Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
File: ao33d2sW0oLgTGluJYqk-fnOnJg.mft (raw, json)
Hash identifier: IUYK1Ep5DGsX2WeuwqzgjmgKAWEIT/FGVdvjZHXLnDI=
Subject key identifier: 01:B2:D4:64:0A:EA:F6:56:48:94:0F:B6:EB:B4:91:76:16:B1:1E:66
Authority key identifier: 6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
Certificate issuer: /CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Certificate serial: 01964AB425AD0E47A2DF39BA5A7E0FBA970E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
Manifest number: 08E9
Signing time: Fri 18 Apr 2025 21:00:42 +0000
Manifest this update: Fri 18 Apr 2025 21:00:42 +0000
Manifest next update: Sat 19 Apr 2025 21:00:42 +0000
Files and hashes: 1: ao33d2sW0oLgTGluJYqk-fnOnJg.crl (hash: GLor3tTMjbrqG2+4i2WaHToyOzLeRzWwFbjmj4saExs=)
2: zkFI0q7jFUcpvcC1_CEihR1YV24.roa (hash: 783T5wgYEpPQMcRoCX4E0P3B8Y6FUugL0p43iJWmXrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:b4:25:ad:0e:47:a2:df:39:ba:5a:7e:0f:ba:97:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Validity
Not Before: Apr 18 21:00:42 2025 GMT
Not After : Apr 19 21:00:42 2025 GMT
Subject: CN=01b2d4640aeaf65648940fb6ebb4917616b11e66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8e:4e:29:65:49:91:72:b4:9c:42:53:07:9b:
6e:55:23:ca:0b:4c:24:8d:49:3e:42:ff:d7:80:dd:
68:7b:fd:0c:67:cf:d9:91:5a:76:83:d2:b9:ef:a4:
fa:36:3d:51:3a:cd:b8:b6:43:8c:30:64:d2:b2:20:
fb:7d:39:86:a2:70:23:c9:71:12:6d:32:65:57:8e:
42:29:4a:36:09:8c:41:e0:c8:15:87:7c:42:2f:85:
93:0f:01:72:ae:de:07:2d:4e:a3:66:c9:24:f6:dd:
d8:f4:b4:43:8d:0f:4f:ff:08:4b:22:47:3c:3b:5e:
41:0f:96:cb:b7:a7:3f:cf:75:7e:96:d6:ee:ca:d5:
a1:60:83:65:ed:00:3f:20:7a:63:a2:b0:56:ae:89:
08:00:97:c1:8b:b3:2c:84:4d:1b:6e:87:b1:a4:62:
eb:aa:79:45:9c:78:bb:5e:b0:76:c0:57:97:c4:84:
d8:8f:16:8e:c6:bf:51:b1:2e:d4:e7:20:c3:fc:e0:
a7:15:dc:2a:8c:91:01:5a:84:4c:73:f4:08:a4:0e:
88:1d:fb:62:9d:b1:7e:e1:d9:a0:ec:3a:e7:86:e4:
53:7d:6c:81:c1:89:4e:2d:64:ba:9e:fb:84:1f:61:
9f:8f:58:51:e6:67:cc:4b:5c:cf:ef:ff:00:cb:6d:
29:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:B2:D4:64:0A:EA:F6:56:48:94:0F:B6:EB:B4:91:76:16:B1:1E:66
X509v3 Authority Key Identifier:
keyid:6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:0f:2c:72:9d:04:3f:1c:10:cd:37:07:6e:98:af:99:d6:55:
ce:2e:ff:0b:81:a9:ad:e3:35:49:18:2d:70:6c:ce:af:43:96:
dd:d3:ad:b5:ac:41:cd:94:26:08:d7:89:a5:9b:d6:ea:d3:75:
12:c3:ab:14:8d:b9:5b:28:30:b0:01:a5:e3:14:37:36:2a:71:
84:aa:fb:d2:69:2f:da:bf:c6:60:c3:ca:f8:7b:23:8e:db:f3:
8b:57:49:0b:9c:ce:5f:e5:0e:c0:f1:93:46:1c:7b:a1:95:25:
07:c1:12:96:04:b8:8f:8f:ff:3d:e3:e0:99:38:04:5d:3a:75:
92:c6:50:73:3d:62:92:bd:4b:74:fc:98:52:a4:14:61:88:8f:
a9:0e:fe:f1:f5:b7:7e:ac:51:1c:53:21:a8:f0:cc:42:1e:d0:
71:2d:d0:15:7c:cc:6a:c4:1f:f8:ec:49:b5:93:b5:34:3b:29:
50:6a:c1:77:7c:04:5b:da:9d:4f:46:bb:fe:e8:01:84:c8:f2:
0a:69:4f:7c:05:57:62:c4:7a:b6:cc:69:7a:7b:bf:7a:8d:b9:
10:21:05:52:67:91:96:f4:e1:3f:f2:45:f7:e9:1b:63:79:46:
24:85:11:df:41:97:c6:22:a4:d3:df:73:b1:43:02:11:7c:3b:
54:2d:67:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:05:17 2025 by rpki-client