Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
File: AOLDNzGtylfcwzsvuCM_wDiwlek.mft (raw, json)
Hash identifier: G2BEhtTtyV/+XCd7BuR2j72mbARHkSklrWFk6O7viAs=
Subject key identifier: 91:D8:50:4C:FB:CC:FF:C5:29:81:16:C2:CD:88:CF:F0:DC:D9:79:F5
Authority key identifier: 00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
Certificate issuer: /CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Certificate serial: 0196534A44E364D48B59614C99E8938CCC22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
Manifest number: 103B
Signing time: Sun 20 Apr 2025 13:01:38 +0000
Manifest this update: Sun 20 Apr 2025 13:01:38 +0000
Manifest next update: Mon 21 Apr 2025 13:01:38 +0000
Files and hashes: 1: AOLDNzGtylfcwzsvuCM_wDiwlek.crl (hash: XWrvbhLHQPimUdwP12kcPCz/uYV/S6uDaXrFlL5Qa9Q=)
2: lx4r-_of66D7nj4_JxEX4B7iGSo.roa (hash: nBmUpTvMg37xBiu7Iw7rIz0CmSBaScYekCzZq9oCvAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 13:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:4a:44:e3:64:d4:8b:59:61:4c:99:e8:93:8c:cc:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Validity
Not Before: Apr 20 13:01:38 2025 GMT
Not After : Apr 21 13:01:38 2025 GMT
Subject: CN=91d8504cfbccffc5298116c2cd88cff0dcd979f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:49:dc:c6:50:66:cd:56:ab:fe:5a:33:50:77:
64:6c:ca:1f:62:bf:6e:8c:79:37:22:d5:a7:62:c1:
7e:c2:8d:cc:d0:50:a2:9a:0c:51:c8:a6:c0:fa:43:
4d:3f:47:5f:44:50:b1:ba:b7:ba:47:74:dc:14:05:
33:ed:fe:1e:68:db:fa:5d:39:27:c1:27:85:1a:a0:
f9:77:52:b5:01:2a:aa:ae:e1:04:10:35:c5:49:6c:
4c:5d:09:9d:63:92:10:77:50:8a:4c:95:23:6d:b0:
79:19:c0:d0:68:a3:0f:c9:d5:87:b6:a7:61:34:19:
d3:f1:ba:c1:74:98:f7:05:3c:4b:bb:9d:aa:96:fb:
e7:aa:4c:40:99:be:45:da:bb:b8:2f:e6:7d:3b:71:
c7:57:a8:8c:59:71:6a:50:ae:92:f7:84:c9:24:11:
d7:5b:55:e8:43:bb:37:a5:01:53:17:2d:fa:25:b6:
fd:9a:ec:40:db:e8:e4:c6:dd:e9:d5:36:50:5d:2b:
35:14:f6:39:d2:27:b0:53:42:ab:56:93:b3:9a:27:
4d:86:b5:3b:7c:f5:d5:a3:39:07:96:c2:21:85:ff:
6c:dd:e0:d3:3b:96:f1:b1:4c:58:17:f4:b6:32:b6:
d0:91:8e:f7:6c:63:ac:81:2d:33:02:5e:ef:10:90:
79:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:D8:50:4C:FB:CC:FF:C5:29:81:16:C2:CD:88:CF:F0:DC:D9:79:F5
X509v3 Authority Key Identifier:
keyid:00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:2a:6a:65:3e:c2:c0:21:2c:f0:ce:78:6c:05:b8:6c:d8:4f:
98:18:df:51:b2:61:66:3f:83:d3:5f:4f:c1:32:8b:14:bf:cb:
01:2c:69:17:6d:ba:34:d2:0c:26:0b:a5:e5:52:2f:18:e8:67:
e3:ae:d4:b8:76:de:91:19:c5:18:e0:f2:af:1a:f3:c5:80:e9:
b3:ee:40:f0:ec:25:73:29:c5:bd:9a:70:ac:cc:7f:11:03:f6:
2b:71:47:4a:ad:6d:da:bd:2c:a9:2e:96:7f:b9:6c:1b:60:14:
ee:ce:48:03:4f:85:91:db:25:94:91:58:ce:aa:f3:82:89:92:
7d:54:23:e4:06:05:b5:26:bc:95:fc:86:7a:73:ee:5e:42:de:
64:9e:35:b0:95:de:d8:75:a3:1f:9a:93:da:a6:74:2d:2d:25:
78:fc:9d:65:f9:93:91:f0:70:95:0e:4f:54:5d:d0:18:d3:54:
33:ec:89:3a:12:7b:c5:98:da:ab:44:8b:c9:00:ef:35:06:56:
3f:e2:5f:e0:48:ed:0d:b3:e5:d4:6e:69:ef:29:2f:f6:12:c1:
58:c9:05:89:f3:a6:df:39:cc:72:08:66:83:60:00:f6:b3:5a:
b1:28:d5:b4:16:c4:d8:54:75:61:d7:35:c2:e1:51:07:86:9f:
e4:a1:45:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:09:59 2025 by rpki-client