Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
File: aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft (raw, json)
Hash identifier: oAEzfKsTqHh+y4SAba4iVDpOEMUEcEGHxUKQG7TuC6Y=
Subject key identifier: D2:60:47:FD:F1:56:79:60:82:70:7F:90:21:ED:95:61:B3:EB:64:30
Authority key identifier: 68:E0:78:B5:18:1B:E5:FB:E9:14:B4:12:A4:12:09:6B:C8:D7:15:49
Certificate issuer: /CN=68e078b5181be5fbe914b412a412096bc8d71549
Certificate serial: 019655DD1BD6C6A724399CB3B99BEB7BB23E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
Manifest number: 1500
Signing time: Mon 21 Apr 2025 01:01:15 +0000
Manifest this update: Mon 21 Apr 2025 01:01:15 +0000
Manifest next update: Tue 22 Apr 2025 01:01:15 +0000
Files and hashes: 1: IXwdyS86SbDEc5r6DTqF-yyMhKo.roa (hash: MHPw/G9JdYVbN864pG/b/kFkrvcqi5VhnKr+4T0l/48=)
2: aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl (hash: 5mG6OXUj+jjjawYeSDlklv6Mk2F78+lWp8XVApKDouA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dd:1b:d6:c6:a7:24:39:9c:b3:b9:9b:eb:7b:b2:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e078b5181be5fbe914b412a412096bc8d71549
Validity
Not Before: Apr 21 01:01:15 2025 GMT
Not After : Apr 22 01:01:15 2025 GMT
Subject: CN=d26047fdf156796082707f9021ed9561b3eb6430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:98:b9:95:d5:f0:a8:7c:61:5f:36:8e:70:34:
ca:31:ec:74:1e:fe:25:46:0e:d3:a1:5f:c5:43:8a:
06:09:c6:57:dc:ee:e9:84:10:a9:8d:49:c9:58:9a:
87:6d:2c:7d:08:b8:91:f6:90:43:c4:31:c9:ae:1c:
e6:cc:84:ed:c6:f8:59:0b:2e:fa:38:52:d5:dc:bc:
3a:1a:44:9a:df:69:37:54:f3:33:04:6f:c7:33:6a:
b9:42:60:be:d9:ed:b0:6b:8b:2a:6e:f5:d7:ed:ed:
94:1b:d6:ab:24:29:b2:d5:d3:a9:84:92:e8:38:e0:
b7:2e:d0:37:44:55:29:bf:b5:9e:96:00:7f:46:a7:
7a:7c:a1:68:21:70:46:b0:38:48:2b:26:51:d5:37:
b7:05:92:6e:8c:df:69:85:de:3e:89:69:91:2e:15:
57:ec:7b:f1:99:c8:8b:2d:e7:b4:a9:47:15:22:05:
57:cb:4c:a5:bc:89:e8:ed:e3:16:58:06:a0:e4:0f:
68:fd:1b:77:a9:33:0a:2b:83:e0:55:bb:fa:72:e2:
11:2c:5d:15:1e:13:ce:42:39:17:cd:ed:ae:fd:7a:
9f:94:a0:d2:c5:ef:dd:d2:6b:01:9a:54:99:b7:54:
1e:19:13:ff:df:d7:1c:08:ea:68:bd:a0:61:f4:3f:
12:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:60:47:FD:F1:56:79:60:82:70:7F:90:21:ED:95:61:B3:EB:64:30
X509v3 Authority Key Identifier:
keyid:68:E0:78:B5:18:1B:E5:FB:E9:14:B4:12:A4:12:09:6B:C8:D7:15:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:56:1f:dd:35:66:e0:ae:c3:d5:fa:4f:93:9d:ba:1d:ea:e4:
