Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.mft
File: aMwyXIrZdpobVNopYwX-DDZXN3U.mft (raw, json)
Hash identifier: AXGt6X7eogYvCEKEtDhp/9Pz2CDF3cbnzepDas/ZeKo=
Subject key identifier: A1:66:28:32:A6:5B:5A:59:EA:F7:0B:2B:50:75:3D:96:73:A2:17:ED
Authority key identifier: 68:CC:32:5C:8A:D9:76:9A:1B:54:DA:29:63:05:FE:0C:36:57:37:75
Certificate issuer: /CN=68cc325c8ad9769a1b54da296305fe0c36573775
Certificate serial: 01967BD7CE26DCD19D12E6F0E9D678F6BE0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.mft
Manifest number: 0852
Signing time: Mon 28 Apr 2025 10:01:02 +0000
Manifest this update: Mon 28 Apr 2025 10:01:02 +0000
Manifest next update: Tue 29 Apr 2025 10:01:02 +0000
Files and hashes: 1: 8SXa1LGEgRchazaJtCn45wimFzI.roa (hash: aarcdMLMUD+vhP2Nt/G/Xfb4TI1KlOo20WqPIWfHmGk=)
2: 9h0zhhREd-POjncfc-zEp4ug01M.roa (hash: JFrWYEIaG5U63hgpJ7xXhrCvo1w1GUW7UsCloYFy5DI=)
3: aMwyXIrZdpobVNopYwX-DDZXN3U.crl (hash: /gtvY1amyZ7J5aqpK8PWEqdOnz3IoPomTRZToR6V0cQ=)
4: hOg_cmo_1iPWo-TSIDavHMMiNf0.roa (hash: x2NoBu31Yw8pVlDgk5TVKt6dy/zU3kvxFv7RpieFwqA=)
5: mrLaA1eR5ZA6ZP7iWY4b8XRMWTY.roa (hash: jJecCTBKKFO9xnb082mcb8oh5M5FNk8lCFd2JS7Xlls=)
6: zZ03RoGozbT1HFe4mhpawTrExsc.roa (hash: lLn9Wn1De0ejD1AHiJO5yX30r5UE6GRrj/0NmZ5bxR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:d7:ce:26:dc:d1:9d:12:e6:f0:e9:d6:78:f6:be:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cc325c8ad9769a1b54da296305fe0c36573775
Validity
Not Before: Apr 28 10:01:02 2025 GMT
Not After : Apr 29 10:01:02 2025 GMT
Subject: CN=a1662832a65b5a59eaf70b2b50753d9673a217ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5f:38:a4:5e:85:6c:74:5c:a2:83:7c:ef:86:
35:bd:3e:2c:a0:2a:33:69:c8:92:bc:42:26:04:bd:
21:8f:75:1c:c8:6f:d7:47:4d:4e:d5:be:53:77:60:
40:60:43:54:d4:a0:e4:96:af:26:4a:45:eb:c5:83:
aa:d1:f0:f7:e4:98:90:a1:d9:53:d6:33:19:61:18:
3b:d6:fe:07:d6:43:8b:5d:9c:74:55:a3:46:3a:ca:
b8:52:dc:9d:f2:68:a9:0c:2d:03:e8:68:8b:10:67:
ed:bb:be:35:b0:a1:39:32:bc:2b:2e:5c:2f:9c:c6:
80:b2:2d:96:6f:ce:0f:9f:96:ac:67:48:91:37:7e:
c5:15:de:b7:0a:72:f0:e9:e4:a1:d5:ac:1c:cd:49:
b3:ec:68:18:8d:b7:ae:aa:f9:85:65:5b:d3:0b:f5:
ab:17:e7:25:f1:c3:85:3a:f6:5c:19:0c:ce:f7:f8:
97:ee:45:be:f9:70:89:25:ab:8a:04:7c:2d:b6:b9:
c1:d9:b8:75:67:e1:2b:81:84:96:a8:e0:40:57:9d:
1f:67:9d:50:2e:e8:10:7d:36:ac:d4:f6:af:a2:56:
ea:6a:06:23:99:78:15:4a:b2:31:94:3b:23:08:8a:
02:79:97:0d:92:11:05:49:2a:80:88:45:85:b9:e5:
8b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:66:28:32:A6:5B:5A:59:EA:F7:0B:2B:50:75:3D:96:73:A2:17:ED
X509v3 Authority Key Identifier:
keyid:68:CC:32:5C:8A:D9:76:9A:1B:54:DA:29:63:05:FE:0C:36:57:37:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:ed:cb:86:42:d9:8c:c9:3b:6f:a8:15:b6:de:5d:3a:46:2f:
cb:11:56:6b:24:aa:30:90:f4:a1:ba:b6:45:aa:ea:05:1b:98:
90:b6:70:bf:6f:06:8b:8d:1f:aa:26:00:99:dd:3e:da:60:3a:
86:53:0c:58:03:ef:e3:59:ad:69:ec:5e:df:7b:88:d1:3d:bf:
c2:1b:f9:b8:35:31:2e:c8:40:38:92:fe:eb:09:7f:29:c5:c6:
21:25:c2:c9:2e:53:42:8e:2f:1f:63:c5:d6:7c:c5:59:f6:35:
1b:49:73:8d:67:3d:62:0c:96:e9:29:09:67:fd:67:c3:8c:3a:
3c:ee:71:e4:a6:f9:32:b9:ec:49:07:16:42:88:7e:dc:da:b0:
c0:84:79:c9:2a:1b:af:7e:fb:f9:53:d7:79:7f:80:38:62:9e:
5c:c5:0d:4a:86:b1:37:79:ac:35:a3:87:7c:00:65:5c:ed:82:
21:68:bb:ef:af:c7:90:82:f5:18:d2:bb:05:4e:77:90:23:b6:
e0:a1:39:9d:c9:08:93:f5:1f:fa:8d:99:65:48:f0:d2:2b:d9:
70:c5:38:cd:cd:a2:63:e9:96:a2:89:4a:2c:33:cb:e7:1a:11:
c4:76:b8:1f:e7:48:08:7e:5e:20:51:a1:b5:a7:be:a2:2b:5a:
fa:81:fa:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 15:55:15 2025 by rpki-client