Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
File: r7ALKTlueAM-26yv75hQsbDjUyM.mft (raw, json)
Hash identifier: 2fLekdMc8/4uOnO7HHmpf46yHEi1BJHGkjSfD3S7DKc=
Subject key identifier: DD:69:88:F9:2D:E4:1D:D7:AB:58:B9:6C:B3:56:4B:41:00:9B:57:9E
Authority key identifier: AF:B0:0B:29:39:6E:78:03:3E:DB:AC:AF:EF:98:50:B1:B0:E3:53:23
Certificate issuer: /CN=afb00b29396e78033edbacafef9850b1b0e35323
Certificate serial: 0196892514BDD48BD9D72C996411DC9215BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
Manifest number: 0DC6
Signing time: Thu 01 May 2025 00:00:30 +0000
Manifest this update: Thu 01 May 2025 00:00:30 +0000
Manifest next update: Fri 02 May 2025 00:00:30 +0000
Files and hashes: 1: CY3YIBeeXy7d304leRk_84B6aOw.roa (hash: a5cqctkZKmbgtiXrSitwhHqbpFExqVK4hQecaTEUPK8=)
2: r7ALKTlueAM-26yv75hQsbDjUyM.crl (hash: LvQmQMzl/A8y1sHxzeDQJoV6Pm4DTyHh9zjIxwD0Sng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:25:14:bd:d4:8b:d9:d7:2c:99:64:11:dc:92:15:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afb00b29396e78033edbacafef9850b1b0e35323
Validity
Not Before: May 1 00:00:30 2025 GMT
Not After : May 2 00:00:30 2025 GMT
Subject: CN=dd6988f92de41dd7ab58b96cb3564b41009b579e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0f:2f:e0:71:bf:99:e8:66:c4:e6:b6:5d:97:
87:e7:65:e8:66:5b:fc:21:43:c9:6a:e9:ec:e4:d7:
fe:55:a5:2c:50:5a:26:a1:05:5f:ce:0f:cd:dd:83:
9c:67:69:a0:82:ce:ab:05:6a:c4:61:a8:42:cc:70:
21:06:5a:ba:26:76:4f:14:b8:d0:2b:8f:37:e7:b7:
49:d0:8b:1e:62:f0:eb:f9:31:b2:3a:ab:53:79:f7:
4b:a8:ec:3b:e7:b3:1d:5f:46:f8:0f:fd:25:73:4c:
01:96:56:a6:54:d0:a1:0e:80:8f:cd:ab:7b:ad:19:
d6:dc:80:67:6b:bb:e3:9a:d1:7a:39:54:87:51:f7:
f1:a0:e5:0a:4b:83:b8:66:10:84:46:fb:89:e2:f9:
85:8b:81:a2:bf:96:64:f6:1e:29:ce:5b:b7:4e:e8:
44:cf:4d:45:4f:cd:e4:5b:ac:4b:de:1e:4d:75:8a:
36:22:60:de:21:ac:1f:00:4d:92:a2:29:3c:61:81:
6e:67:93:25:1f:7b:ab:29:c6:71:f4:50:5c:74:76:
aa:53:31:b7:55:93:ae:8e:8b:28:ab:23:0c:3f:4e:
de:34:e2:89:01:c9:06:5b:50:0b:e9:77:b2:a0:5c:
9d:4a:72:70:44:1c:cb:c1:bf:27:29:6d:85:65:23:
73:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:69:88:F9:2D:E4:1D:D7:AB:58:B9:6C:B3:56:4B:41:00:9B:57:9E
X509v3 Authority Key Identifier:
keyid:AF:B0:0B:29:39:6E:78:03:3E:DB:AC:AF:EF:98:50:B1:B0:E3:53:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7ALKTlueAM-26yv75hQsbDjUyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/e4ca56-1386-432c-96cb-65a9a4dfad9e/1/r7ALKTlueAM-26yv75hQsbDjUyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:1e:4e:e0:57:fc:6e:97:19:0f:00:0b:54:09:9c:10:df:90:
4a:b3:bf:72:0f:01:0b:88:34:97:bd:8d:22:01:4b:88:0b:ee:
5b:1e:4e:14:67:eb:a5:2a:eb:5a:a7:1a:11:2c:0c:ca:fd:1b:
27:cd:41:31:fc:76:bc:cd:6c:62:24:00:0c:16:e4:ad:76:2e:
25:65:f8:32:30:a8:a7:50:6e:d0:44:78:83:51:f5:dc:6b:4c:
e0:96:9c:8c:22:78:5e:26:53:92:62:4e:16:40:69:84:b5:44:
5a:17:f6:d8:8f:ad:a9:9d:f1:93:51:b9:bc:ae:86:30:24:5c:
fe:cb:70:e5:f9:59:72:81:db:34:05:94:af:58:16:dd:24:72:
99:1f:db:b3:cc:c8:cc:e7:34:c6:2d:81:38:b5:29:3c:29:ac:
8b:13:b8:41:1d:df:db:af:86:2c:df:12:b8:27:0f:98:9f:29:
87:04:81:ad:62:90:f5:b5:f4:31:7a:8f:eb:fe:15:a9:2a:88:
b4:e0:21:31:9b:76:be:82:b6:ba:4e:a1:70:d3:69:77:33:a5:
6c:01:72:61:05:e8:3f:32:9f:e9:7a:8c:1c:d1:80:d4:25:af:
9b:5c:f0:4d:e2:5a:de:2f:21:11:0e:72:bb:60:b0:50:44:3f:
d1:83:c2:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 07:43:16 2025 by rpki-client