e9:0b:62:81:a2:01:e5:a3:6f:85:c8:4f:62:76:66:22:6b:ad:
f9:03:6d:1e:ae:76:fa:9c:e5:36:d0:89:d4:dd:54:c5:5d:d3:
36:de:9b:e1:1b:d9:2f:db:e8:a5:09:ad:a3:f4:08:18:ad:b2:
ef:2d:40:f8:bd:59:ef:44:38:05:b0:cd:84:f1:0a:10:bc:68:
c2:6b:37:58:7f:d6:25:04:29:86:2b:93:f7:32:b7:09:2f:db:
bd:0f:5b:00:53:ff:ce:8c:30:2b:28:35:b4:45:19:6d:48:41:
03:ae:3d:1a:50:da:71:99:60:e8:29:28:77:5d:bb:35:96:1f:
16:76:99:6e:ef:e5:77:fd:c9:f9:12:0a:70:58:dc:54:99:43:
af:40:d0:6c:fd:f1:e8:dd:35:2f:79:85:fc:26:28:97:6d:f4:
e5:f6:52:bf:f6:06:f3:de:b3:31:4b:c0:13:3b:7c:bf:27:94:
19:4e:18:78:7a:fb:f5:28:17:93:c3:5d:52:d2:3d:e1:56:c5:
79:85:8b:7d:8d:e8:87:3a:3c:24:20:18:12:12:4f:82:e4:eb:
e5:61:07:df:ef:95:ea:1c:c8:7a:9e:d5:15:34:6d:01:a4:83:
f9:25:cc:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZV3RvWxqckOZyzuZvre7I+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZTA3OGI1MTgxYmU1ZmJlOTE0YjQxMmE0MTIwOTZiYzhk
NzE1NDkwHhcNMjUwNDIxMDEwMTE1WhcNMjUwNDIyMDEwMTE1WjAzMTEwLwYDVQQD
EyhkMjYwNDdmZGYxNTY3OTYwODI3MDdmOTAyMWVkOTU2MWIzZWI2NDMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Zi5ldXwqHxhXzaOcDTKMex0Hv4l
Rg7ToV/FQ4oGCcZX3O7phBCpjUnJWJqHbSx9CLiR9pBDxDHJrhzmzITtxvhZCy76
OFLV3Lw6GkSa32k3VPMzBG/HM2q5QmC+2e2wa4sqbvXX7e2UG9arJCmy1dOphJLo
OOC3LtA3RFUpv7WelgB/Rqd6fKFoIXBGsDhIKyZR1Te3BZJujN9phd4+iWmRLhVX
7HvxmciLLee0qUcVIgVXy0ylvIno7eMWWAag5A9o/Rt3qTMKK4PgVbv6cuIRLF0V
HhPOQjkXze2u/XqflKDSxe/d0msBmlSZt1QeGRP/39ccCOpovaBh9D8ScQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNJgR/3xVnlggnB/kCHtlWGz62QwMB8GA1UdIwQY
MBaAFGjgeLUYG+X76RS0EqQSCWvI1xVJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU9CNHRSZ2I1ZnZwRkxRU3BCSUphOGpYRlVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8zMTM5ODgtNmYyMS00NTNlLThlZjQt
ZTY3MWQ5NGIwYTIwLzEvYU9CNHRSZ2I1ZnZwRkxRU3BCSUphOGpYRlVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny8zMTM5ODgtNmYyMS00NTNlLThlZjQtZTY3MWQ5NGIwYTIw
LzEvYU9CNHRSZ2I1ZnZwRkxRU3BCSUphOGpYRlVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt1Yf3TVm
4K7D1fpPk526Herk6QtigaIB5aNvhchPYnZmImut+QNtHq52+pzlNtCJ1N1UxV3T
Nt6b4RvZL9vopQmto/QIGK2y7y1A+L1Z70Q4BbDNhPEKELxowms3WH/WJQQphiuT
9zK3CS/bvQ9bAFP/zowwKyg1tEUZbUhBA649GlDacZlg6Ckod127NZYfFnaZbu/l
d/3J+RIKcFjcVJlDr0DQbP3x6N01L3mF/CYol2305fZSv/YG896zMUvAEzt8vyeU
GU4YeHr79SgXk8NdUtI94VbFeYWLfY3ohzo8JCAYEhJPguTr5WEH3++V6hzIep7V
FTRtAaSD+SXMpw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 04:45:36 2025 by rpki-client