Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: rCssPOmtY3/OfmtQx+nNrCOabsQUsRPN0dQh0RiPalo=
Subject key identifier: 7E:D4:8C:1F:48:A8:10:9A:D4:39:81:FA:71:0D:78:82:1E:D6:D3:EC
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 01963FC2524FCDBE5ABDC30A0BBF05E47FF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 14F4
Signing time: Wed 16 Apr 2025 18:00:21 +0000
Manifest this update: Wed 16 Apr 2025 18:00:21 +0000
Manifest next update: Thu 17 Apr 2025 18:00:21 +0000
Files and hashes: 1: K-gQWrDorOWk95T1Ck9YnvOvyOw.roa (hash: M7ISU7dx2mACRrVyXnpQ2vx1ALS4joyLkkEwNFtNto0=)
2: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: YCZc1LyRxcJsKWT64pRps8FtvyA5fdShv8bTiy8eQVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:c2:52:4f:cd:be:5a:bd:c3:0a:0b:bf:05:e4:7f:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Apr 16 18:00:21 2025 GMT
Not After : Apr 17 18:00:21 2025 GMT
Subject: CN=7ed48c1f48a8109ad43981fa710d78821ed6d3ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:23:89:7f:aa:8a:b6:86:d7:97:8b:91:93:ce:
5b:66:92:7d:4f:5f:26:eb:9e:81:3a:07:f8:6a:5e:
8c:4c:d0:0e:6d:76:ad:39:61:8a:6e:7a:3b:1e:f8:
18:4f:b5:5b:58:b9:d9:cd:c0:26:8f:e3:6b:12:73:
c1:4c:7d:cd:ab:91:1b:52:fb:cc:35:48:d9:86:b2:
fd:00:16:37:af:0d:26:3e:50:2a:0c:84:1a:71:26:
f1:88:a2:61:99:0b:f9:ac:1d:f7:29:3d:9f:35:ca:
2f:fc:f3:2f:46:e4:57:c7:15:3f:8b:77:b9:91:9c:
f5:7f:fd:1b:ce:9b:bb:43:cb:ad:1e:e5:4d:f1:ed:
fc:37:a0:36:dd:74:a6:e8:b1:79:d5:0f:46:91:a9:
e8:9a:27:98:7a:21:75:75:79:88:01:bb:eb:b9:9d:
ef:55:89:f3:0b:e0:bf:28:ef:2d:26:35:e2:3e:3e:
2b:85:5a:89:14:e6:3b:7f:a4:b4:c2:ee:9e:fe:00:
f5:60:c9:a7:05:c3:97:61:36:1a:36:82:ba:09:a4:
9f:67:b6:3f:db:a3:eb:9e:78:7e:80:5d:50:6d:89:
ee:1f:16:fa:af:fc:2f:75:c5:14:08:97:df:2d:4d:
8f:15:0e:b4:20:e7:fe:a4:7c:ad:75:a5:ba:a2:21:
d0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D4:8C:1F:48:A8:10:9A:D4:39:81:FA:71:0D:78:82:1E:D6:D3:EC
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:86:ae:09:e0:ca:ed:82:be:fc:87:bf:30:64:ce:74:1d:52:
1b:e9:ba:47:a0:1e:50:29:ff:e5:f6:7e:35:76:a3:ed:eb:1a:
a0:6e:68:0f:77:53:4b:66:b4:40:1a:26:2c:e7:e9:4a:aa:eb:
ea:19:e0:ce:e0:db:d4:78:3b:0b:2d:69:80:44:c6:e2:81:d7:
fe:2a:e8:8c:dd:b1:d4:d1:6d:0d:b0:94:e2:cc:08:26:ff:01:
ea:c4:07:1e:1c:b1:a2:cb:e8:04:06:98:38:c2:ec:6a:43:2d:
1e:70:90:b1:b3:df:78:13:16:8b:5b:d6:6e:a6:f8:cd:e8:39:
29:f1:cb:3f:e4:82:43:00:4e:e3:5a:3d:a6:2b:f4:3a:5a:7e:
50:61:58:91:83:35:34:b7:fb:12:5a:b7:4d:db:42:a8:58:64:
ef:39:51:bd:df:50:24:16:f1:12:bc:16:7b:ea:6f:a4:cb:c6:
59:39:a0:3f:f5:7c:96:f4:6e:26:b5:42:8e:d9:39:00:18:4e:
02:29:eb:e0:b6:e9:f5:5c:da:d3:e2:9d:1b:4a:06:f2:81:67:
db:9b:a5:0e:ad:27:38:27:16:e4:d3:98:03:b8:08:bf:05:74:
f7:7e:73:cf:fa:c8:33:f9:9f:13:30:92:7a:4c:7a:71:f8:dd:
b2:1a:a6:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:05:55 2025 by rpki-client