Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
File: AOLDNzGtylfcwzsvuCM_wDiwlek.mft (raw, json)
Hash identifier: FrSmVLUZhHpBL4ipewQO3hmtOnMo36ZqPPmZisg3lf8=
Subject key identifier: 08:BA:4B:E9:FA:4F:ED:14:FA:14:BC:DF:F6:76:82:89:D9:6E:86:94
Authority key identifier: 00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
Certificate issuer: /CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Certificate serial: 01988168AE849240EC6A8944CF730E7C6790
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
Manifest number: 115C
Signing time: Wed 06 Aug 2025 22:02:57 +0000
Manifest this update: Wed 06 Aug 2025 22:02:57 +0000
Manifest next update: Thu 07 Aug 2025 22:02:57 +0000
Files and hashes: 1: AOLDNzGtylfcwzsvuCM_wDiwlek.crl (hash: uPdWo7acqPkjUjARHL/B+c1WDKzl9hhX9rKRlFwu6bc=)
2: lx4r-_of66D7nj4_JxEX4B7iGSo.roa (hash: nBmUpTvMg37xBiu7Iw7rIz0CmSBaScYekCzZq9oCvAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:68:ae:84:92:40:ec:6a:89:44:cf:73:0e:7c:67:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Validity
Not Before: Aug 6 22:02:57 2025 GMT
Not After : Aug 7 22:02:57 2025 GMT
Subject: CN=08ba4be9fa4fed14fa14bcdff6768289d96e8694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b2:be:22:b5:29:8f:1f:ce:48:19:db:86:21:
e6:15:90:71:7e:f1:ed:0a:35:e9:ff:9e:18:41:c5:
05:a1:39:a9:ba:63:72:be:02:f0:50:55:3a:0a:4a:
b8:23:c7:ac:c3:0c:82:2f:7b:e2:a9:66:8e:eb:0b:
c2:4e:bc:1b:6a:10:ed:b8:b0:8f:db:39:7f:9a:bc:
30:35:d9:5a:15:50:be:df:a5:58:91:cc:6a:e9:d7:
0a:41:a9:ce:43:8a:79:ea:4b:88:d0:ae:fe:fc:00:
1a:48:13:16:c9:9d:c3:90:1e:32:dc:e3:f7:45:81:
56:84:04:19:e4:d0:f5:cd:3b:65:b3:27:eb:10:11:
ab:39:26:cc:fc:48:ad:ed:b8:79:de:b1:fc:44:2c:
b5:98:94:11:e4:cb:94:dc:15:14:0c:2d:11:e5:7f:
ca:67:83:26:28:3a:f9:41:42:30:0a:03:90:bb:e1:
a2:e2:3e:5e:7f:00:f7:77:08:20:5a:38:a2:54:05:
53:6a:84:6c:3b:10:40:6a:6c:8c:c0:34:13:9d:f9:
18:95:06:5e:c1:c6:a7:8e:a0:71:fa:26:2a:7a:b5:
82:05:ef:da:20:22:d6:1b:43:97:72:0e:bd:e8:c8:
e3:62:a9:98:b3:84:ec:5e:5f:e1:c2:0e:2e:ff:92:
30:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:BA:4B:E9:FA:4F:ED:14:FA:14:BC:DF:F6:76:82:89:D9:6E:86:94
X509v3 Authority Key Identifier:
keyid:00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:03:eb:f2:a5:be:37:7f:b9:ea:33:84:e5:a1:4b:3e:b4:fa:
12:32:da:e9:b3:e8:4c:d1:50:23:1d:a0:c9:44:ee:4e:82:fd:
f8:01:35:62:bf:97:f3:96:98:3a:7c:0c:31:c3:fe:1f:95:b1:
46:08:c4:28:e8:f6:57:7e:27:b8:2d:cc:e4:ea:e0:0e:91:41:
f8:85:10:5d:b1:a8:6c:62:b0:65:3a:33:6d:96:dc:8c:02:c2:
2d:a5:5f:78:73:18:32:1d:e3:5a:f5:1d:12:bf:d4:81:70:79:
61:7c:0f:95:2c:26:21:3b:17:6b:f0:c6:51:70:23:2c:18:66:
05:14:f2:45:fa:77:c9:b0:59:e6:ce:9c:91:aa:3c:a9:90:a1:
11:fc:33:d3:22:76:b2:5c:bb:15:e3:1e:11:dc:6a:d9:4c:7e:
7d:8c:62:c6:fa:1c:08:7b:fb:98:5a:95:11:b1:d0:bd:4d:4c:
72:9b:22:fa:5e:a2:76:4d:99:ba:8d:e1:80:55:6a:3d:28:ea:
8e:2e:0f:b4:96:fd:20:ad:bb:f7:49:07:ee:ad:af:2b:61:2c:
74:6f:e2:e0:3b:c6:c2:96:03:a2:3a:f4:38:60:1b:d6:9d:46:
13:c9:9e:eb:00:43:df:6c:0b:65:7b:d0:4f:5d:84:22:1f:fc:
a5:ec:9d:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:25:21 2025 by rpki-client