Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
File: 0aiWnX4yy_knZkstxDa5bnFJpis.mft (raw, json)
Hash identifier: 3VzENu7LyhQFnbDmR8zR8d98YqNzlH9nLTDAlZlVakA=
Subject key identifier: 9C:45:36:B5:E1:FA:4B:09:4D:C7:4B:4E:86:22:71:ED:E2:1E:BD:91
Authority key identifier: D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
Certificate issuer: /CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Certificate serial: 0197530F99E8EE255369F2EE3E8A1BD62D5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
Manifest number: 0EB8
Signing time: Mon 09 Jun 2025 05:00:20 +0000
Manifest this update: Mon 09 Jun 2025 05:00:20 +0000
Manifest next update: Tue 10 Jun 2025 05:00:20 +0000
Files and hashes: 1: 0aiWnX4yy_knZkstxDa5bnFJpis.crl (hash: fnOtNoIpmiBBIMKzrRX9xzakxcq3ysSoQgTqJA2uJi4=)
2: p1fyn5poKGi3v6udklaZLK6DaPs.roa (hash: ksuBLRSUua1zFmd4JmcnhcAsP8MWyD8OR/dcK6d/pkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 05:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:0f:99:e8:ee:25:53:69:f2:ee:3e:8a:1b:d6:2d:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Validity
Not Before: Jun 9 05:00:20 2025 GMT
Not After : Jun 10 05:00:20 2025 GMT
Subject: CN=9c4536b5e1fa4b094dc74b4e862271ede21ebd91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:59:10:9d:ee:ba:f7:aa:4b:d9:c0:64:eb:37:
c9:47:93:2b:01:c2:76:9c:3e:7e:b8:e2:b8:29:3c:
3d:3f:eb:8e:71:20:cd:00:53:b6:ea:5a:31:1b:62:
4a:b2:ec:af:fb:59:9a:9d:f3:b8:e3:f9:e0:b5:70:
fd:d5:90:a2:94:dd:bc:b4:f6:16:6f:41:d1:be:36:
cd:9e:ec:2b:da:eb:13:74:12:f4:7a:db:72:ba:df:
e1:d9:db:b3:8e:03:35:79:31:78:c2:21:49:8a:71:
90:f5:f9:94:03:e1:17:7d:78:0f:46:70:a7:9b:e8:
78:08:c8:45:8f:e2:20:22:d1:69:62:d8:68:82:c0:
82:5c:43:8c:a9:7c:5d:ce:8c:25:9f:a6:9f:3d:8e:
17:0b:8e:06:5c:f1:dd:95:3b:a4:34:32:e4:2e:85:
c0:b7:5b:9c:d5:ac:bf:1e:53:14:58:5e:0d:3d:f9:
11:cc:f9:55:b8:de:16:12:9a:e0:6b:3e:ca:95:fb:
ea:f0:c4:3a:5b:a0:4f:d8:a1:ff:b9:11:26:74:4c:
48:ac:fa:ea:93:c7:fa:e5:ff:87:67:4a:56:59:8f:
29:23:ae:51:ad:5e:e9:84:ad:7c:1e:7d:90:4c:ab:
8b:fe:e6:b3:f7:a2:9d:d1:31:9b:ff:a0:5d:ef:0b:
52:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:45:36:B5:E1:FA:4B:09:4D:C7:4B:4E:86:22:71:ED:E2:1E:BD:91
X509v3 Authority Key Identifier:
keyid:D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:aa:ee:f9:cc:e7:98:c0:77:d9:7b:9f:a6:0b:1e:32:6f:91:
79:b9:9b:7a:ce:c3:81:0e:12:fe:19:68:45:00:2c:61:e0:7a:
00:42:1f:0d:4b:f5:c1:f0:8b:6a:dc:fd:55:7c:fa:fe:81:f3:
47:69:d1:c5:40:ed:8c:cf:2c:53:9f:05:b2:49:02:75:33:7c:
ba:9d:79:a7:bb:c4:f9:49:df:40:b6:88:21:6e:5d:d2:28:a0:
e9:b4:53:cf:16:64:4e:61:64:71:69:f7:b3:ed:f1:15:cc:67:
ed:56:99:dc:95:fe:9a:57:e9:2c:db:7d:8d:bf:2c:19:8d:e2:
f9:2c:db:e0:40:97:d1:ce:29:91:91:45:a0:97:0e:a6:09:57:
f9:cd:ef:ef:fe:6b:0d:6d:78:07:fe:35:2e:b5:08:39:99:fb:
4a:ed:bb:89:7e:7d:ac:97:0b:22:1e:13:ea:18:4b:8c:35:87:
df:dc:54:24:b4:d2:a9:b5:69:21:3d:6c:ac:1a:dc:7d:bb:5e:
60:ba:43:ae:0b:31:6e:41:08:b9:da:cf:cc:f2:e7:e3:61:c6:
9f:8e:ee:be:e0:e1:b8:e3:a7:5b:7e:60:e3:23:20:8a:42:71:
fa:34:5f:b1:e1:45:75:c5:ea:64:c4:2a:e3:e2:c1:5a:9a:b4:
3d:83:e7:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 14:37:40 2025 by rpki-client