Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
File: aKUCPY4CESaZfXkmpHcBYIqs48c.mft (raw, json)
Hash identifier: 3JzurfR1/tPgYQwbGbRgpeLIKj+/uoz62RRXqpleRMc=
Subject key identifier: B1:44:E2:C9:66:06:F4:EC:BF:AD:CD:89:85:DD:41:23:66:09:E1:FA
Authority key identifier: 68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
Certificate issuer: /CN=68a5023d8e021126997d7926a47701608aace3c7
Certificate serial: 019655A582D0B33CF2622C2C33D14AEF89AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
Manifest number: 066F
Signing time: Mon 21 Apr 2025 00:00:32 +0000
Manifest this update: Mon 21 Apr 2025 00:00:32 +0000
Manifest next update: Tue 22 Apr 2025 00:00:32 +0000
Files and hashes: 1: aKUCPY4CESaZfXkmpHcBYIqs48c.crl (hash: OzhYWw/i29021+OwAYBb8gyxSnvcKmabXj9HhZjvkos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:82:d0:b3:3c:f2:62:2c:2c:33:d1:4a:ef:89:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a5023d8e021126997d7926a47701608aace3c7
Validity
Not Before: Apr 21 00:00:32 2025 GMT
Not After : Apr 22 00:00:32 2025 GMT
Subject: CN=b144e2c96606f4ecbfadcd8985dd41236609e1fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d1:7b:b8:48:68:6d:96:53:1c:0f:f1:bc:2d:
e0:8a:cc:3b:51:9f:ed:9f:29:c7:9c:09:ee:dd:40:
72:03:29:20:de:33:a8:ac:3d:76:4f:cd:00:92:19:
a8:06:0f:97:2d:8d:20:10:26:e5:d4:b6:1a:15:b0:
ce:60:b8:e8:1d:a9:1f:a6:77:6a:43:6c:fa:f2:50:
66:29:9d:92:46:3e:81:8b:a8:c2:29:52:21:34:3b:
3d:63:ac:d0:0f:5a:42:5a:d0:fe:5b:d1:91:cb:e6:
6c:6b:8f:8d:34:c1:db:d1:c6:9c:70:5c:cd:31:cc:
bf:81:99:28:17:86:2b:87:50:29:a9:fb:d6:38:a0:
a7:f2:1d:a3:07:64:36:ef:d2:67:55:12:23:81:99:
dc:00:ce:72:3a:51:6a:d4:ab:1e:6e:a2:e9:52:09:
79:b4:e1:04:cc:fd:03:51:3d:c2:25:d2:d1:96:23:
6b:48:d0:f4:74:01:6b:bd:e7:74:50:a9:dd:89:7f:
bb:e1:88:6d:1c:37:3d:7c:63:7a:62:66:44:a1:d8:
fe:d8:8e:d1:e5:02:53:dc:18:2e:12:51:8b:c8:50:
4a:66:92:5a:a6:0e:15:21:01:34:39:c7:1a:fc:18:
c5:bc:7f:8a:c6:13:f8:13:7f:92:04:fe:0d:47:aa:
30:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:44:E2:C9:66:06:F4:EC:BF:AD:CD:89:85:DD:41:23:66:09:E1:FA
X509v3 Authority Key Identifier:
keyid:68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:f7:35:7e:e7:15:5f:6c:4a:90:3f:be:d5:ca:c5:a4:9e:23:
29:9f:0a:77:d9:11:31:f7:f6:9c:f5:43:b8:e1:6b:d2:62:61:
10:8c:ae:77:ea:4b:bc:76:86:d8:92:4d:fc:ce:b5:9a:de:cb:
