Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
File: aM_hqssnjBMjGzEORe5XaTL-m04.mft (raw, json)
Hash identifier: nezFKdAq/RPcv/I5Y8RsGxqA9tcb6j57LH5Lu2NDi38=
Subject key identifier: 79:C2:3A:C5:66:6F:08:0F:F8:9E:88:01:01:6E:1A:39:CD:6F:42:82
Authority key identifier: 68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
Certificate issuer: /CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Certificate serial: 01963F1DB1F731B42B3E7E96B9DD5F441371
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
Manifest number: 1187
Signing time: Wed 16 Apr 2025 15:00:32 +0000
Manifest this update: Wed 16 Apr 2025 15:00:32 +0000
Manifest next update: Thu 17 Apr 2025 15:00:32 +0000
Files and hashes: 1: NAg_2lUwiNc2BXVWx1ALPDBcGK0.roa (hash: I6Xgg/yTyhGgk1wwRR5vfbPkXPHDlymI7Asksvi+yR4=)
2: aM_hqssnjBMjGzEORe5XaTL-m04.crl (hash: 6p8XK8JTJUeInfjLm3jqsWpBBGebAulVPN2ZOXTPC/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 15:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:1d:b1:f7:31:b4:2b:3e:7e:96:b9:dd:5f:44:13:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cfe1aacb278c13231b310e45ee576932fe9b4e
Validity
Not Before: Apr 16 15:00:32 2025 GMT
Not After : Apr 17 15:00:32 2025 GMT
Subject: CN=79c23ac5666f080ff89e8801016e1a39cd6f4282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4a:dc:64:0e:14:f3:c3:6a:b0:e8:2b:bd:93:
ef:78:1a:71:6c:f1:78:15:ad:2c:51:41:71:28:88:
8e:ef:59:d5:48:9e:7e:1c:2a:c2:80:5b:dc:9a:6d:
27:8c:dc:0e:41:4b:54:95:f9:28:1f:39:93:2f:b9:
3f:38:1e:8d:9b:9b:f9:c0:6a:e1:d0:11:a0:5c:e5:
b8:01:91:d6:c5:89:66:ec:ed:db:2b:36:53:86:39:
54:72:83:e7:6e:e6:74:da:e6:ab:41:2c:e2:ed:4f:
30:3f:d4:c8:6b:15:27:0f:e7:84:ad:2b:bd:19:ce:
42:11:1b:00:92:7d:1f:a0:88:a1:8f:96:b1:95:43:
98:f7:6b:9a:4a:04:11:80:59:1d:26:4c:87:55:0f:
f7:c1:cf:b7:d3:e4:93:72:71:97:ee:83:05:d5:6c:
fd:e5:0d:21:5c:93:86:b6:cb:92:95:28:63:b3:6f:
c9:67:5d:96:46:a3:aa:97:c2:72:5f:9c:12:19:c9:
7c:68:ba:d5:01:89:20:87:c8:22:38:9a:88:65:2d:
fe:12:f3:75:44:eb:00:f3:7c:48:11:9d:ba:40:7b:
17:06:01:53:9a:ef:40:5e:fe:00:27:6c:23:1d:40:
77:e4:66:b0:50:05:52:87:06:74:b5:3b:26:a2:9c:
96:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:C2:3A:C5:66:6F:08:0F:F8:9E:88:01:01:6E:1A:39:CD:6F:42:82
X509v3 Authority Key Identifier:
keyid:68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:c9:f6:63:60:77:0f:c2:e5:54:b3:a1:a3:ed:78:4d:b2:85:
7e:93:23:da:2e:2e:e9:09:ce:61:87:c8:e5:e1:b0:61:29:f5:
94:fe:6b:08:1c:4f:48:18:cc:a4:80:c1:a8:5a:88:28:74:84:
f1:75:13:92:46:24:fe:ca:41:da:33:86:61:03:c5:2e:e0:32:
c5:40:e1:40:89:a9:18:74:cf:86:09:62:e7:7b:f7:f4:6f:74:
71:c9:4c:e8:40:3a:c2:a0:b0:24:e9:a8:89:ba:fb:2f:34:1e:
e3:11:95:80:00:34:d4:ba:ad:cc:fb:ae:2e:b9:85:76:ca:3f:
c2:61:d7:32:cc:7a:2d:d7:a0:36:36:a1:11:9e:3b:c8:12:04:
a7:b5:8d:d3:33:a5:03:16:9c:b3:2f:3d:bb:f6:90:8d:27:ec:
9b:dc:b8:4d:f0:f6:21:cf:34:76:77:2a:52:d5:be:1e:f1:d7:
d1:b1:97:4c:db:79:78:f8:ea:64:60:74:12:d5:67:43:c2:6e:
ca:4d:3f:d1:4c:2b:10:16:3d:e2:44:21:ab:58:4a:73:a9:9c:
a0:0b:65:5f:0e:cc:81:b8:c3:c4:95:b8:62:f1:98:c0:c3:d1:
0c:15:f5:4f:8a:63:96:2e:d1:07:0e:8e:1d:ba:2e:b8:53:4f:
38:46:e7:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:15:09 2025 by rpki-client