Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
File: AOC06vnBB5HzU7qYfeI2ChOEF70.mft (raw, json)
Hash identifier: PWm2Mq0Bdn6ABdzqMKnTP1LoRoRNPElPcBhADs+Pkqo=
Subject key identifier: 60:D2:AA:C7:43:1D:E4:91:F5:46:65:51:F9:CA:07:94:A1:8E:EB:9F
Authority key identifier: 00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD
Certificate issuer: /CN=00e0b4eaf9c10791f353ba987de2360a138417bd
Certificate serial: 01958B84BB2DA3D6AEFEC91727194DF5AE93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
Manifest number: 06BF
Signing time: Wed 12 Mar 2025 18:01:26 +0000
Manifest this update: Wed 12 Mar 2025 18:01:26 +0000
Manifest next update: Thu 13 Mar 2025 18:01:26 +0000
Files and hashes: 1: 7Qz5q4z6Tluf-_C3llmKbm-Y_6k.roa (hash: Btz39reQ2rKKUs2JCEZIO4ZVKwDZCOjT3ZoGf4qNKOM=)
2: AOC06vnBB5HzU7qYfeI2ChOEF70.crl (hash: popQ03cldtJ2JE2Y/T53l44SNkXavyMnOYztm3L8/Vs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 18:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:84:bb:2d:a3:d6:ae:fe:c9:17:27:19:4d:f5:ae:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e0b4eaf9c10791f353ba987de2360a138417bd
Validity
Not Before: Mar 12 18:01:26 2025 GMT
Not After : Mar 13 18:01:26 2025 GMT
Subject: CN=60d2aac7431de491f5466551f9ca0794a18eeb9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:23:95:00:a3:2f:f2:f1:2d:75:d7:e0:6e:3c:
7a:e4:29:19:ac:36:9f:c6:e3:b6:9a:63:94:16:52:
cc:41:64:37:81:20:46:d2:6c:5d:f2:54:31:5b:97:
88:86:7e:77:8b:21:9f:00:7b:c5:2a:ea:0b:74:f2:
26:a9:80:8c:75:82:a6:d4:94:b7:6c:cb:93:a4:77:
bc:36:59:f2:a9:9d:fd:87:f9:35:42:45:0d:29:63:
99:1a:b1:87:38:dc:50:f2:79:11:ff:1d:2e:da:96:
06:16:75:99:40:99:33:48:cf:48:fd:63:78:ee:1c:
e1:8f:ad:64:9e:74:3e:b9:6c:cd:f8:2b:9e:ac:b4:
37:4d:d0:ba:7e:99:b9:40:b9:d5:9b:8c:4d:23:d8:
a2:1f:06:72:43:12:19:66:a9:67:82:76:d4:1d:7f:
0c:47:3a:89:8c:f6:af:b2:ba:13:d5:1e:f9:2e:36:
8b:c5:b9:9a:31:f8:b3:36:9d:62:2a:82:ae:9e:8d:
68:aa:7c:01:ef:b9:30:04:c9:11:c6:64:cb:af:f4:
84:4b:60:48:2b:6c:c1:cf:bc:ad:c8:91:90:89:b0:
68:e9:5f:c0:19:a5:ce:95:4b:f9:f3:9b:d8:62:54:
28:66:38:97:26:2d:16:79:80:17:51:c6:0c:72:83:
4e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D2:AA:C7:43:1D:E4:91:F5:46:65:51:F9:CA:07:94:A1:8E:EB:9F
X509v3 Authority Key Identifier:
keyid:00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:4d:08:c3:18:3b:a9:da:49:d7:37:fd:ad:3b:04:8f:38:2c:
b4:81:07:e6:f1:54:2c:20:d0:e7:12:8d:c1:e4:a9:d9:09:df:
a2:42:00:67:3f:d3:73:00:0b:ff:36:91:fe:f7:6b:fb:e9:d7:
f0:e5:30:22:81:f3:d9:1c:02:a9:5f:da:4a:01:df:d4:b4:29:
59:a1:5a:f5:16:4e:9a:97:06:e2:ac:ae:da:62:a0:5c:74:b1:
62:4b:3a:cd:5e:00:bf:5b:6e:1a:a8:e1:04:70:5b:4d:ee:37:
14:f2:d9:c4:62:76:51:b0:c7:8f:a9:ed:3b:2e:a4:dd:39:77:
e0:bd:d6:58:cd:ab:5f:fc:34:22:fe:fd:a7:61:e1:65:5d:b5:
7b:da:88:60:5f:73:12:ac:16:9c:d0:30:7c:9f:67:84:1b:50:
4f:f4:17:4a:f7:fe:7e:ca:e2:8b:47:71:71:3b:04:d6:4e:7a:
fa:cc:06:bb:74:da:0c:bb:9b:80:66:3e:3d:ce:36:77:8e:11:
70:66:34:57:bd:76:98:03:01:07:48:fa:cb:7e:1b:73:d8:f7:
02:71:9d:a1:fc:39:79:c7:ac:dd:d9:36:b0:e5:f3:5d:2f:b9:
c9:cf:6a:fd:56:a3:f8:b2:78:b5:a0:05:b6:dc:ba:79:91:15:
15:a2:0b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:33:23 2025 by rpki-client