Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
File: AOLDNzGtylfcwzsvuCM_wDiwlek.mft (raw, json)
Hash identifier: oDWFQG1ZqUKTs7c0ZoLacAOB3lEiLZ24rjmCS1RvLxU=
Subject key identifier: B2:9D:53:51:11:5C:6D:16:08:1D:74:0D:53:FA:65:7D:C7:C4:C6:75
Authority key identifier: 00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
Certificate issuer: /CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Certificate serial: 01976961544E0E8D9080F9CE394E3E5C1522
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
Manifest number: 10CB
Signing time: Fri 13 Jun 2025 13:01:15 +0000
Manifest this update: Fri 13 Jun 2025 13:01:15 +0000
Manifest next update: Sat 14 Jun 2025 13:01:15 +0000
Files and hashes: 1: AOLDNzGtylfcwzsvuCM_wDiwlek.crl (hash: QiFSQmHZrzje1OyekZGuj4Dx7c4VnQcfAbN4eeUIqQ4=)
2: lx4r-_of66D7nj4_JxEX4B7iGSo.roa (hash: nBmUpTvMg37xBiu7Iw7rIz0CmSBaScYekCzZq9oCvAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:54:4e:0e:8d:90:80:f9:ce:39:4e:3e:5c:15:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e2c33731adca57dcc33b2fb8233fc038b095e9
Validity
Not Before: Jun 13 13:01:15 2025 GMT
Not After : Jun 14 13:01:15 2025 GMT
Subject: CN=b29d5351115c6d16081d740d53fa657dc7c4c675
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:70:a7:0c:af:81:e3:c9:e8:c0:f8:4e:94:f4:
b3:e8:ac:49:ec:6a:a8:8b:ec:ae:35:00:09:5a:b7:
d3:eb:0c:5a:3c:9a:92:36:60:1f:7a:03:27:b2:59:
dd:fb:2d:b5:42:ba:0e:1e:91:2c:2c:c7:95:3e:2d:
92:3c:ca:e1:eb:ed:ea:4d:10:17:51:9d:c1:3f:f9:
e0:bb:3a:c5:cb:89:63:a9:0b:b3:8e:10:6a:e0:16:
36:51:5c:68:ed:f1:e2:81:71:1f:06:e1:39:5f:71:
91:ec:28:2c:b5:26:46:89:0b:8e:b6:28:e5:75:e5:
07:a5:5d:dd:ac:d5:c8:4f:0f:36:74:a7:2f:25:a3:
07:f9:9f:7c:ef:1a:42:92:be:78:e5:6a:08:27:21:
d4:34:eb:a6:b2:d5:63:5d:76:f3:65:9e:51:a4:d2:
a3:fe:09:9b:68:cb:28:3e:f0:68:6b:15:6d:81:9a:
19:d8:13:39:83:90:9b:81:b2:96:fa:cc:2f:b2:03:
8f:6c:c9:5a:ab:c2:eb:12:21:aa:0b:c8:5b:8f:40:
68:79:6f:a6:7b:10:99:b6:c7:98:fa:6c:ad:d8:22:
00:70:e0:3e:bb:f2:63:a7:53:0d:8d:cd:be:7f:c4:
0d:d2:71:01:84:eb:6a:c6:d0:0e:03:f8:5e:98:54:
57:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9D:53:51:11:5C:6D:16:08:1D:74:0D:53:FA:65:7D:C7:C4:C6:75
X509v3 Authority Key Identifier:
keyid:00:E2:C3:37:31:AD:CA:57:DC:C3:3B:2F:B8:23:3F:C0:38:B0:95:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOLDNzGtylfcwzsvuCM_wDiwlek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/9d5feb-beda-4147-9d83-c9ad37f94cd7/1/AOLDNzGtylfcwzsvuCM_wDiwlek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:ef:fb:a9:b6:ed:d8:60:ca:8f:67:a4:49:52:71:29:62:00:
b2:14:fc:f2:ba:4d:2c:13:20:02:5c:27:43:6a:c8:cb:70:cd:
d0:c0:af:df:d3:0b:3b:d2:e4:97:95:e3:3f:39:03:5d:16:1b:
2f:bc:ab:76:95:a8:26:4e:7e:5d:b7:10:47:62:62:8d:74:0e:
7d:62:44:3a:6d:35:01:59:aa:14:be:a5:39:fe:06:57:aa:f3:
7a:6d:a5:7b:be:ce:90:d0:e4:0f:73:96:a0:fc:27:e0:60:c2:
23:a1:33:8e:a2:8d:09:05:31:b5:53:19:30:e3:6e:48:49:99:
a4:4e:c4:bc:61:c1:f1:19:0b:ab:bd:a2:b9:9c:ab:b9:81:60:
0f:c9:7a:c8:c6:b1:21:4f:9c:38:00:11:c3:1e:0d:7f:91:88:
d2:0d:51:1b:c2:85:62:85:29:f2:ab:21:97:e0:2a:50:47:ff:
1b:1d:e8:a0:b8:4c:56:c7:c5:56:58:f8:00:8b:12:dc:ef:e7:
cf:15:84:35:b0:e2:56:4a:ac:75:9d:a5:d9:57:2a:f7:a7:af:
57:83:d1:c4:c0:14:55:9b:48:f4:d0:72:72:4f:c8:a4:21:76:
fb:9c:8b:6c:11:68:95:28:e6:e3:43:4b:dc:d4:66:9d:9f:b1:
3c:eb:7b:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:31:58 2025 by rpki-client