Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
File: rlAYJxRKMYi-oczuWGVv1kKdj5U.mft (raw, json)
Hash identifier: MC324PIMLm1AMRnIi9vfEGR+1+m42v+ZquAOqDWt2Ko=
Subject key identifier: 3F:58:71:3A:34:1A:36:7D:FE:6B:EC:30:DE:2D:22:8C:05:5A:35:8F
Authority key identifier: AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95
Certificate issuer: /CN=ae501827144a3188bea1ccee58656fd6429d8f95
Certificate serial: 019745F8C0B4F87C1666D08A2C991860C481
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
Manifest number: 1580
Signing time: Fri 06 Jun 2025 16:00:19 +0000
Manifest this update: Fri 06 Jun 2025 16:00:19 +0000
Manifest next update: Sat 07 Jun 2025 16:00:19 +0000
Files and hashes: 1: VNzG3ccHyaf-Ofv5con_nysGgHU.roa (hash: 2VzIYqdKT2jmdmX+vgJ//7c0c5nGJoT0dOFUmm0WlfQ=)
2: rlAYJxRKMYi-oczuWGVv1kKdj5U.crl (hash: 53CvDorchpNBPtxPS6HensgZsu7YIEhRZ3n8kQxtNRA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:f8:c0:b4:f8:7c:16:66:d0:8a:2c:99:18:60:c4:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae501827144a3188bea1ccee58656fd6429d8f95
Validity
Not Before: Jun 6 16:00:19 2025 GMT
Not After : Jun 7 16:00:19 2025 GMT
Subject: CN=3f58713a341a367dfe6bec30de2d228c055a358f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3c:7e:a1:a5:ac:73:3d:bf:79:9d:e7:19:ac:
94:35:f9:6b:aa:fc:e3:72:e7:bf:6f:67:a7:4f:3b:
f3:c1:95:52:03:bd:8f:ca:b3:28:b5:c2:ff:76:8e:
d8:83:8e:96:16:6d:7f:6b:a3:40:8d:b2:11:17:21:
7d:08:bb:0b:06:c3:26:f4:e1:83:1e:ed:fa:c4:ad:
4e:e1:f8:fb:c5:8c:44:ec:65:ae:44:b2:b7:9b:71:
06:76:38:22:27:3f:28:17:bc:f3:42:25:ca:fd:8c:
d4:21:9a:94:b0:59:d2:be:ed:53:6d:4a:e3:f0:b8:
ee:42:8a:df:71:85:62:cf:97:dd:3a:0c:c1:37:b8:
69:54:45:2a:88:c3:ce:a3:e7:42:57:53:41:81:6d:
a4:1a:5c:39:0f:fb:d3:58:dc:ea:d2:26:a9:b6:fc:
21:c9:a3:f5:8c:2e:04:70:6b:7e:98:f0:a3:34:39:
2c:41:dc:e6:de:2d:6a:f8:d2:00:41:c9:35:8d:9e:
c9:ad:1f:e5:87:53:25:52:f8:5a:f9:dd:ce:f1:11:
bf:45:5a:78:57:7f:9d:6a:8a:24:7e:d8:8d:4e:f9:
a8:b3:8f:57:34:51:7d:18:93:b5:98:46:be:ea:63:
10:09:11:a2:57:01:cd:5a:70:31:33:c5:74:4f:14:
e0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:58:71:3A:34:1A:36:7D:FE:6B:EC:30:DE:2D:22:8C:05:5A:35:8F
X509v3 Authority Key Identifier:
keyid:AE:50:18:27:14:4A:31:88:BE:A1:CC:EE:58:65:6F:D6:42:9D:8F:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlAYJxRKMYi-oczuWGVv1kKdj5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5f56af-ebfb-4c88-a082-0986d8b0c6d9/1/rlAYJxRKMYi-oczuWGVv1kKdj5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:c3:d7:4b:00:84:cb:d0:c0:ef:8c:ad:d5:19:09:46:e7:d5:
97:e1:c6:7e:aa:73:5a:ac:95:38:e8:ca:a6:01:22:72:15:9b:
7f:5c:e4:e0:72:60:cf:67:92:d7:78:e5:ec:a4:06:a1:e0:2f:
d9:32:97:cc:39:35:6f:3d:53:03:a7:d8:7c:b3:92:5a:b5:53:
8a:14:91:53:2d:80:49:5a:5c:7f:ab:0b:15:74:8c:40:68:e6:
9a:c6:4a:c4:f6:67:95:17:5e:74:77:86:7f:36:ee:74:af:a6:
9d:8c:5f:67:6d:5c:46:3e:df:b1:0b:28:d2:53:fd:e1:ba:c1:
5b:29:6b:c7:72:22:0e:95:b4:15:f0:1b:f5:ed:84:ba:74:9d:
7d:96:26:c2:5f:8e:8a:37:bc:d9:1d:3a:29:bd:27:8b:d2:f6:
b1:ef:86:47:38:65:dd:b1:38:8b:f4:17:f3:f6:57:a2:7d:1e:
68:61:c9:a6:9e:17:f6:11:32:e3:8e:d6:78:f3:29:d6:0a:c0:
f4:70:fa:5a:61:32:17:76:c2:22:9b:fa:5e:fb:b6:e0:e0:19:
a9:aa:af:cb:49:02:5f:7e:3f:fc:d6:2a:96:a4:d9:83:79:0e:
61:97:2f:8a:a6:52:2f:52:fe:89:27:ce:a9:05:2a:b7:4f:3a:
c2:d3:ed:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:00:39 2025 by rpki-client