Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.mft
File: aHmbdytVHbeE7rqLDhFaDEM807o.mft (raw, json)
Hash identifier: BLMVG2lCEZOxnNzvPfnq0EKyXmEjbAvXEFDxaEKCV2g=
Subject key identifier: F8:AA:CD:AD:7A:3A:93:BE:F9:AC:1C:78:3B:22:E8:08:F9:5D:98:7E
Authority key identifier: 68:79:9B:77:2B:55:1D:B7:84:EE:BA:8B:0E:11:5A:0C:43:3C:D3:BA
Certificate issuer: /CN=68799b772b551db784eeba8b0e115a0c433cd3ba
Certificate serial: 0196802219F739898942EC8820293CB51DB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHmbdytVHbeE7rqLDhFaDEM807o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.mft
Manifest number: 1516
Signing time: Tue 29 Apr 2025 06:00:40 +0000
Manifest this update: Tue 29 Apr 2025 06:00:40 +0000
Manifest next update: Wed 30 Apr 2025 06:00:40 +0000
Files and hashes: 1: QIpPOWuJUQR17x2KgabcF3hdBpY.roa (hash: DGCugI0Fd9+HXtUvL1bfCetCLc7iYLKfDAKTqy9sWJY=)
2: aHmbdytVHbeE7rqLDhFaDEM807o.crl (hash: T5R/FuMO9zLPTgGfNtNLZL0g3SXdxq4muJ1UBI+DDyQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHmbdytVHbeE7rqLDhFaDEM807o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:22:19:f7:39:89:89:42:ec:88:20:29:3c:b5:1d:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68799b772b551db784eeba8b0e115a0c433cd3ba
Validity
Not Before: Apr 29 06:00:40 2025 GMT
Not After : Apr 30 06:00:40 2025 GMT
Subject: CN=f8aacdad7a3a93bef9ac1c783b22e808f95d987e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:27:2a:03:2a:47:f0:b7:6e:22:83:be:64:42:
1a:ef:32:7e:b8:83:29:0d:65:11:23:a0:1f:2f:85:
80:15:c8:51:97:ca:89:ed:9e:da:15:90:f2:79:a7:
26:37:6a:fa:cf:60:c0:0b:07:bd:66:e6:27:df:73:
cf:83:27:8f:79:8a:59:d1:80:c5:c0:32:1a:4d:7d:
45:9c:fd:36:66:38:6c:58:37:d3:74:6d:f0:ef:96:
d0:de:23:40:40:30:e8:c3:83:33:e4:fd:93:ff:b8:
85:af:bf:69:a2:bc:7f:f8:77:42:bf:87:22:a8:14:
0b:30:8a:3b:a0:27:cf:b3:d6:31:45:53:83:fb:c6:
93:c0:7a:db:05:22:cd:aa:0f:d4:a3:7d:59:48:43:
eb:4e:1a:69:b8:91:85:c9:32:61:98:d4:2b:09:9b:
2a:22:3a:a3:2f:bb:cf:fa:f1:fc:cf:5a:26:fc:4b:
cf:2f:03:8d:bb:1c:e1:99:9b:ed:7f:b8:92:a1:a2:
d1:e4:50:e6:dc:d8:56:02:2d:a3:3e:2a:90:4d:85:
38:bc:29:a9:3b:45:07:ce:ad:b1:61:5b:6d:5a:fd:
08:b7:90:d4:bc:f4:79:09:9a:70:04:4d:35:a8:c5:
24:58:b6:a4:44:dc:0d:12:f0:bf:d5:cf:b0:f3:28:
23:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:AA:CD:AD:7A:3A:93:BE:F9:AC:1C:78:3B:22:E8:08:F9:5D:98:7E
X509v3 Authority Key Identifier:
keyid:68:79:9B:77:2B:55:1D:B7:84:EE:BA:8B:0E:11:5A:0C:43:3C:D3:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHmbdytVHbeE7rqLDhFaDEM807o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/962f2d-7282-421e-a631-0c76a316b52e/1/aHmbdytVHbeE7rqLDhFaDEM807o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:4d:90:56:8d:af:3a:ba:d5:74:4f:a8:e9:28:91:1d:5a:a0:
92:a0:c8:4b:a7:a3:c0:62:d3:70:d3:dc:04:90:cb:24:60:1c:
a3:2c:a2:d4:e2:11:6e:d1:03:cf:f7:b2:1c:ee:03:e6:6e:a6:
e1:2c:c5:aa:d6:cc:53:cf:8b:22:6b:69:47:02:7e:13:92:c1:
c4:91:b6:d9:df:83:65:cf:36:4c:7e:c1:14:a2:1b:91:47:ed:
fa:32:fb:a1:f9:e7:ae:8d:0d:50:41:09:ce:13:0b:7f:2d:64:
ba:c9:ba:52:ef:0c:de:4b:b1:88:66:de:3a:ef:7c:1b:e9:ac:
c4:c3:a4:ee:f9:7c:78:8d:b6:cb:44:1a:8b:1d:a1:9a:37:eb:
d1:a9:44:7e:2d:0d:d4:96:e8:dc:98:07:15:7b:a6:ec:4e:a1:
14:9c:87:ed:cb:6d:41:66:04:e1:71:53:0b:3b:65:8d:7c:49:
62:17:17:40:15:77:2a:f5:e4:ef:0c:34:09:aa:79:5d:dd:26:
fc:58:af:3a:57:af:42:89:ae:5d:2b:14:e1:b7:7e:39:16:93:
69:35:50:b9:0e:76:5f:57:69:54:02:04:c1:85:20:d4:a2:0c:
50:b6:3f:e7:99:e2:c1:38:e5:1c:8e:e5:2e:75:fc:f1:5f:17:
66:e7:a4:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 10:14:58 2025 by rpki-client