Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json)
Hash identifier: vIsf4o5ctrvRWhtaSmg9plhMhtGsL/Sbg9OEs+BvJY4=
Subject key identifier: 17:E7:26:53:89:00:90:D0:A5:CE:F5:3F:0A:0C:D8:66:22:A3:E7:C8
Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69
Certificate serial: 01958BF244E4E161A81CEF7DD7D725CF16B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
Manifest number: 04D3
Signing time: Wed 12 Mar 2025 20:01:05 +0000
Manifest this update: Wed 12 Mar 2025 20:01:05 +0000
Manifest next update: Thu 13 Mar 2025 20:01:05 +0000
Files and hashes: 1: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: ngTzuFPMErMj465/+q+znzX4Hq9gy/4KZoDkc2AC73I=)
2: hnTM8e9DDp88O_jCAHz8InVW_vE.roa (hash: 8skhoEZiI2jfYQ4DDQgvqEaBRoMspiQzmuxF61YcMEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:f2:44:e4:e1:61:a8:1c:ef:7d:d7:d7:25:cf:16:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69
Validity
Not Before: Mar 12 20:01:05 2025 GMT
Not After : Mar 13 20:01:05 2025 GMT
Subject: CN=17e72653890090d0a5cef53f0a0cd86622a3e7c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:71:b2:6d:05:d7:7a:c7:e5:ff:57:90:7c:b1:
45:9a:c4:04:23:d9:5b:5f:f7:6b:a8:b5:4d:76:58:
33:71:80:11:7d:20:34:9a:ff:be:23:04:62:f1:0b:
ed:92:cb:c6:61:48:0e:44:f3:c2:b6:f6:9e:0f:5f:
00:7f:84:49:9e:9d:f5:2a:7b:7c:17:47:be:b6:24:
00:e7:38:a8:98:9d:37:b6:e0:ae:db:88:f6:ef:ba:
a2:df:62:b0:fd:6d:53:3e:90:85:55:fe:f4:af:8b:
cc:5f:8b:4b:3f:83:7f:8c:45:d2:fe:0f:fd:22:21:
42:24:ed:00:00:19:2d:4e:82:bc:2b:c3:70:dc:63:
24:74:ac:be:ef:d1:c2:c2:c8:62:0d:d7:58:08:6a:
8b:4a:1a:26:6c:d5:56:ac:57:39:b7:48:b3:a3:86:
f4:3e:7c:59:76:b9:ab:4e:e6:5f:ac:b3:da:6a:40:
b6:43:94:21:57:7c:18:e8:89:c5:7e:53:b2:a2:4f:
2e:44:9d:ba:9a:8a:70:9d:a7:f4:1a:5f:21:00:5a:
d2:9b:67:09:25:e5:65:2d:28:fc:2c:f8:ca:4f:29:
99:97:80:2a:6e:5e:22:d6:75:78:50:d3:4c:bd:19:
dc:39:34:2e:63:17:c1:92:f0:de:94:1a:e2:3b:7d:
a5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E7:26:53:89:00:90:D0:A5:CE:F5:3F:0A:0C:D8:66:22:A3:E7:C8
X509v3 Authority Key Identifier:
keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:f3:52:95:d4:5e:a6:c3:1f:60:1b:3e:3e:33:bc:af:78:3d:
1d:3c:11:32:f3:cd:c6:4c:00:4b:dd:c2:d6:2f:67:28:75:2b:
22:3e:b6:ae:3e:33:19:bb:9b:4b:6e:0a:f3:b6:b6:f0:a8:84:
e4:33:66:b0:74:a6:6f:a1:5d:b2:c9:16:54:03:ef:3b:8b:2e:
ed:e8:02:e6:4f:25:f8:35:7f:a6:93:23:ec:52:7a:7d:dd:f3:
96:c4:f4:6b:ab:50:5c:82:b0:4c:11:26:48:cc:1d:31:d6:43:
d9:ce:b8:de:92:6e:29:2d:2d:f5:b6:8e:c9:c3:76:37:8c:9c:
7b:a0:c2:ee:08:04:f7:ce:1d:66:a8:fd:0e:f2:55:4c:3a:95:
18:98:bb:da:34:79:64:f0:17:69:dc:c5:00:74:58:9a:57:dd:
96:f2:34:10:42:ac:37:d2:13:2c:d0:b2:46:e6:1a:32:bd:dc:
50:4f:5e:67:a0:af:fb:60:39:ed:f5:66:10:ad:7a:67:43:86:
f6:43:0e:0c:9e:5b:c5:b6:ab:de:38:2e:7a:08:c7:54:51:83:
02:85:55:bf:37:7f:83:f8:1b:e5:0f:01:68:fc:ab:63:2a:20:
75:3a:2c:00:97:af:c9:a3:77:af:97:82:97:71:f7:e0:2c:6e:
04:1d:94:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWL8kTk4WGoHO9919clzxa3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5NWRjZTVlMzdhODYyNTM4YTBmNjY4ODNkZTIwNmZmYjdj
OTNiNjkwHhcNMjUwMzEyMjAwMTA1WhcNMjUwMzEzMjAwMTA1WjAzMTEwLwYDVQQD
EygxN2U3MjY1Mzg5MDA5MGQwYTVjZWY1M2YwYTBjZDg2NjIyYTNlN2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3GybQXXesfl/1eQfLFFmsQEI9lb
X/drqLVNdlgzcYARfSA0mv++IwRi8QvtksvGYUgORPPCtvaeD18Af4RJnp31Knt8
F0e+tiQA5ziomJ03tuCu24j277qi32Kw/W1TPpCFVf70r4vMX4tLP4N/jEXS/g/9
IiFCJO0AABktToK8K8Nw3GMkdKy+79HCwshiDddYCGqLShombNVWrFc5t0izo4b0
PnxZdrmrTuZfrLPaakC2Q5QhV3wY6InFflOyok8uRJ26mopwnaf0Gl8hAFrSm2cJ
JeVlLSj8LPjKTymZl4Aqbl4i1nV4UNNMvRncOTQuYxfBkvDelBriO32lcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBfnJlOJAJDQpc71PwoM2GYio+fIMB8GA1UdIwQY
MBaAFGldzl43qGJTig9miD3iBv+3yTtpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWIt
MDE3ZGVlNDUyZWM0LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWItMDE3ZGVlNDUyZWM0
LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAePNSldRe
psMfYBs+PjO8r3g9HTwRMvPNxkwAS93C1i9nKHUrIj62rj4zGbubS24K87a28KiE
5DNmsHSmb6FdsskWVAPvO4su7egC5k8l+DV/ppMj7FJ6fd3zlsT0a6tQXIKwTBEm
SMwdMdZD2c643pJuKS0t9baOycN2N4yce6DC7ggE984dZqj9DvJVTDqVGJi72jR5
ZPAXadzFAHRYmlfdlvI0EEKsN9ITLNCyRuYaMr3cUE9eZ6Cv+2A57fVmEK16Z0OG
9kMODJ5bxbar3jguegjHVFGDAoVVvzd/g/gb5Q8BaPyrYyogdTosAJevyaN3r5eC
l3H34CxuBB2UdQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:21:35 2025 by rpki-client