Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json)
Hash identifier: Hz2SnspahSrV7yFsdE5/ho/hQUAeZM7FgwmOyNfgpX0=
Subject key identifier: D7:4A:CF:42:48:88:AE:C0:5C:A8:DE:20:7C:7F:79:40:21:AC:EC:1D
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 0196767A884AF5D67C999B38524C3AB5B96F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
Manifest number: 151C
Signing time: Sun 27 Apr 2025 09:01:03 +0000
Manifest this update: Sun 27 Apr 2025 09:01:03 +0000
Manifest next update: Mon 28 Apr 2025 09:01:03 +0000
Files and hashes: 1: 6QBVEiLusjnuHnwecVMK9Kg-WII.roa (hash: OapSvDTUmzDRZu9Q3KlIrLgI0CjCfgxrem8xot5UiSo=)
2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: m6dasJWvENFxC5VNZhSUEJpi+71wC/FefoHjZ1DAlgM=)
3: GiC40GdnPgHbIqIbDNeP-spJi-M.roa (hash: Xd4LHWf6P2V0nuixtM1f8JXOI9EnPVM3k32pXeFOXiw=)
4: JeT3PicL3j6wpeXRT3s8FrJpy3w.roa (hash: tjXOPJYxlFtc8BfVkznJC0Nu37PcV0Dt33rxJApZ9kY=)
5: L5lOWtMXwmLYho3Arxcpd76R5sw.roa (hash: XM0Za1PmkukhwAWipMkx42usukTFibdWlbabSAWWgH4=)
6: Lwic0o2gw3k82wpfSkPa-wUg5Aw.roa (hash: pZ1a8TMxYqDEEa657nYARi2g7u3tXGj01SXvh3eUl1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:88:4a:f5:d6:7c:99:9b:38:52:4c:3a:b5:b9:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Apr 27 09:01:03 2025 GMT
Not After : Apr 28 09:01:03 2025 GMT
Subject: CN=d74acf424888aec05ca8de207c7f794021acec1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e9:79:29:d3:7d:90:0e:e1:c0:5a:87:db:bc:
8e:e6:fb:e1:0c:86:07:d7:6a:1b:72:80:56:e3:43:
35:d0:f7:cf:cd:f9:a5:92:32:0f:50:9d:a2:ea:8f:
92:53:fc:32:be:b4:e6:c5:08:25:87:1b:75:8c:3d:
bd:02:81:77:c8:33:84:c6:80:66:20:7f:e4:e0:ae:
aa:d1:d0:fe:ea:d6:68:71:ef:5e:e4:cd:8a:2f:4d:
36:2e:c2:2a:4e:e7:8d:cb:ad:fa:c5:41:dd:ba:9d:
5c:f7:00:10:56:6b:3a:12:01:56:e1:5b:e7:7b:52:
0e:e2:6d:90:f5:13:80:44:74:6d:28:e7:86:cf:a4:
16:e4:d7:39:13:02:b9:6e:0c:e9:d8:fa:81:37:86:
fe:80:00:9d:8a:0f:97:67:c2:20:a6:7b:e6:59:5e:
87:54:68:fa:c6:41:ef:04:80:3c:b5:77:96:f4:4a:
25:1a:a5:f0:14:43:a3:64:f4:b0:c6:18:72:4c:45:
1d:3a:2f:fb:ea:fd:b8:8b:59:69:9a:8f:e1:01:5b:
b6:9e:c0:96:c3:43:30:2a:f1:41:47:94:aa:0d:46:
4b:57:4e:fc:3c:ec:4b:d5:0f:ad:47:45:01:39:47:
59:80:25:58:49:00:40:d4:2c:ef:6e:96:e8:58:5f:
6f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:4A:CF:42:48:88:AE:C0:5C:A8:DE:20:7C:7F:79:40:21:AC:EC:1D
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:16:0b:72:3c:69:ba:d6:47:ca:be:6b:15:fc:ed:01:73:c2:
30:25:e5:b8:b2:43:18:f7:ab:aa:13:2e:02:9f:6d:e6:53:22:
a4:e2:f3:30:6b:d3:43:4d:a1:d1:f4:c2:62:b3:61:2f:98:fe:
46:d5:b6:fe:95:81:e7:cb:81:02:5f:9f:ad:10:58:49:2e:3f:
0b:a5:92:f6:06:f2:12:e6:94:bb:38:ca:12:e5:10:fe:a7:54:
0d:3c:bc:0b:e9:1b:54:bc:f4:25:66:f5:e4:70:5f:de:0a:81:
9b:89:62:2e:a1:ae:fc:0d:ae:4e:a1:30:f0:06:7f:47:8e:ed:
60:70:fb:92:58:b5:ce:f0:e5:44:e8:cb:38:dd:1c:0b:fa:2f:
c4:df:00:6b:b0:95:27:cd:f4:32:eb:bf:9c:25:0c:98:a9:71:
7d:5d:00:25:95:a5:60:35:47:e8:5a:e0:0e:0f:67:b0:d9:8f:
ab:90:0b:32:af:8e:fe:db:27:09:dc:71:21:32:4d:01:b2:58:
e3:0b:5a:60:4a:a5:1c:38:ba:ae:96:96:5d:bf:d4:8c:e2:16:
08:ff:5e:a6:8f:1b:7f:e2:45:2c:af:4d:0f:97:95:3d:ee:c3:
14:74:a1:a8:d6:ed:3b:ac:66:43:d3:f8:08:3c:d5:de:b6:89:
cc:69:6a:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:24:05 2025 by rpki-client