Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
File: aOlYF0Bglex8tceyhrETM0l7lFE.mft (raw, json)
Hash identifier: w2EuevlJejP+71BCMSsokKt8QV0JLbcHz5GSbGzdYws=
Subject key identifier: 1F:65:3B:2F:58:99:70:E8:7D:64:AC:8E:18:52:A2:87:9E:F3:E8:81
Authority key identifier: 68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
Certificate issuer: /CN=68e95817406095ec7cb5c7b286b11333497b9451
Certificate serial: 01969FE468D4FBB247D1390B645E502A180D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
Manifest number: 0730
Signing time: Mon 05 May 2025 10:01:08 +0000
Manifest this update: Mon 05 May 2025 10:01:08 +0000
Manifest next update: Tue 06 May 2025 10:01:08 +0000
Files and hashes: 1: ExEAGmrTaGZYkgcoaaGfFiacDZM.roa (hash: vfQhBpcBjSjG95UQaSsBC3edgr1xXnN4hhJBHCKa+Vc=)
2: aOlYF0Bglex8tceyhrETM0l7lFE.crl (hash: 5eE+QckcywSWPNCpmgZPYfPLluG9xz6bNRybW9rxWFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 08:37:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:e4:68:d4:fb:b2:47:d1:39:0b:64:5e:50:2a:18:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e95817406095ec7cb5c7b286b11333497b9451
Validity
Not Before: May 5 10:01:08 2025 GMT
Not After : May 6 10:01:08 2025 GMT
Subject: CN=1f653b2f589970e87d64ac8e1852a2879ef3e881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bb:73:ac:14:eb:a2:f0:72:a5:e1:a4:91:55:
c6:bd:8b:1a:bf:a8:ff:b2:84:a3:64:b1:30:ee:a7:
b3:58:37:4e:76:be:eb:07:cb:5e:61:3d:1a:25:1f:
cf:22:71:35:ac:5d:db:9e:98:92:e8:51:89:16:8c:
fc:7e:ea:13:c9:41:a8:38:fb:f2:ed:dc:c5:5d:8c:
7c:a8:9f:d2:35:e9:8b:ec:2c:eb:67:ff:bf:f2:0f:
4e:b1:dd:33:46:50:7f:3d:89:92:d1:26:3a:f0:2b:
55:3e:3d:79:75:02:95:d9:9d:51:52:97:48:23:7f:
d6:a2:fe:77:e7:ed:b1:b9:73:6a:aa:f2:7b:01:b8:
9e:da:d4:02:f1:4f:68:28:84:b9:c8:2e:38:93:3d:
cf:01:95:77:90:04:86:8b:48:23:fe:8d:19:8d:ed:
96:c9:3c:f5:0b:77:ff:61:bb:98:ef:4b:2e:2b:c7:
04:7f:66:21:9f:42:16:8a:77:67:e5:46:68:16:b7:
82:9b:fc:09:fa:c5:52:c1:14:bd:c9:81:a2:03:4e:
b0:da:69:92:9a:7a:83:27:20:da:01:43:cd:57:e1:
cc:7f:bd:a9:e4:96:d8:4f:cb:92:d2:d0:2e:9c:50:
70:d6:b6:86:a6:cc:fb:cf:32:82:30:19:c9:ef:97:
0c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:65:3B:2F:58:99:70:E8:7D:64:AC:8E:18:52:A2:87:9E:F3:E8:81
X509v3 Authority Key Identifier:
keyid:68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:75:20:06:45:f9:a7:73:26:12:e1:f8:40:a5:a2:91:02:10:
