Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json)
Hash identifier: 05DKSDperlBpywyYPFSG9bvLOoC93nJGvbGSvvyuwng=
Subject key identifier: 41:F3:27:AC:53:4A:2E:C6:75:DF:F7:D2:CB:14:1B:3C:37:DB:F6:A6
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 01976C98F26CA7DABBF28C39692F584AEE92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
Manifest number: 158E
Signing time: Sat 14 Jun 2025 04:00:52 +0000
Manifest this update: Sat 14 Jun 2025 04:00:52 +0000
Manifest next update: Sun 15 Jun 2025 04:00:52 +0000
Files and hashes: 1: G3jkppDUZ7UShIbg3wj67wwITjQ.roa (hash: IM9aMDCOjn2pDhh5r2plZvteAbzhdwZ0L/lTf4RJayk=)
2: Tz1CIM1JoghruWTN6nGpazj8zTs.roa (hash: VV/wpFoAA0PEYjeaECSEYgoe19Q1uDYWZTbwDnhLY+0=)
3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: qMEA7DNaBm7nx5tulUpm4CJEU51NWr4HLUN81KvEKGI=)
4: qOyspdHf0vEJQuyvIz0XkgRHk_0.roa (hash: yR7LTFxNYmFcq/nxWYOH7mZupl2rRRW8SrPwUWcJB0k=)
5: uiGdfZv36ngdlEPtH0Dctu5_0kI.roa (hash: kwlBzu/ziaLKG7neS7FV84L3FCZ7YdUCR1fgHvPBMoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:f2:6c:a7:da:bb:f2:8c:39:69:2f:58:4a:ee:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: Jun 14 04:00:52 2025 GMT
Not After : Jun 15 04:00:52 2025 GMT
Subject: CN=41f327ac534a2ec675dff7d2cb141b3c37dbf6a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:41:1c:10:af:96:be:b2:68:c9:d2:bf:af:1a:
47:92:d6:bb:38:e2:69:74:a2:34:af:c0:78:fb:06:
80:4e:3e:26:ad:05:55:d3:c2:a6:20:a6:69:1a:39:
df:9d:d9:28:52:c1:05:b2:3d:74:98:69:d1:f9:cd:
2a:d5:70:ab:00:43:fe:99:9b:45:18:fb:7b:18:9a:
74:1f:34:26:cf:1e:e1:e8:f6:97:b5:98:e0:2d:44:
32:1b:e0:24:d2:23:a4:1e:cc:43:2c:9e:2d:53:23:
2c:24:86:c1:5a:48:46:e5:4e:9e:4f:1d:57:aa:5c:
0d:d3:bf:2a:2f:f3:76:f3:65:21:bf:88:25:49:4e:
6a:6d:03:50:4f:f6:8a:3a:56:62:92:6e:0b:ae:b9:
42:a1:e8:a4:4d:5c:39:27:07:40:9d:70:67:db:6c:
96:5d:ba:6e:3b:d8:22:de:f5:14:b2:3a:dd:72:82:
da:d1:f8:63:28:ae:ca:61:f1:24:a4:8d:bf:76:df:
f7:cf:6a:95:51:0e:e1:0a:b3:db:b3:e7:d5:50:cc:
a2:a2:74:7e:82:1f:88:a7:1f:be:48:75:ab:8f:e0:
99:3b:22:6b:fe:f9:24:8d:c3:d5:0d:20:5c:ca:84:
82:18:02:db:f7:78:3f:5a:0b:ed:a2:8b:bc:8f:ec:
73:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:F3:27:AC:53:4A:2E:C6:75:DF:F7:D2:CB:14:1B:3C:37:DB:F6:A6
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:6b:77:6d:c2:51:67:9d:80:b2:54:46:22:75:67:aa:a5:df:
99:f4:02:67:a9:aa:b4:6e:fb:01:f3:49:2c:10:7b:99:d1:01:
0d:d0:6e:d2:c0:56:44:00:d1:ce:82:bb:b3:90:47:89:0a:c8:
b1:00:7e:2f:f7:fa:ce:fe:78:b4:85:7a:61:52:e8:2a:9a:13:
3a:20:0b:f3:e2:ee:bf:72:a2:b3:83:df:83:61:a1:ae:78:22:
a9:ee:34:42:75:02:23:b0:0c:14:62:be:6a:d3:97:13:b0:e1:
2f:66:72:2e:cc:6b:af:90:64:2e:b2:3b:28:11:04:d6:f8:8f:
48:e3:a2:8e:11:25:42:34:f4:53:cb:74:17:fa:17:dc:e3:aa:
2c:52:e7:5b:c6:08:13:98:6d:54:a3:db:c1:b0:b8:84:14:29:
76:7a:30:1c:43:04:a8:49:da:b6:ed:27:c4:97:5b:bc:83:3c:
e9:be:f1:9a:45:f2:07:c6:c5:8a:52:00:cd:da:90:19:fe:22:
f6:2f:b6:61:2c:ae:c1:da:31:e5:ef:5b:7d:97:f5:e1:a5:2c:
0a:d8:9c:7d:19:36:87:b6:61:6f:95:e2:71:02:06:7b:3e:57:
58:81:2d:86:aa:00:a4:e7:95:e3:13:7f:53:35:8e:d2:a4:28:
8c:47:eb:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:35:52 2025 by rpki-client