Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
File: aLf4F6tRQbXhOCgM32GQFmu5y4c.mft (raw, json)
Hash identifier: P+Tj9kcu+h48Tw3G0k7TJZ6LoNALtOkD33pBAAn6y6U=
Subject key identifier: 2A:B5:E3:71:9E:38:6F:C2:C6:00:F8:5C:6C:A8:B2:BF:55:F5:58:C3
Authority key identifier: 68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
Certificate issuer: /CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Certificate serial: 019684DAA82BBB9C3BC15D3B87AE9B40E8D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
Manifest number: 1517
Signing time: Wed 30 Apr 2025 04:00:44 +0000
Manifest this update: Wed 30 Apr 2025 04:00:44 +0000
Manifest next update: Thu 01 May 2025 04:00:44 +0000
Files and hashes: 1: 1-wEZKS5ROln113VYj-rYIVv3HMw.roa (hash: zd3NK5lHmlo7IZCKvHCkj4ue/ewdTG041qEpUCwPhSg=)
2: aLf4F6tRQbXhOCgM32GQFmu5y4c.crl (hash: IhPW1sVy9j5CnWYUuX99LmEC76RRzy1/nOLlhO/BnXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:da:a8:2b:bb:9c:3b:c1:5d:3b:87:ae:9b:40:e8:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68b7f817ab5141b5e138280cdf6190166bb9cb87
Validity
Not Before: Apr 30 04:00:44 2025 GMT
Not After : May 1 04:00:44 2025 GMT
Subject: CN=2ab5e3719e386fc2c600f85c6ca8b2bf55f558c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0f:39:26:ff:41:b4:bb:ce:2f:85:c6:60:16:
ac:b9:d4:a7:c6:6f:fa:72:0f:da:55:35:6e:cd:92:
c0:af:d0:8e:80:64:11:a7:76:5b:ca:80:cf:6c:61:
86:c5:67:76:78:db:37:0c:d8:ca:b1:e1:cb:41:eb:
d8:e1:d7:5d:ca:33:3e:83:fc:56:62:d8:57:13:b6:
ef:e1:e6:7b:cc:e3:49:83:e6:18:3b:43:26:cd:ca:
2a:22:68:36:88:0c:a7:8e:7f:a4:ca:fb:5c:13:71:
46:83:a6:11:5c:15:82:b4:06:54:83:fe:c7:f7:71:
a8:4f:07:2c:89:dc:04:4a:8c:41:18:1b:19:b6:48:
d4:1b:80:0e:b8:f6:e7:60:6f:f2:88:2d:1e:80:40:
fa:fa:7f:6e:80:11:4d:91:79:c3:80:46:e5:95:81:
64:3c:f6:dc:40:81:da:93:e4:ee:33:6a:1d:79:01:
99:24:2c:10:8a:70:fe:1a:97:78:7a:7a:83:0f:b4:
7d:49:3b:95:c4:99:1d:e2:9c:51:43:9d:87:a8:7a:
4b:b8:b3:d9:f2:21:64:f5:10:d7:66:99:c1:0f:67:
b5:f4:ab:2a:0f:c8:34:dd:5b:e3:de:5c:ff:67:6f:
01:9e:73:1f:06:2a:15:9b:66:55:be:07:81:1e:a9:
14:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:B5:E3:71:9E:38:6F:C2:C6:00:F8:5C:6C:A8:B2:BF:55:F5:58:C3
X509v3 Authority Key Identifier:
keyid:68:B7:F8:17:AB:51:41:B5:E1:38:28:0C:DF:61:90:16:6B:B9:CB:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aLf4F6tRQbXhOCgM32GQFmu5y4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/742c14-7b4d-4279-b823-16517126c132/1/aLf4F6tRQbXhOCgM32GQFmu5y4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:04:3f:8b:90:e6:f6:f9:01:c4:44:5e:07:e6:c6:78:de:4b:
37:78:8a:6c:1b:0a:86:f1:75:78:5e:14:b6:83:3e:a2:96:70:
52:32:db:9e:65:dd:22:d6:18:7c:0d:7c:4a:46:45:ea:de:a0:
9b:a2:ce:10:b4:50:7a:06:33:84:03:d5:a0:65:45:a7:bd:2d:
40:44:7a:44:b7:2e:1b:b5:c1:5a:4a:26:89:18:02:0a:9d:69:
0a:6b:68:2f:38:04:47:f6:0b:11:34:5f:a6:eb:67:0f:d1:29:
69:d3:a9:3f:02:d2:5c:ab:77:af:09:d0:fc:bd:44:e0:a5:3e:
40:af:7b:9f:bc:73:e3:39:f2:7e:ae:71:ba:f9:9d:3a:4c:57:
89:37:50:cc:cb:d9:05:bb:51:34:d7:37:7e:f3:ee:0a:0a:83:
1d:27:e4:7e:23:87:2f:63:ac:f7:63:bd:7f:96:13:be:0a:86:
5c:17:e5:63:83:ff:49:43:b1:d3:d1:77:06:ab:96:c5:0e:b1:
61:cc:d4:aa:96:dc:36:28:6a:5a:3f:3c:b8:cb:d2:1d:db:8e:
9d:41:fd:74:be:58:f2:e2:d0:78:07:06:06:ba:c4:2f:88:b6:
42:c7:33:0f:a7:00:47:73:8b:fa:f7:cd:fb:12:40:e7:4a:63:
76:06:df:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 14:49:45 2025 by rpki-client