d8:4b:13:72:14:44:63:db:f5:67:56:7b:8b:b6:85:e0:5c:4e:
3e:e4:a8:31:d5:98:cc:d8:e6:53:45:95:d6:69:98:ff:7e:be:
d5:77:7d:78:fe:41:5e:e3:f6:0a:01:85:15:e2:5f:b5:6f:b7:
9d:bc:4e:3f:86:75:31:6e:82:a6:ab:69:c6:93:dd:aa:21:72:
1c:4a:2d:a7:2e:cd:e5:1c:c3:ac:60:f4:42:99:01:ae:11:e1:
4e:9d:74:f8:b5:b3:05:7b:e1:42:20:aa:6e:5a:73:0f:be:dc:
e1:77:04:a6:88:86:5b:b0:2b:81:c6:5a:33:a0:17:d8:28:65:
d7:86:fc:12:a6:d7:06:3f:be:e1:87:aa:2a:43:af:1c:e0:0a:
34:3b:68:7e:43:33:e7:1c:0d:c2:0b:f2:ae:37:2f:ad:95:1b:
29:f9:24:62:cc:81:e8:c8:e8:c9:16:70:15:83:32:54:94:42:
ab:82:62:b7:22:58:4e:b9:02:2d:f8:e9:5c:2a:4d:12:89:f2:
23:77:80:31:18:da:d2:9c:2b:c1:0a:1e:05:3e:76:02:96:ea:
36:cc:7e:4b:1e:29:3b:bd:53:95:7a:f3:51:85:2d:bb:91:d9:
bf:66:2d:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaf5GjU+7JH0TkLZF5QKhgNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZTk1ODE3NDA2MDk1ZWM3Y2I1YzdiMjg2YjExMzMzNDk3
Yjk0NTEwHhcNMjUwNTA1MTAwMTA4WhcNMjUwNTA2MTAwMTA4WjAzMTEwLwYDVQQD
EygxZjY1M2IyZjU4OTk3MGU4N2Q2NGFjOGUxODUyYTI4NzllZjNlODgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqLtzrBTrovBypeGkkVXGvYsav6j/
soSjZLEw7qezWDdOdr7rB8teYT0aJR/PInE1rF3bnpiS6FGJFoz8fuoTyUGoOPvy
7dzFXYx8qJ/SNemL7CzrZ/+/8g9Osd0zRlB/PYmS0SY68CtVPj15dQKV2Z1RUpdI
I3/Wov535+2xuXNqqvJ7Abie2tQC8U9oKIS5yC44kz3PAZV3kASGi0gj/o0Zje2W
yTz1C3f/YbuY70suK8cEf2Yhn0IWindn5UZoFreCm/wJ+sVSwRS9yYGiA06w2mmS
mnqDJyDaAUPNV+HMf72p5JbYT8uS0tAunFBw1raGpsz7zzKCMBnJ75cMbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB9lOy9YmXDofWSsjhhSooee8+iBMB8GA1UdIwQY
MBaAFGjpWBdAYJXsfLXHsoaxEzNJe5RRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU9sWUYwQmdsZXg4dGNleWhyRVRNMGw3bEZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy80YTVkNzEtZTExZC00ZDMyLWI1OTct
MDE5ZWM5ZDlhNzU4LzEvYU9sWUYwQmdsZXg4dGNleWhyRVRNMGw3bEZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy80YTVkNzEtZTExZC00ZDMyLWI1OTctMDE5ZWM5ZDlhNzU4
LzEvYU9sWUYwQmdsZXg4dGNleWhyRVRNMGw3bEZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATHUgBkX5
p3MmEuH4QKWikQIQ2EsTchREY9v1Z1Z7i7aF4FxOPuSoMdWYzNjmU0WV1mmY/36+
1Xd9eP5BXuP2CgGFFeJftW+3nbxOP4Z1MW6CpqtpxpPdqiFyHEotpy7N5RzDrGD0
QpkBrhHhTp10+LWzBXvhQiCqblpzD77c4XcEpoiGW7ArgcZaM6AX2Chl14b8EqbX
Bj++4YeqKkOvHOAKNDtofkMz5xwNwgvyrjcvrZUbKfkkYsyB6MjoyRZwFYMyVJRC
q4JityJYTrkCLfjpXCpNEonyI3eAMRja0pwrwQoeBT52ApbqNsx+Sx4pO71TlXrz
UYUtu5HZv2Yt8A==
-----END CERTIFICATE-----
Generated at Mon May 5 13:24:56 2025 by rpki-client