Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
File: ao33d2sW0oLgTGluJYqk-fnOnJg.mft (raw, json)
Hash identifier: rr3ppzHRv71i5tRW2ELzjlj2XNsoMwaCc6On2wiu34M=
Subject key identifier: F4:6C:62:94:9F:83:08:B9:7C:32:F5:85:C8:E0:7E:03:D2:C8:6A:A3
Authority key identifier: 6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
Certificate issuer: /CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Certificate serial: 01976E508B8FAE712B72A0B4084C2ABAB484
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
Manifest number: 0980
Signing time: Sat 14 Jun 2025 12:01:01 +0000
Manifest this update: Sat 14 Jun 2025 12:01:01 +0000
Manifest next update: Sun 15 Jun 2025 12:01:01 +0000
Files and hashes: 1: ao33d2sW0oLgTGluJYqk-fnOnJg.crl (hash: V0TWEUZF8lSp7+6Ohp/nqxVNI6H4HJWWr6nnOYi0QWE=)
2: zkFI0q7jFUcpvcC1_CEihR1YV24.roa (hash: 783T5wgYEpPQMcRoCX4E0P3B8Y6FUugL0p43iJWmXrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:50:8b:8f:ae:71:2b:72:a0:b4:08:4c:2a:ba:b4:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Validity
Not Before: Jun 14 12:01:01 2025 GMT
Not After : Jun 15 12:01:01 2025 GMT
Subject: CN=f46c62949f8308b97c32f585c8e07e03d2c86aa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:04:42:4c:92:7d:cd:43:e4:48:c7:b5:18:e3:
2c:71:87:a9:f1:7d:42:02:9a:20:da:9b:f7:24:c9:
72:d2:5b:94:9e:bd:01:ff:ec:00:44:5e:91:6b:74:
08:82:de:a2:06:37:c0:12:93:8b:11:c3:6e:0f:8c:
e7:97:d1:c0:62:e1:f9:64:27:c5:11:c4:49:2c:d5:
cd:5d:c8:62:4e:20:58:9f:f6:58:ed:6e:16:e2:8b:
b0:9f:cf:04:7e:58:38:b1:45:af:ca:5d:09:3d:e8:
22:79:33:5a:4f:01:c2:e0:20:34:2c:66:ab:ec:a2:
dd:ad:92:80:ef:89:f6:6c:56:ed:9c:a7:3d:68:dc:
74:83:68:8f:a9:23:d2:f4:8e:01:72:5b:12:50:76:
e7:ea:2a:99:50:05:a3:a3:cc:3e:b0:e3:79:18:06:
57:d6:cc:0b:41:18:e6:8d:30:38:ef:fb:15:a0:49:
9b:11:3e:42:93:81:1e:8d:da:a9:97:64:46:3b:08:
75:f4:2a:ca:32:2b:60:68:dc:aa:4b:4c:a5:02:07:
53:cd:72:5f:8c:d4:d1:79:26:b1:1b:1d:95:75:d9:
6f:a1:d7:19:87:48:59:c0:96:55:23:39:0c:70:82:
dd:ed:62:5e:b9:d1:d2:d1:1a:88:21:ed:5d:8b:24:
23:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:6C:62:94:9F:83:08:B9:7C:32:F5:85:C8:E0:7E:03:D2:C8:6A:A3
X509v3 Authority Key Identifier:
keyid:6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:ba:de:ce:4a:d1:60:9f:ad:a6:b1:ea:e5:e9:9d:0c:4c:d7:
2f:1a:1b:97:d0:98:5d:ea:37:6e:b0:fd:07:34:da:23:46:de:
a7:25:ae:1a:d5:cb:98:76:cf:01:c2:b6:42:2e:0a:36:1e:67:
ba:76:85:b9:fa:cb:d5:f9:20:b5:2c:46:1d:43:6e:68:6a:b9:
c0:57:b4:10:75:42:fe:31:09:1b:14:c5:51:b8:74:2a:f9:cb:
72:20:8e:c6:61:4b:28:fc:ff:bd:d6:61:b0:11:24:d7:19:bf:
7c:a5:7f:53:24:b4:97:c7:ae:f6:d9:06:a4:d5:80:41:f6:bb:
da:9c:ab:16:ae:94:3c:a9:27:11:98:4c:78:97:02:62:88:53:
df:e3:12:f1:2a:aa:18:a6:4a:5b:16:fe:18:4a:58:fe:2f:73:
11:10:6d:84:fc:1e:01:ec:92:b7:e0:74:c1:9b:fb:1a:79:60:
84:67:b7:de:cd:2a:98:12:93:bc:66:05:52:8e:cb:88:43:c4:
c1:6f:5f:06:3c:36:03:b5:70:7e:41:29:f5:6b:1e:d8:3b:c9:
15:ce:db:38:12:65:8e:38:2a:e6:6b:0b:c0:97:9f:c8:2b:ee:
75:49:8f:35:a9:7a:d8:3a:f7:af:41:dc:ee:68:1b:40:82:31:
e6:93:08:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:39:45 2025 by rpki-client