Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
File: aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft (raw, json)
Hash identifier: GADpg2oNn6OmZWmZDs1I16WG3q8UuhdSdipXI1HDNHg=
Subject key identifier: 15:D2:E5:D2:D6:36:A6:BE:C5:6E:FF:3A:30:91:7D:C4:71:EB:DC:8D
Authority key identifier: 68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
Certificate issuer: /CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Certificate serial: 01964A4641F1410FFB09DF0EF4E356387DB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
Manifest number: 04BB
Signing time: Fri 18 Apr 2025 19:00:40 +0000
Manifest this update: Fri 18 Apr 2025 19:00:40 +0000
Manifest next update: Sat 19 Apr 2025 19:00:40 +0000
Files and hashes: 1: VftZMAe-HTAVpMfwxes2FDGztqs.roa (hash: KKajIYpdkVhXrGRISoXddoe+7uEBtFz7JC2M/TbIWjs=)
2: aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl (hash: ihNry8dXOysiwld9QAiUXk51UrG56nSF+68LtPFd288=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:46:41:f1:41:0f:fb:09:df:0e:f4:e3:56:38:7d:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=689c68a45661f90a4059bd8c29a3c967bf92e855
Validity
Not Before: Apr 18 19:00:40 2025 GMT
Not After : Apr 19 19:00:40 2025 GMT
Subject: CN=15d2e5d2d636a6bec56eff3a30917dc471ebdc8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:11:30:6e:e1:88:ec:b0:cb:43:4d:8c:01:aa:
24:ad:0f:e0:8b:2e:9a:b9:79:f5:1d:51:b6:38:89:
df:13:71:19:eb:ef:49:57:4b:53:a7:94:b4:6e:c1:
92:cd:3e:a6:6a:cb:3a:2b:ff:b5:96:d1:1c:05:bf:
7b:97:e7:06:6f:a4:12:10:91:da:07:14:5a:b8:bd:
31:77:ef:a1:e4:4d:0f:4e:d7:c1:c4:e7:44:c7:94:
fb:77:ad:37:c5:4b:b0:91:f6:5d:4f:e0:74:ce:b3:
9e:1e:0a:3e:3e:c6:90:25:5c:74:01:0d:25:5a:c5:
f2:64:97:73:30:fb:d6:db:b1:61:58:17:88:48:1e:
b3:a1:e9:27:d1:27:f4:58:28:a4:a5:7b:da:bb:82:
75:80:2a:63:30:9b:f8:cd:38:cb:1d:c1:e8:87:2f:
40:86:6e:5a:16:77:bf:d2:bd:2c:c4:d5:1a:a8:03:
34:8f:66:b1:b3:39:31:fc:ce:b1:38:07:6b:d9:c0:
25:24:33:7d:e5:2b:e9:f3:5c:69:90:7c:2f:f2:c9:
d8:7f:43:dd:41:53:3b:f6:db:03:35:35:a2:b9:dd:
a4:24:62:a2:4d:62:34:e8:fa:c0:d6:8e:b6:b6:8a:
bf:4d:af:1c:80:bd:f8:e9:55:e8:a2:81:c1:8e:49:
37:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D2:E5:D2:D6:36:A6:BE:C5:6E:FF:3A:30:91:7D:C4:71:EB:DC:8D
X509v3 Authority Key Identifier:
keyid:68:9C:68:A4:56:61:F9:0A:40:59:BD:8C:29:A3:C9:67:BF:92:E8:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJxopFZh-QpAWb2MKaPJZ7-S6FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/39dacc-1c57-4deb-a225-b6207f755267/1/aJxopFZh-QpAWb2MKaPJZ7-S6FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:66:0a:8b:a2:05:3c:63:bb:c7:47:59:6c:a1:8b:d2:84:5e:
04:ee:ac:0a:18:50:7c:3b:22:23:8e:0d:51:a0:4c:ed:ff:1f:
33:66:a1:70:46:91:33:13:0f:3b:e6:fa:db:a6:ce:69:6a:0d:
0e:4d:35:29:6d:19:f4:e5:a3:00:e0:db:dd:7b:47:b0:d9:24:
a2:1e:5e:91:71:69:37:6d:8a:9a:d3:3c:28:f3:22:4b:16:c6:
ed:ba:0e:da:2a:40:f7:a5:5b:ed:d3:8c:88:07:a1:b7:b2:c0:
a0:09:7a:76:1c:c8:33:9f:6c:ac:8f:36:7c:c5:91:79:42:7f:
2d:60:36:01:94:98:dc:70:02:66:ce:dc:12:66:fe:d6:a4:2c:
1f:14:3b:e0:30:fe:1b:c4:0b:72:db:5e:48:c8:df:67:dc:fc:
3a:93:95:a2:de:4f:f4:ca:a1:7a:32:b0:5d:af:6f:ad:f5:26:
1e:7e:6c:60:80:05:cd:73:86:56:b2:54:07:53:6a:12:e9:8a:
07:83:df:91:43:6f:43:24:2f:81:da:23:01:89:8b:6c:67:08:
87:01:31:c8:fb:98:a9:f6:6c:88:39:da:5c:c6:35:f8:9b:a7:
b0:be:a6:34:93:e5:15:03:7f:c6:79:d5:1d:fa:9d:f4:92:2b:
0a:9c:c9:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:52:45 2025 by rpki-client