Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: j5kD+6cWQMHpajtxDeu3Bnipttb2GrzD5RdGTyU2NKM=
Subject key identifier: 49:3D:36:40:EA:7B:D5:B1:3C:2F:6D:01:3F:41:F1:94:3C:F1:10:A8
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 019753EB9F0042390B858424D11FDE4ED916
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 1581
Signing time: Mon 09 Jun 2025 09:00:39 +0000
Manifest this update: Mon 09 Jun 2025 09:00:39 +0000
Manifest next update: Tue 10 Jun 2025 09:00:39 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: nwsTFbfYS3BXaB8Uoyh0P2PMPsHjy9Da+rHTH5x8nLI=)
2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:eb:9f:00:42:39:0b:85:84:24:d1:1f:de:4e:d9:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Jun 9 09:00:39 2025 GMT
Not After : Jun 10 09:00:39 2025 GMT
Subject: CN=493d3640ea7bd5b13c2f6d013f41f1943cf110a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:45:b9:8f:a8:aa:b1:81:5f:79:5c:1c:2a:d0:
7b:dc:5c:72:82:02:9a:b9:90:d3:16:80:f7:3c:22:
79:b5:ae:91:be:23:40:57:ca:ed:48:2d:e0:6f:12:
d0:bc:37:a6:16:73:49:cd:c2:4e:38:58:5b:87:bf:
4f:51:ce:6f:9d:23:2f:12:40:fa:16:a6:b7:9e:26:
a8:32:76:01:35:17:67:0d:4b:d7:3c:3b:5b:90:77:
46:ca:0c:fb:5d:34:10:16:f3:88:f1:42:2a:7b:8c:
e6:13:19:82:a5:ed:ae:72:ca:4f:f4:dc:3b:a2:03:
9f:d6:73:0a:80:e8:5b:97:de:9c:2f:49:14:d0:83:
e0:69:a1:ad:79:de:10:e8:75:fa:65:ef:d4:22:f6:
eb:09:8b:8e:6b:19:5e:58:8b:52:90:a7:b5:b6:6c:
4c:b5:c4:8f:6b:9a:4c:57:c1:94:d6:2a:7a:5a:bc:
9b:a8:89:8f:6c:47:bf:fd:35:0f:02:93:97:e5:18:
75:5f:c4:55:48:f1:df:14:1d:8a:b2:4a:ac:92:5a:
5d:96:fc:ab:f5:8c:66:ef:5d:87:c1:b2:e4:37:f2:
f2:c9:f9:c7:64:c8:d7:e0:07:2b:30:fc:de:1c:2a:
df:81:d6:d2:f2:4d:ee:54:fb:25:76:ec:62:8c:16:
2f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3D:36:40:EA:7B:D5:B1:3C:2F:6D:01:3F:41:F1:94:3C:F1:10:A8
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:96:22:ed:68:4c:5c:fa:5a:13:02:39:cb:f1:e4:33:25:2f:
8a:fa:3a:75:0c:6e:f9:21:12:17:1a:71:2f:5a:f1:d5:7b:14:
72:de:2a:f5:92:57:3d:81:a6:76:01:88:65:8a:83:97:4c:3c:
d1:91:62:e6:70:97:0f:1e:e1:a6:a7:01:7c:84:ea:a6:c2:d4:
81:85:ce:3b:15:8d:68:b1:d8:c3:e8:d9:92:3c:6f:32:46:bb:
0b:70:6e:de:a4:88:b0:d0:5e:4e:5d:64:d5:5e:06:33:cf:2b:
c1:f2:04:dd:92:10:15:31:a6:29:10:20:8d:77:3c:db:69:a4:
78:06:8f:f4:6a:09:07:1d:86:23:34:1f:04:35:62:3a:36:1e:
b9:fe:67:2e:ea:98:42:76:e0:e6:cb:20:30:c3:62:4c:04:6b:
59:d9:2c:9e:5b:e2:59:d3:4d:8b:19:2b:90:23:81:c0:35:0b:
2e:59:9b:20:72:9c:0a:57:5d:55:39:a4:c3:4a:36:be:3b:4d:
f7:4e:5d:ae:e0:29:40:d0:76:6a:bd:1e:25:b1:e7:4a:b0:51:
68:ab:b8:3a:47:8a:7f:b4:cc:fb:f9:a0:0a:e1:96:41:31:fe:
3a:0d:5d:e4:d9:a4:2a:89:ad:06:b9:16:89:b4:b0:6a:63:b7:
fa:44:f8:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdT658AQjkLhYQk0R/eTtkWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyOTFkNGRlMTMwZGE2YWFjZTIyZWQ5OTY1MGJlMTgyNDk3
ZTBiY2YwHhcNMjUwNjA5MDkwMDM5WhcNMjUwNjEwMDkwMDM5WjAzMTEwLwYDVQQD
Eyg0OTNkMzY0MGVhN2JkNWIxM2MyZjZkMDEzZjQxZjE5NDNjZjExMGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0W5j6iqsYFfeVwcKtB73FxyggKa
uZDTFoD3PCJ5ta6RviNAV8rtSC3gbxLQvDemFnNJzcJOOFhbh79PUc5vnSMvEkD6
Fqa3niaoMnYBNRdnDUvXPDtbkHdGygz7XTQQFvOI8UIqe4zmExmCpe2ucspP9Nw7
ogOf1nMKgOhbl96cL0kU0IPgaaGted4Q6HX6Ze/UIvbrCYuOaxleWItSkKe1tmxM
tcSPa5pMV8GU1ip6WrybqImPbEe//TUPApOX5Rh1X8RVSPHfFB2Kskqsklpdlvyr
9Yxm712HwbLkN/LyyfnHZMjX4AcrMPzeHCrfgdbS8k3uVPslduxijBYvvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEk9NkDqe9WxPC9tAT9B8ZQ88RCoMB8GA1UdIwQY
MBaAFAKR1N4TDaaqziLtmWUL4YJJfgvPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQt
Nzc4MTY4MTA3N2Y3LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQtNzc4MTY4MTA3N2Y3
LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR5Yi7WhM
XPpaEwI5y/HkMyUvivo6dQxu+SESFxpxL1rx1XsUct4q9ZJXPYGmdgGIZYqDl0w8
0ZFi5nCXDx7hpqcBfITqpsLUgYXOOxWNaLHYw+jZkjxvMka7C3Bu3qSIsNBeTl1k
1V4GM88rwfIE3ZIQFTGmKRAgjXc822mkeAaP9GoJBx2GIzQfBDViOjYeuf5nLuqY
Qnbg5ssgMMNiTARrWdksnlviWdNNixkrkCOBwDULLlmbIHKcClddVTmkw0o2vjtN
905druApQNB2ar0eJbHnSrBRaKu4OkeKf7TM+/mgCuGWQTH+Og1d5NmkKomtBrkW
ibSwamO3+kT4tQ==
-----END CERTIFICATE-----
Generated at Mon Jun 9 14:37:03 2025 by rpki-client