Hash identifier: ORRMvDfPQFOsQ4BAcIjzz80ihC1VDnNR8unifihgoXY=
Subject key identifier: 1A:80:24:B6:6F:55:7F:FA:70:87:DF:F5:B8:44:16:A8:0E:56:2A:9B
Authority key identifier: 68:93:18:8E:BF:CE:20:E5:BC:53:F3:AC:F5:7F:40:7D:9E:57:AC:17
Certificate issuer: /CN=6893188ebfce20e5bc53f3acf57f407d9e57ac17
Certificate serial: 019748555C70791CB95CABD04901893AEC92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 03:00:43 +0000
Manifest this update: Sat 07 Jun 2025 03:00:43 +0000
Manifest next update: Sun 08 Jun 2025 03:00:43 +0000
Files and hashes: 1: 1-POC2nfhxokaO34U4IxxrQdEyHg.roa (hash: HGa5ESI5zwwldA7SOJhQSh4vTo8C4LN7Ht6oX1cZupU=)
2: aJMYjr_OIOW8U_Os9X9AfZ5XrBc.crl (hash: 0UxQjS75y4colAetibTEZ1+aEZkkx4JtgTjxIHP46B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:5c:70:79:1c:b9:5c:ab:d0:49:01:89:3a:ec:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6893188ebfce20e5bc53f3acf57f407d9e57ac17
Validity
Not Before: Jun 7 03:00:43 2025 GMT
Not After : Jun 8 03:00:43 2025 GMT
Subject: CN=1a8024b66f557ffa7087dff5b84416a80e562a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:60:12:e8:7c:74:13:78:e2:15:c6:bd:0b:6d:
58:13:8b:c2:5f:34:5f:f2:24:8d:00:62:ed:fe:a2:
c6:83:e6:28:5b:f4:24:dc:0c:50:58:02:5d:ad:61:
d1:04:ce:e2:c4:4f:67:a0:1b:ad:ee:d7:85:97:18:
99:65:10:a6:c2:40:ed:2c:db:c4:a3:42:91:1a:82:
9b:84:fd:9f:3c:01:bb:90:2b:4b:f3:cc:de:7a:c4:
3e:c2:43:b3:2c:81:df:2e:a0:60:a9:a2:34:7c:f2:
2a:40:a0:26:6c:b8:20:58:d9:7e:cd:5d:13:4d:78:
40:ca:c5:42:26:cb:5d:bd:e8:c7:30:a2:1a:9c:2c:
d3:23:93:60:a1:8c:eb:0e:8c:ac:88:9a:b9:4e:70:
71:93:ca:fb:e2:4e:eb:8d:6f:94:1c:91:c8:2f:41:
06:ff:ff:c8:f9:58:2b:0d:46:7a:7f:53:87:7b:4f:
65:22:26:e5:fc:c2:e4:05:dc:7b:14:0c:ba:73:76:
ad:8d:01:3c:2e:fc:f7:f9:b2:2e:7b:f3:f5:7a:d6:
a5:56:ea:f5:5f:d9:a3:a1:5d:13:22:cd:bc:90:a1:
ce:fa:6e:ef:0f:e3:6c:69:fd:2c:a5:8d:9b:ea:91:
f9:63:0d:d2:53:ce:ec:a2:f5:54:ea:61:14:4d:08:
b1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:80:24:B6:6F:55:7F:FA:70:87:DF:F5:B8:44:16:A8:0E:56:2A:9B
X509v3 Authority Key Identifier:
keyid:68:93:18:8E:BF:CE:20:E5:BC:53:F3:AC:F5:7F:40:7D:9E:57:AC:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/c32ed5-7a1b-4f26-ad3f-2d2b4f70c3a3/1/aJMYjr_OIOW8U_Os9X9AfZ5XrBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e3:c2:47:ba:37:21:41:92:7f:8e:70:a7:7d:d9:20:d4:47:12:
04:1a:85:19:c4:98:fc:bf:22:60:e6:d5:cf:29:d6:4b:98:bc:
c6:20:87:5c:1d:c4:eb:27:bb:75:90:0d:28:26:c4:f2:de:41:
67:bd:30:89:ab:25:ce:31:a2:d2:74:86:bb:a0:3a:44:54:44:
a5:8e:ca:a1:08:ed:c8:cc:45:22:eb:6b:b6:b7:52:ee:6f:fb:
d2:9d:6e:23:da:1c:ab:ae:69:6c:58:9c:af:cc:70:df:5e:61:
27:44:cd:11:fb:bc:75:30:e4:b9:2e:07:ca:14:df:cc:f4:7b:
68:67:e4:be:49:42:9b:1f:c4:55:42:5e:31:5e:99:3a:98:56:
a3:b4:45:12:dd:1f:c9:7b:88:fe:f2:01:37:03:32:00:c9:33:
d1:63:b1:c2:30:a8:49:bf:1d:c7:15:3a:b1:cb:90:12:3f:4f:
66:aa:d3:63:af:d2:89:c4:f8:c8:b2:57:a1:ba:8c:17:bb:b6:
a2:0d:de:17:f6:38:35:e3:73:c9:28:32:90:9b:e3:47:f7:c0:
fc:c7:77:a5:fd:06:a3:24:df:44:fc:1b:5a:12:52:6b:dc:a2:
e1:a9:35:60:af:91:33:32:46:f5:1e:32:43:19:76:37:a0:7e:
a6:cc:42:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:28:22 2025 by rpki-client