Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
File: a8GtFnaioypFoM85L3-cXqaOLeo.mft (raw, json)
Hash identifier: //hqlkxkFzFifTAYob0HtPJXSji1h0VMobKLkqj01m4=
Subject key identifier: 5D:29:ED:E9:CA:AC:AA:B4:46:DB:B5:99:24:D5:D0:E8:C1:2D:83:9F
Authority key identifier: 6B:C1:AD:16:76:A2:A3:2A:45:A0:CF:39:2F:7F:9C:5E:A6:8E:2D:EA
Certificate issuer: /CN=6bc1ad1676a2a32a45a0cf392f7f9c5ea68e2dea
Certificate serial: 019685481A87AB8D049989B85F39376C9709
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
Manifest number: 1516
Signing time: Wed 30 Apr 2025 06:00:17 +0000
Manifest this update: Wed 30 Apr 2025 06:00:17 +0000
Manifest next update: Thu 01 May 2025 06:00:17 +0000
Files and hashes: 1: CkA5P7l5ePDJ8YtVI5RwljhHN3I.roa (hash: Rv4CNPYpNEer366FC8TAHEAISsXVQ6rJf8w+ppgPPgs=)
2: a8GtFnaioypFoM85L3-cXqaOLeo.crl (hash: tjMu/RfKok+1F172qKeCxymtrfWupKHZLL7Ud+uRdT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:48:1a:87:ab:8d:04:99:89:b8:5f:39:37:6c:97:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc1ad1676a2a32a45a0cf392f7f9c5ea68e2dea
Validity
Not Before: Apr 30 06:00:17 2025 GMT
Not After : May 1 06:00:17 2025 GMT
Subject: CN=5d29ede9caacaab446dbb59924d5d0e8c12d839f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a5:87:f0:b2:ab:e8:5d:d2:a6:06:ae:b5:64:
09:5b:99:f3:1b:12:53:18:79:aa:d6:80:d2:80:21:
70:c4:bc:38:3c:cb:f8:25:70:f0:c2:fc:07:74:ee:
ca:4d:5f:3c:24:ab:6b:b5:fe:de:2f:74:f8:78:0e:
9f:3d:1c:26:f3:b5:e3:fa:75:bd:7f:68:62:6f:88:
df:49:8f:33:7d:f4:33:e8:34:36:e2:4a:4e:4e:c8:
cd:6d:ab:04:86:50:fd:4b:5e:93:c1:cf:02:5a:f3:
c1:28:38:8b:35:b8:31:a2:d9:cc:32:de:66:9b:b5:
94:62:e8:da:7b:2d:99:db:70:0e:68:9b:19:55:44:
4b:a0:6c:e2:e0:89:f5:2c:09:06:f7:2a:cf:e1:02:
87:f2:3b:68:00:b0:7d:49:ad:50:52:a7:ef:d0:a7:
da:c4:fd:36:ba:bf:7a:25:60:0c:c8:c9:4a:5d:20:
04:9e:58:b4:e0:1a:c2:7d:d9:67:e4:a5:9a:90:31:
1f:d5:59:69:1a:53:45:e8:e9:6e:fe:c3:1d:ed:31:
ad:0d:ab:1a:b9:03:80:5f:b3:08:50:b7:af:41:84:
66:16:1f:dc:2d:c3:b1:d7:06:48:ba:55:ca:c2:e7:
11:86:b3:99:8b:8a:63:34:35:e0:16:f4:34:18:0e:
0f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:29:ED:E9:CA:AC:AA:B4:46:DB:B5:99:24:D5:D0:E8:C1:2D:83:9F
X509v3 Authority Key Identifier:
keyid:6B:C1:AD:16:76:A2:A3:2A:45:A0:CF:39:2F:7F:9C:5E:A6:8E:2D:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8GtFnaioypFoM85L3-cXqaOLeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/22392e-aa67-4588-b809-ef1aaaabfe2b/1/a8GtFnaioypFoM85L3-cXqaOLeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:31:96:b4:cf:cf:33:74:66:e7:49:4d:c2:24:a0:8e:aa:4f:
fe:46:0a:06:19:4d:ad:54:a5:08:d3:74:a7:62:80:b8:e4:76:
be:34:fd:3a:ff:39:ed:1d:dc:7c:a2:c8:aa:1b:e3:de:00:73:
c7:42:de:11:c2:14:31:19:39:57:23:50:ae:65:80:23:5b:b3:
f2:57:2f:92:e0:58:69:02:c4:6a:8e:83:88:b0:89:98:be:53:
d2:b2:a6:e8:c7:94:48:29:88:f2:94:93:e3:b4:0c:78:b5:6d:
63:65:8f:0a:26:34:cd:b8:f5:d0:fe:98:3e:2b:84:47:5e:d1:
18:28:fc:d0:fd:56:f1:32:ef:37:d7:37:85:f9:8a:0b:ff:14:
30:dc:21:9b:75:63:05:9d:1c:58:d3:fe:b4:1c:61:30:a2:51:
c1:d7:db:94:02:60:f0:37:14:96:ae:ac:42:20:4c:2d:f3:53:
c7:26:90:19:0e:66:75:3a:83:55:c7:d8:e6:d1:1c:c5:68:56:
44:69:33:e0:e4:db:8e:c5:40:75:21:c5:f6:84:6a:38:8e:3b:
91:19:f8:82:d8:ad:d8:b2:2b:0e:df:98:ff:85:b2:21:88:30:
53:9f:3d:eb:b0:50:f9:df:14:08:12:8a:50:e7:83:07:8e:61:
c2:87:02:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 12:25:56 2025 by rpki-client