Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
File: aJQuPste6nkqdvray-wBqFaOl_Q.mft (raw, json)
Hash identifier: TWPmGOKIZDzLNtp79I2vhYRalhPIAtIhu8t42AzyT/k=
Subject key identifier: 2B:5E:00:8D:ED:14:C8:FB:B9:36:B4:41:E0:61:84:15:AE:C3:69:9E
Authority key identifier: 68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
Certificate issuer: /CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Certificate serial: 01967F466C4F1F401B6D7F97E3167F48AFC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
Manifest number: 1514
Signing time: Tue 29 Apr 2025 02:00:43 +0000
Manifest this update: Tue 29 Apr 2025 02:00:43 +0000
Manifest next update: Wed 30 Apr 2025 02:00:43 +0000
Files and hashes: 1: 2I7Ug_0TKUirYBKdCRFB3X-yPVM.roa (hash: OuAKBuCtiZrdtqQo3Ia+YQ9DdlyXDqDuhn9BW+I9wGc=)
2: aJQuPste6nkqdvray-wBqFaOl_Q.crl (hash: fUMxtArlWVd1fqrCLp05cU0AHI+yM3iDnZUDVzkm17I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 02:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:46:6c:4f:1f:40:1b:6d:7f:97:e3:16:7f:48:af:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68942e3ecb5eea792a76fadacbec01a8568e97f4
Validity
Not Before: Apr 29 02:00:43 2025 GMT
Not After : Apr 30 02:00:43 2025 GMT
Subject: CN=2b5e008ded14c8fbb936b441e0618415aec3699e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6a:4a:b4:cc:7b:21:59:ae:79:2d:e1:b1:ac:
7a:32:03:45:e5:8d:cf:d4:a8:2c:e6:79:32:0d:73:
9b:24:db:1c:6b:76:b3:ac:32:1c:2a:3b:20:2c:4c:
b5:34:6b:85:e0:9b:7c:7d:7e:4b:af:d0:39:36:c3:
cc:b3:73:09:b6:57:e2:e3:db:b0:91:38:ae:5a:dd:
73:af:79:dd:3e:95:63:f5:34:e5:56:b4:9b:53:a7:
ec:6c:37:e3:5e:d3:b3:cc:34:1c:f8:86:e2:06:2e:
eb:6a:c2:ac:97:e7:77:02:c2:bd:e8:cb:1a:a1:40:
68:d9:42:aa:d6:e7:7d:3b:ff:50:59:9f:3f:fc:b2:
66:a0:da:0b:ad:0c:2f:3c:97:74:72:5b:26:c3:c8:
bc:31:e9:66:30:95:79:56:3b:51:98:95:93:03:e7:
28:9c:b6:2a:4d:f5:90:a3:d3:89:f8:9f:02:9f:9d:
f0:09:b9:1c:20:9b:bf:c4:87:d2:3f:4d:cd:81:73:
1b:23:88:72:08:96:10:ac:86:bc:5e:10:89:58:0f:
4e:b4:45:70:bd:40:69:60:03:cb:ac:40:c7:dd:bc:
a7:d9:61:dc:02:4f:cc:74:01:77:d3:0d:e5:40:2e:
78:48:96:f5:73:fb:65:76:d5:19:b6:9f:f6:b8:9f:
29:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:5E:00:8D:ED:14:C8:FB:B9:36:B4:41:E0:61:84:15:AE:C3:69:9E
X509v3 Authority Key Identifier:
keyid:68:94:2E:3E:CB:5E:EA:79:2A:76:FA:DA:CB:EC:01:A8:56:8E:97:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJQuPste6nkqdvray-wBqFaOl_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/beb3a8-4b72-48ec-8e04-03cce3969f9c/1/aJQuPste6nkqdvray-wBqFaOl_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:28:61:20:7c:ad:e9:b5:70:c6:b8:0d:a0:bb:17:79:f2:26:
7f:0d:11:32:3d:70:f8:f0:cc:41:0c:42:72:82:5e:07:7b:09:
bc:b6:89:69:52:bb:aa:10:02:19:8a:26:07:2b:46:d6:37:84:
ef:ee:9b:15:4b:6c:27:6a:19:3f:92:f6:e2:2d:e4:cc:2b:ce:
d1:71:a0:98:14:d6:62:1c:90:99:55:c5:b1:ea:24:07:16:77:
54:6e:c8:ee:a4:cb:5d:6e:26:6a:38:35:ad:6e:a3:47:15:ac:
b2:b9:41:a2:c8:b1:b5:e0:ef:c9:3c:08:84:d1:64:b8:cf:dc:
c9:d3:cd:11:c9:9f:eb:ec:2b:1e:f0:39:fb:27:26:40:79:df:
24:6f:1f:d3:65:c0:c5:36:7d:66:82:f6:6f:91:29:80:8f:b3:
e0:6c:3e:4d:62:b9:b4:cc:ac:42:20:28:7e:ed:79:ea:6b:40:
ff:39:c8:63:a8:54:d3:c3:f6:a7:19:07:c6:f4:7f:b5:3d:67:
d9:2c:33:0b:64:e1:95:4e:81:03:81:a6:a1:9e:79:61:1a:03:
80:3a:a2:0c:b8:d3:9c:fb:41:d3:f7:be:53:ae:ca:28:38:e5:
42:8e:79:b1:4e:c8:67:13:6b:00:c8:1c:43:a2:31:e9:85:1e:
aa:b6:82:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 12:03:31 2025 by rpki-client