Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
File: aCMaUAoKgQjcekNYsQArH9vweZU.mft (raw, json)
Hash identifier: BKcVlgwmM8E+x/rplPR0HBR/GkQgwrBvPqLj2dvqS4A=
Subject key identifier: 4E:D6:3E:64:84:0A:6B:43:F8:CB:A0:D9:0A:55:94:A6:3D:F0:AE:A1
Authority key identifier: 68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
Certificate issuer: /CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Certificate serial: 01964FA3427B4256E93CD8D85E7F68C50F87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
Manifest number: 14FC
Signing time: Sat 19 Apr 2025 20:00:21 +0000
Manifest this update: Sat 19 Apr 2025 20:00:21 +0000
Manifest next update: Sun 20 Apr 2025 20:00:21 +0000
Files and hashes: 1: XSGE2n2dKWY3M_jq3MngIc3i_t8.roa (hash: pwMRSRLzn3jyPbMLShLv8HDNQd5Gm8ws1AjCFBEAHaU=)
2: aCMaUAoKgQjcekNYsQArH9vweZU.crl (hash: 5P7stoPcX7qSVRFjQpDh7eSEt7NtEKADLWVC2zYW4yI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 20:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:a3:42:7b:42:56:e9:3c:d8:d8:5e:7f:68:c5:0f:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68231a500a0a8108dc7a4358b1002b1fdbf07995
Validity
Not Before: Apr 19 20:00:21 2025 GMT
Not After : Apr 20 20:00:21 2025 GMT
Subject: CN=4ed63e64840a6b43f8cba0d90a5594a63df0aea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:65:52:d9:ea:12:bf:07:4f:39:79:65:d7:53:
cc:8c:c6:bd:26:94:09:c5:c7:f7:c2:a8:66:3f:a5:
97:25:85:37:2a:aa:9a:66:ea:ad:c4:9c:f8:30:f4:
c8:34:08:d0:1a:4e:33:60:1a:54:49:20:2b:59:ed:
fd:38:f7:c4:ef:94:0c:49:e0:7c:aa:61:73:ac:93:
f4:72:75:40:58:c7:39:14:da:e0:79:d4:0a:3e:e8:
75:fc:19:4f:e0:71:85:a7:5e:73:e3:0a:ee:d4:b5:
48:4a:bc:07:76:26:5b:1a:43:03:db:86:84:2a:45:
40:5a:a5:ea:6d:3c:52:2d:0f:86:29:58:be:81:5a:
2d:b8:e7:0a:5b:67:33:bb:04:69:a1:7d:46:03:58:
1b:ea:f0:57:8c:b1:ec:cb:91:97:b0:38:09:9e:56:
43:dc:8e:ef:5d:79:5a:98:57:b7:1e:79:8f:01:1d:
9f:33:76:35:be:f3:04:99:96:54:c7:47:17:a1:8e:
fc:de:1e:76:cb:b5:59:5e:63:22:92:d6:b0:b8:f7:
8c:74:3f:f3:71:33:12:2f:1a:81:13:7e:a7:17:93:
72:93:58:f5:a0:47:5f:fe:08:12:47:7d:d5:c7:7a:
7a:44:c7:02:5f:67:5e:5f:40:a4:c5:8a:c4:e2:77:
aa:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D6:3E:64:84:0A:6B:43:F8:CB:A0:D9:0A:55:94:A6:3D:F0:AE:A1
X509v3 Authority Key Identifier:
keyid:68:23:1A:50:0A:0A:81:08:DC:7A:43:58:B1:00:2B:1F:DB:F0:79:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCMaUAoKgQjcekNYsQArH9vweZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/00b085-9966-4275-a52b-7f23b34686c2/1/aCMaUAoKgQjcekNYsQArH9vweZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:bc:77:3c:a0:ae:02:e3:ba:6e:be:ea:5a:df:8a:c5:04:0a:
e1:ed:5f:cb:3b:3a:7f:c7:06:bd:eb:8e:72:4a:c4:86:f4:85:
9a:d6:8a:1f:62:9a:13:38:ae:7f:70:f7:06:39:00:73:fe:65:
6c:ed:c5:70:7b:3b:04:e7:b1:c0:16:52:70:20:ad:16:45:0b:
bb:e3:15:62:9d:2e:f7:b1:10:3d:00:c4:1b:8d:fd:25:5e:1d:
33:ef:23:00:71:6e:2e:4c:45:c1:7a:86:a9:42:a4:02:14:a7:
64:96:f7:8c:62:22:63:40:75:f5:af:39:18:19:e2:0c:f6:30:
da:16:6a:be:41:61:4a:a7:c5:93:1b:bd:c4:a8:13:a8:80:36:
d8:18:46:b7:d3:94:10:45:9b:3e:82:e7:e3:9f:41:18:6c:9c:
c1:38:9b:ac:fc:9b:cd:5c:97:a7:fe:b7:1e:64:9d:57:ce:75:
59:a7:39:9a:bf:a1:d7:4f:f0:66:0b:72:6d:bc:ef:9a:c9:10:
1e:31:ea:de:c7:ee:83:45:13:c3:46:b6:9e:4d:dd:65:4c:8b:
02:63:15:96:d3:0a:96:1d:49:fc:cf:fa:0d:70:8a:fa:1d:eb:
34:8e:6f:23:c5:cc:82:1d:74:29:93:bb:19:19:d4:66:3c:33:
73:b5:48:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:33:16 2025 by rpki-client