Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json)
Hash identifier: ot56EyZTHlAGEujj0H3PyvfDunF4Or+wVL08eQOaL9E=
Subject key identifier: 80:9E:69:00:E9:40:8A:6E:9C:E3:4D:78:3E:62:57:6F:AB:17:B8:04
Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D
Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d
Certificate serial: 01974D7C148DD72E0E63EE837A375B61B1C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
Manifest number: 08D8
Signing time: Sun 08 Jun 2025 03:01:06 +0000
Manifest this update: Sun 08 Jun 2025 03:01:06 +0000
Manifest next update: Mon 09 Jun 2025 03:01:06 +0000
Files and hashes: 1: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: 1PX6QXxRX110x3ZkR6e+Wjo9qQ2WfJOERv8RlcgwFdA=)
2: x-UkkAB6bBHjnvfgkifHZfsul34.roa (hash: Z+EoTHR/GmNeC+PGL9FT4NMDxcyauPnVaWgbSwI9JOU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7c:14:8d:d7:2e:0e:63:ee:83:7a:37:5b:61:b1:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6991c56f11a7171c6153239769f557beba10182d
Validity
Not Before: Jun 8 03:01:06 2025 GMT
Not After : Jun 9 03:01:06 2025 GMT
Subject: CN=809e6900e9408a6e9ce34d783e62576fab17b804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:34:d8:5f:48:b0:c9:33:b9:13:08:01:e9:7d:
bc:28:7f:dc:a5:7d:ba:c9:2e:74:49:ba:8f:04:8a:
7d:e7:e4:46:57:24:bf:b1:63:04:a0:eb:0b:fc:6a:
19:b4:8a:f1:5f:ed:14:a8:8d:62:9e:4c:3a:16:43:
21:20:a9:1e:fe:b4:22:66:c8:3a:84:4d:92:29:3c:
b5:ee:01:f7:ff:cb:60:a9:8b:7a:fa:44:f0:ef:53:
7d:08:76:79:61:64:01:b8:0a:3a:a5:ae:cf:55:ed:
21:4f:e0:9c:7a:28:c6:29:ca:71:58:af:a9:0b:7f:
42:f4:23:09:8f:52:a7:2a:54:71:17:7c:c4:77:83:
94:3d:2a:0a:c8:1c:b7:78:2a:fd:b0:1e:a6:d1:2c:
a7:3c:c4:5c:ae:f4:3f:a7:12:37:0c:b3:7b:52:a8:
ee:11:0d:08:ff:d3:ed:d2:0f:dc:d4:35:d8:50:5d:
99:2d:a5:d9:c4:a1:65:03:64:aa:f0:ed:d5:ef:eb:
db:9b:97:ad:a2:7e:0b:c1:b8:67:2d:2c:40:c8:c6:
98:30:10:e9:63:06:84:8b:70:06:a9:fb:d9:63:c2:
d2:b9:6c:c9:76:2c:39:2d:31:20:7d:1d:7d:a1:2c:
6c:4f:7a:23:5e:29:92:50:2a:ba:1e:81:e6:ba:5d:
80:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9E:69:00:E9:40:8A:6E:9C:E3:4D:78:3E:62:57:6F:AB:17:B8:04
X509v3 Authority Key Identifier:
keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:5f:61:c6:78:98:61:42:c0:91:dd:4e:16:ff:98:45:41:6a:
14:c3:4a:7d:92:bb:44:89:41:5c:92:c2:27:bb:1c:43:61:2c:
88:ae:fd:c2:58:a6:a9:c0:cd:af:a2:28:31:d8:92:19:f9:0f:
84:6b:47:1e:04:85:21:85:f4:68:d4:59:45:c8:55:49:bf:4b:
40:88:64:df:70:69:a2:f1:d2:56:e4:1b:98:46:48:21:48:e9:
8f:63:e6:cb:f1:f4:8a:d4:08:2e:5e:e3:a4:89:64:8b:13:e9:
f0:6d:aa:9f:69:31:7d:1f:5b:99:57:6c:6b:9c:36:16:9c:46:
37:93:e0:4b:16:14:83:c2:ef:8e:8c:6f:c5:c8:43:f7:ca:a4:
16:5c:54:33:f8:9d:0b:96:1f:51:84:a5:7e:00:1a:ea:48:3e:
01:8a:96:df:0d:32:24:55:fe:9d:a2:cf:4f:99:1b:e6:d1:86:
23:aa:5b:d0:71:cc:11:67:57:c6:c2:25:f0:94:0d:64:27:2d:
16:1d:d0:11:28:b4:39:50:25:15:57:0f:27:3e:5c:ec:ff:af:
e2:bd:97:9d:13:01:0f:99:9c:24:e2:d5:66:91:03:b2:a9:74:
04:de:36:30:29:c1:78:04:ea:4e:03:15:e6:e8:5d:e0:79:96:
b0:86:30:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:42:02 2025 by rpki-client