Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
File: AA0P7izVZpZcoI21UGY8sgtBI0M.mft (raw, json)
Hash identifier: 424PJP39Zu8FPotN06Rg5NNrAri7pLqi/J9+DFdrlNw=
Subject key identifier: 87:39:11:91:01:7B:2E:0A:4A:53:BE:92:59:10:66:55:2B:97:FD:D2
Authority key identifier: 00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
Certificate issuer: /CN=000d0fee2cd566965ca08db550663cb20b412343
Certificate serial: 0197458B951E19C1DF5BE66E53B6A541DB60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
Manifest number: 0B45
Signing time: Fri 06 Jun 2025 14:01:04 +0000
Manifest this update: Fri 06 Jun 2025 14:01:04 +0000
Manifest next update: Sat 07 Jun 2025 14:01:04 +0000
Files and hashes: 1: AA0P7izVZpZcoI21UGY8sgtBI0M.crl (hash: nFWK8g+hzb+i5l8OBB+lQVhhQ24VuJY0vYRBr/xR55E=)
2: c2eVtCtVjsi6i3vPHgLATuNVfoM.roa (hash: tozwRqmwgoJZSoOdc4bKHZ1xB9xQYRcf64jJhmtl4S4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 14:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:8b:95:1e:19:c1:df:5b:e6:6e:53:b6:a5:41:db:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000d0fee2cd566965ca08db550663cb20b412343
Validity
Not Before: Jun 6 14:01:04 2025 GMT
Not After : Jun 7 14:01:04 2025 GMT
Subject: CN=87391191017b2e0a4a53be92591066552b97fdd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c3:51:cb:63:b9:22:e0:b0:a6:cb:e3:83:ac:
13:91:c4:55:9b:87:00:72:60:95:68:b4:5a:39:d6:
18:79:a2:7e:7b:24:e4:3a:e5:61:6d:07:e7:62:84:
35:68:fd:bb:48:cf:92:fe:ef:65:8c:f6:fe:eb:87:
ad:75:47:3f:15:48:09:a6:96:03:97:54:31:5c:9f:
e3:e5:ac:e6:b9:63:e3:ed:7c:77:54:e5:db:8f:5a:
28:3e:c1:3e:53:3a:3c:41:ce:72:13:2c:33:14:5f:
2f:30:67:62:18:c7:ad:f7:82:52:b7:24:5d:09:3d:
9d:63:41:9d:bc:ce:54:14:7a:5d:78:17:9e:bd:90:
f8:65:68:7d:a5:3a:7c:36:e1:12:95:c3:94:fb:b0:
d7:da:fa:4e:6d:0c:2f:b6:71:2b:fa:36:60:f7:14:
cb:d3:75:86:7b:35:93:a4:ae:cd:ef:56:7b:de:82:
2d:b6:c4:b0:da:c8:41:b0:5f:8d:81:fc:ea:ac:a6:
88:83:c1:15:f1:87:dc:0e:22:8b:f7:fc:28:ec:7a:
be:7a:10:2f:b3:b4:48:8f:21:78:c8:69:f5:cc:dc:
04:6e:29:b0:f3:8d:21:85:d1:fd:11:b4:1d:7e:a0:
ba:5f:32:b8:af:07:08:9c:5d:65:f8:cc:92:2d:7a:
06:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:39:11:91:01:7B:2E:0A:4A:53:BE:92:59:10:66:55:2B:97:FD:D2
X509v3 Authority Key Identifier:
keyid:00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:d1:57:43:f2:c9:6b:d2:ad:57:07:d8:fb:88:94:3b:96:54:
b9:95:bd:8b:f9:f3:5a:3a:f5:70:2d:82:9f:c4:92:53:1e:24:
b5:a8:0f:5f:98:be:68:e2:28:15:cb:3f:e3:b8:a0:ae:f3:3f:
2b:a0:e5:fe:63:b4:38:76:e6:2d:76:a2:53:43:85:a7:b5:37:
c3:6c:42:90:7c:31:46:76:e5:a0:4d:9e:64:ff:db:77:33:9e:
59:b7:5c:af:6c:e6:07:d9:36:61:cf:5c:88:4c:fb:43:da:09:
8a:76:78:23:fb:53:51:0f:8d:18:01:97:8e:c9:5c:d2:d8:28:
31:e7:32:ea:a5:56:b7:e2:c4:1d:a1:68:42:6f:0e:4a:a3:c2:
dd:f0:c7:85:ef:b4:40:9a:de:2e:3e:5e:94:cb:a6:d4:12:fa:
9b:f8:f8:f6:9b:1c:18:dc:50:9d:20:22:b9:dc:db:6b:7b:36:
4f:c3:b3:f6:a9:c0:b4:4b:fc:b1:55:8d:1d:cb:61:6f:59:7c:
df:96:95:00:2b:87:f4:22:96:89:4d:b5:ab:63:a7:91:63:e5:
2c:72:9e:c7:82:68:f9:68:07:3f:17:e5:8f:52:80:b9:ba:91:
ef:11:3e:ba:d0:ac:e9:d6:08:c0:d0:d4:cc:82:73:08:8b:e5:
c2:6b:64:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:13:17 2025 by rpki-client