Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
File: ao33d2sW0oLgTGluJYqk-fnOnJg.mft (raw, json)
Hash identifier: hLe6NhY7Ud6Ey6JO3LDTyTST/aOwEBKm8s0c00PXlYE=
Subject key identifier: A3:69:10:15:D2:9F:85:EC:AC:8F:63:7D:7E:34:6B:20:96:55:00:FC
Authority key identifier: 6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
Certificate issuer: /CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Certificate serial: 019682B50332A64461400B7177A8FEB03A34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
Manifest number: 0906
Signing time: Tue 29 Apr 2025 18:00:23 +0000
Manifest this update: Tue 29 Apr 2025 18:00:23 +0000
Manifest next update: Wed 30 Apr 2025 18:00:23 +0000
Files and hashes: 1: ao33d2sW0oLgTGluJYqk-fnOnJg.crl (hash: 6CWF5U2WV0ZNUqGDIKAMPin0YBvKVCm2/x6mcF4EMMg=)
2: zkFI0q7jFUcpvcC1_CEihR1YV24.roa (hash: 783T5wgYEpPQMcRoCX4E0P3B8Y6FUugL0p43iJWmXrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 18:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:b5:03:32:a6:44:61:40:0b:71:77:a8:fe:b0:3a:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Validity
Not Before: Apr 29 18:00:23 2025 GMT
Not After : Apr 30 18:00:23 2025 GMT
Subject: CN=a3691015d29f85ecac8f637d7e346b20965500fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9a:5c:9e:12:6c:00:bd:be:eb:32:e5:d4:d2:
44:5f:f4:87:42:b1:8d:52:6b:f0:35:80:ce:19:b5:
cc:9b:9a:97:71:e3:79:7c:e1:ec:86:bc:73:f4:b0:
9c:19:dc:b9:13:99:75:a6:cf:b5:de:82:8b:f6:aa:
60:a0:d0:a7:b9:6d:bf:db:c6:4b:06:45:58:f4:50:
7f:4a:33:4e:29:51:95:bb:0c:a7:81:52:27:f1:f4:
ec:27:c5:d1:d3:27:23:26:00:cd:21:94:38:ad:23:
98:82:12:2e:3f:69:1c:06:ef:32:05:78:7c:db:65:
dd:b5:4d:a6:78:fe:c6:2a:0f:8d:90:ae:f5:f6:9a:
8f:62:66:c3:1e:3c:3c:59:5c:fb:24:b9:cc:ea:68:
02:af:d2:a5:e5:f2:69:81:20:f0:da:7a:77:ea:80:
c2:28:06:0a:f1:b2:3b:34:62:5e:21:fd:ec:1c:c3:
25:98:00:4e:01:2f:91:8e:b7:bb:e4:85:04:24:52:
a4:5f:6c:39:eb:49:69:a8:25:6f:39:b4:41:62:13:
18:e4:e6:38:6e:68:7a:79:14:ec:3e:d3:12:b9:5a:
50:98:d7:fe:8b:28:01:5e:35:60:f1:29:ff:5b:40:
40:b9:33:74:d7:05:a1:90:9b:a8:1d:be:bd:55:6d:
76:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:69:10:15:D2:9F:85:EC:AC:8F:63:7D:7E:34:6B:20:96:55:00:FC
X509v3 Authority Key Identifier:
keyid:6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:52:be:44:cb:11:23:af:42:ad:74:eb:25:37:66:47:8e:f3:
72:45:fa:e2:13:23:81:0e:be:66:8d:09:7f:72:a3:14:bf:26:
f3:30:4d:65:d7:3c:86:7e:4f:0f:b9:35:3b:d1:bf:a9:6e:ae:
51:16:f3:c2:a0:cf:de:07:35:c4:7b:cf:90:19:6f:3d:12:77:
25:3f:20:f2:42:97:b4:ec:ab:fc:0b:76:12:38:87:1e:82:30:
e9:c3:8e:83:82:ea:37:93:65:39:13:9f:47:fb:44:04:8f:6d:
aa:ad:91:83:01:2a:ef:c4:bf:2b:5f:af:52:6f:07:c6:ec:88:
81:b9:89:29:60:a5:e6:08:7c:da:d3:c6:af:c0:67:63:70:78:
23:d9:e4:bd:a5:d5:10:6b:a7:03:c5:28:0d:e4:bc:14:8e:e9:
51:9f:aa:c5:28:4a:65:a5:42:36:ad:2e:7c:7c:21:00:7b:9c:
95:12:7c:9e:28:54:ec:f7:9a:65:1d:a4:78:01:38:21:1d:cc:
1e:27:1f:43:b4:d0:28:2e:a4:e4:dc:b5:02:d3:ea:fa:33:be:
44:ae:d0:f1:33:0a:bb:5e:9f:37:93:25:26:14:39:ba:3f:09:
f0:f4:31:10:36:6d:b7:6a:bf:e8:06:47:70:0e:5b:12:d9:ad:
01:36:4d:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:44:51 2025 by rpki-client