Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json)
Hash identifier: hQ1ucnH/MTBgVTR8qtBoCihV3BFXFQB37HcAv84rsW4=
Subject key identifier: 36:46:01:20:FD:96:AF:E6:92:96:97:E7:AD:7D:2A:F3:26:80:29:F2
Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69
Certificate serial: 019652DB41B023493D9C08B727CBB0B5F522
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
Manifest number: 053A
Signing time: Sun 20 Apr 2025 11:00:22 +0000
Manifest this update: Sun 20 Apr 2025 11:00:22 +0000
Manifest next update: Mon 21 Apr 2025 11:00:22 +0000
Files and hashes: 1: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: aNUVpm7Zz66k79/1RGJ5T93vpnmMHQCksq0lQoNwcP4=)
2: hnTM8e9DDp88O_jCAHz8InVW_vE.roa (hash: 8skhoEZiI2jfYQ4DDQgvqEaBRoMspiQzmuxF61YcMEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:41:b0:23:49:3d:9c:08:b7:27:cb:b0:b5:f5:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69
Validity
Not Before: Apr 20 11:00:22 2025 GMT
Not After : Apr 21 11:00:22 2025 GMT
Subject: CN=36460120fd96afe6929697e7ad7d2af3268029f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5e:73:1e:09:4a:e5:72:13:16:1f:a3:8e:eb:
88:fe:c1:64:cb:11:e7:d6:99:14:9c:76:0b:f7:75:
72:c6:e4:1f:f8:46:fe:27:38:90:1d:3b:05:2c:57:
b1:18:d0:aa:9a:19:ea:17:1f:a2:27:71:72:2a:30:
d0:b8:ea:b6:d9:25:05:25:93:e5:2e:4b:ab:3a:5a:
35:7c:b6:06:cb:95:72:c2:c0:e9:5a:b2:fc:ff:22:
6d:0b:67:22:a3:07:6e:c9:da:b4:e9:21:40:b7:06:
48:e5:5a:38:40:b0:d2:f9:3e:f2:39:d8:ee:8b:95:
f3:7b:08:cc:72:d1:c8:60:5b:9b:95:c7:9d:39:37:
4b:ad:8c:b9:aa:2e:14:ba:43:1d:6a:f3:c3:37:ce:
ab:0f:17:36:9b:2a:f3:a7:9a:21:62:c6:03:40:17:
ac:a9:18:72:3d:10:d8:db:5e:65:e1:1a:2e:44:ce:
f7:96:f8:0f:ea:b5:6e:ee:6f:56:7e:3d:61:f3:be:
f5:64:1b:37:46:88:c6:16:30:2b:31:8d:2b:28:fc:
57:4c:f8:ff:15:cf:d8:9b:b9:6c:9c:a9:e3:fc:6f:
13:86:7c:29:1f:d8:55:ac:12:62:16:9a:cc:8a:f8:
44:90:af:5d:45:bf:7c:24:ea:50:96:67:38:9a:cb:
70:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:46:01:20:FD:96:AF:E6:92:96:97:E7:AD:7D:2A:F3:26:80:29:F2
X509v3 Authority Key Identifier:
keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:d7:df:33:17:70:9f:f6:f7:96:c4:8e:0d:02:dd:72:c4:1d:
10:28:3f:97:9a:c7:09:ec:72:12:a5:d6:e1:de:37:86:57:8c:
57:0f:b5:b7:8b:7b:7e:6b:05:7b:10:0b:68:f6:26:95:dc:97:
b0:bf:e0:02:21:67:b6:81:28:55:45:02:64:8c:e5:bd:21:4d:
7d:e9:c6:b8:df:81:a7:0b:f5:9b:72:7f:4c:58:11:ce:72:c0:
6e:01:93:81:a2:ae:e2:b8:cb:2d:84:95:2b:97:af:21:22:0e:
bb:fc:5b:06:54:16:1f:d7:b0:16:71:33:46:87:9a:89:8a:9c:
94:c4:cf:4f:32:d7:13:cb:a2:fe:cb:95:e1:6a:b9:20:aa:d4:
17:36:40:d5:aa:f0:59:74:20:fd:5d:5d:88:b5:9b:c0:b1:5f:
d9:19:29:52:b5:40:59:32:03:e6:67:fb:14:98:b5:e7:87:11:
b8:40:6a:d7:1d:1b:dd:2b:a2:ab:7c:13:88:55:49:31:2b:34:
e1:4c:e3:95:42:26:5e:c2:16:a5:f4:b6:ea:10:4f:b8:b4:7a:
ff:d6:d1:44:2e:de:4e:56:92:e7:9b:3e:62:9b:2d:be:8b:ff:
34:3b:05:4e:cb:07:9f:11:8d:2a:80:9d:b4:7c:6d:da:9e:95:
49:1a:52:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZS20GwI0k9nAi3J8uwtfUiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5NWRjZTVlMzdhODYyNTM4YTBmNjY4ODNkZTIwNmZmYjdj
OTNiNjkwHhcNMjUwNDIwMTEwMDIyWhcNMjUwNDIxMTEwMDIyWjAzMTEwLwYDVQQD
EygzNjQ2MDEyMGZkOTZhZmU2OTI5Njk3ZTdhZDdkMmFmMzI2ODAyOWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAql5zHglK5XITFh+jjuuI/sFkyxHn
1pkUnHYL93VyxuQf+Eb+JziQHTsFLFexGNCqmhnqFx+iJ3FyKjDQuOq22SUFJZPl
LkurOlo1fLYGy5VywsDpWrL8/yJtC2ciowduydq06SFAtwZI5Vo4QLDS+T7yOdju
i5XzewjMctHIYFublcedOTdLrYy5qi4UukMdavPDN86rDxc2myrzp5ohYsYDQBes
qRhyPRDY215l4RouRM73lvgP6rVu7m9Wfj1h8771ZBs3RojGFjArMY0rKPxXTPj/
Fc/Ym7lsnKnj/G8ThnwpH9hVrBJiFprMivhEkK9dRb98JOpQlmc4mstwZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDZGASD9lq/mkpaX5619KvMmgCnyMB8GA1UdIwQY
MBaAFGldzl43qGJTig9miD3iBv+3yTtpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWIt
MDE3ZGVlNDUyZWM0LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWItMDE3ZGVlNDUyZWM0
LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOtffMxdw
n/b3lsSODQLdcsQdECg/l5rHCexyEqXW4d43hleMVw+1t4t7fmsFexALaPYmldyX
sL/gAiFntoEoVUUCZIzlvSFNfenGuN+Bpwv1m3J/TFgRznLAbgGTgaKu4rjLLYSV
K5evISIOu/xbBlQWH9ewFnEzRoeaiYqclMTPTzLXE8ui/suV4Wq5IKrUFzZA1arw
WXQg/V1diLWbwLFf2RkpUrVAWTID5mf7FJi154cRuEBq1x0b3Suiq3wTiFVJMSs0
4UzjlUImXsIWpfS26hBPuLR6/9bRRC7eTlaS55s+Ypstvov/NDsFTssHnxGNKoCd
tHxt2p6VSRpS3A==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:18:32 2025 by rpki-client