89:11:2b:22:b2:53:b9:56:be:3b:7a:aa:7a:5e:47:2d:83:cb:
89:a3:7c:fa:cf:91:19:c5:24:3f:b4:ff:e6:64:fc:ea:9e:a1:
2c:e7:4e:7f:6a:58:0f:af:0a:c7:ff:36:c7:b3:8b:82:3e:05:
4d:39:0f:88:7b:6a:e3:60:5b:38:ab:27:77:6b:f4:12:b8:05:
b3:0b:19:b7:02:5b:a8:85:12:4d:c8:c5:93:72:67:32:3c:25:
6d:5f:6d:2e:89:7a:c9:07:25:2c:ac:51:b5:c7:56:07:19:b2:
ec:94:13:21:f1:61:f5:9a:1b:c8:96:be:0f:bf:52:35:0f:a7:
de:79:08:4f:6e:1a:28:0c:6c:08:3d:51:06:b7:9c:f7:48:41:
4c:6e:64:0d:3d:26:b5:cf:06:65:bd:8f:f6:70:6f:6b:26:57:
c9:9d:40:c1:4c:d3:e6:61:d1:cf:dc:14:9e:47:91:50:9c:b7:
4c:22:16:91:9b:4b:4c:6f:47:62:d5:88:9b:1c:32:30:cf:ce:
63:77:c8:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVpYLQszzyYiwsM9FK74mtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YTUwMjNkOGUwMjExMjY5OTdkNzkyNmE0NzcwMTYwOGFh
Y2UzYzcwHhcNMjUwNDIxMDAwMDMyWhcNMjUwNDIyMDAwMDMyWjAzMTEwLwYDVQQD
EyhiMTQ0ZTJjOTY2MDZmNGVjYmZhZGNkODk4NWRkNDEyMzY2MDllMWZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAptF7uEhobZZTHA/xvC3gisw7UZ/t
nynHnAnu3UByAykg3jOorD12T80AkhmoBg+XLY0gECbl1LYaFbDOYLjoHakfpndq
Q2z68lBmKZ2SRj6Bi6jCKVIhNDs9Y6zQD1pCWtD+W9GRy+Zsa4+NNMHb0caccFzN
Mcy/gZkoF4Yrh1ApqfvWOKCn8h2jB2Q279JnVRIjgZncAM5yOlFq1KsebqLpUgl5
tOEEzP0DUT3CJdLRliNrSND0dAFrved0UKndiX+74YhtHDc9fGN6YmZEodj+2I7R
5QJT3BguElGLyFBKZpJapg4VIQE0Occa/BjFvH+KxhP4E3+SBP4NR6ow4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLFE4slmBvTsv63NiYXdQSNmCeH6MB8GA1UdIwQY
MBaAFGilAj2OAhEmmX15JqR3AWCKrOPHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUtVQ1BZNENFU2FaZlhrbXBIY0JZSXFzNDhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84NjBiZWItMmVkYi00Y2UwLWE1NWUt
ODQ4MWU2YzMzZTNjLzEvYUtVQ1BZNENFU2FaZlhrbXBIY0JZSXFzNDhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84NjBiZWItMmVkYi00Y2UwLWE1NWUtODQ4MWU2YzMzZTNj
LzEvYUtVQ1BZNENFU2FaZlhrbXBIY0JZSXFzNDhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAffc1fucV
X2xKkD++1crFpJ4jKZ8Kd9kRMff2nPVDuOFr0mJhEIyud+pLvHaG2JJN/M61mt7L
iRErIrJTuVa+O3qqel5HLYPLiaN8+s+RGcUkP7T/5mT86p6hLOdOf2pYD68Kx/82
x7OLgj4FTTkPiHtq42BbOKsnd2v0ErgFswsZtwJbqIUSTcjFk3JnMjwlbV9tLol6
yQclLKxRtcdWBxmy7JQTIfFh9ZobyJa+D79SNQ+n3nkIT24aKAxsCD1RBrec90hB
TG5kDT0mtc8GZb2P9nBvayZXyZ1AwUzT5mHRz9wUnkeRUJy3TCIWkZtLTG9HYtWI
mxwyMM/OY3fI9g==
-----END CERTIFICATE-----
Generated at Mon Apr 21 06:35:45 2025 by rpki-client