Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
File: 70AaUuP95plIbplnjb9Ih1Mpwz0.mft (raw, json)
Hash identifier: x4liGioeAdE9V2v4oCp3h62alzO3bBnsbxpjBGqdgsI=
Subject key identifier: 01:84:62:19:1F:FF:AA:35:17:87:3B:3E:6B:C0:EA:A4:E0:E7:F1:63
Authority key identifier: EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
Certificate issuer: /CN=ef401a52e3fde699486e99678dbf48875329c33d
Certificate serial: 01963C1CBD48DB0BA4D6B2F3A5C8D729EA7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
Manifest number: 0C5C
Signing time: Wed 16 Apr 2025 01:00:38 +0000
Manifest this update: Wed 16 Apr 2025 01:00:38 +0000
Manifest next update: Thu 17 Apr 2025 01:00:38 +0000
Files and hashes: 1: 70AaUuP95plIbplnjb9Ih1Mpwz0.crl (hash: 1ccUVkeoZemp2R6S44SbXdxKs5tS/bJxJwEuA3KK6Ws=)
2: S4KhO_-8xzMvt1B6k_-GK_XNTGs.roa (hash: 298ot3rN9ux+k96S6A3kz+LkCwnTR/d/qtOX4jSeeqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3c:1c:bd:48:db:0b:a4:d6:b2:f3:a5:c8:d7:29:ea:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef401a52e3fde699486e99678dbf48875329c33d
Validity
Not Before: Apr 16 01:00:38 2025 GMT
Not After : Apr 17 01:00:38 2025 GMT
Subject: CN=018462191fffaa3517873b3e6bc0eaa4e0e7f163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:99:d1:51:38:df:a1:a2:0e:4a:03:c2:08:52:
dc:1b:f2:d3:80:c2:97:0c:77:dd:dc:b1:3c:ea:01:
85:63:e8:b4:9e:52:a1:2c:46:54:8a:03:26:6b:14:
e7:2d:d6:7c:a0:7a:62:2a:95:79:5f:14:94:29:89:
f6:a9:52:c0:52:6a:02:1e:d4:3d:f3:17:54:81:dd:
64:ec:f5:28:e4:5b:92:8d:e3:3e:e6:8b:86:a6:20:
77:13:95:59:e8:e4:5d:7e:b5:b4:21:5a:aa:46:29:
7e:14:ce:d2:df:27:97:1b:ca:a4:d0:a5:02:a9:a3:
21:4d:6a:9a:2a:0d:ad:5a:a9:b6:1b:60:50:44:2c:
f1:48:ae:fc:44:f3:ea:52:d0:d6:4b:91:45:af:d3:
2b:34:5d:5e:99:26:03:5c:8f:c6:ce:bd:6e:dd:99:
3d:a6:1e:2a:da:f7:79:b8:4f:e5:cc:02:14:8a:04:
68:71:53:c9:c3:58:0e:d0:53:40:92:92:03:df:4d:
37:fe:29:9e:73:e1:2b:ec:9c:f5:e6:d0:28:06:b9:
fe:55:71:31:72:76:51:df:d1:e0:12:c7:77:55:90:
2b:7c:09:26:c0:59:c6:6f:6a:51:66:53:63:2c:e3:
8d:5c:37:be:cd:f5:85:a9:d3:2d:1e:93:aa:18:cc:
2b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:84:62:19:1F:FF:AA:35:17:87:3B:3E:6B:C0:EA:A4:E0:E7:F1:63
X509v3 Authority Key Identifier:
keyid:EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:30:6e:41:6e:cb:ea:1d:57:17:36:ac:62:1a:2b:d0:de:1c:
d3:14:6b:3b:21:91:c9:71:d8:b8:29:cb:7c:24:c6:53:39:ab:
7e:82:ae:2c:e4:ea:38:2e:70:e8:99:26:e0:1e:96:45:9a:d4:
d8:e8:26:a6:df:c7:2f:3a:9b:d1:1c:52:90:38:d5:0d:0c:7b:
76:59:b6:b0:1d:6e:a5:86:ec:88:aa:5a:00:3b:d5:c1:65:28:
10:55:37:71:51:9f:62:94:dc:b7:9d:e8:c0:c9:2f:3f:89:f9:
9c:0e:aa:68:05:81:ae:65:a0:ed:52:99:4f:24:87:42:38:13:
15:d8:00:65:35:a2:5f:2b:5c:51:7c:67:82:af:81:82:52:20:
44:53:95:2a:85:e2:fa:4b:9b:08:ca:9c:05:ab:fa:80:36:f3:
eb:6f:31:c2:61:5c:31:28:d1:c2:2f:fc:2b:df:9a:23:a9:bc:
c1:c0:62:50:51:a2:b1:d6:1c:d9:de:b5:b4:9b:28:c9:20:da:
19:d3:18:6e:bc:f3:b1:c2:be:d4:c3:aa:bd:bb:ce:04:0c:7e:
31:37:e1:dd:14:bc:11:39:ef:de:ba:a4:19:92:54:b0:22:32:
a7:56:ec:fb:ad:09:aa:4b:c1:c6:4f:37:9e:02:fe:81:8c:53:
21:62:a5:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY8HL1I2wuk1rLzpcjXKep/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmNDAxYTUyZTNmZGU2OTk0ODZlOTk2NzhkYmY0ODg3NTMy
OWMzM2QwHhcNMjUwNDE2MDEwMDM4WhcNMjUwNDE3MDEwMDM4WjAzMTEwLwYDVQQD
EygwMTg0NjIxOTFmZmZhYTM1MTc4NzNiM2U2YmMwZWFhNGUwZTdmMTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5nRUTjfoaIOSgPCCFLcG/LTgMKX
DHfd3LE86gGFY+i0nlKhLEZUigMmaxTnLdZ8oHpiKpV5XxSUKYn2qVLAUmoCHtQ9
8xdUgd1k7PUo5FuSjeM+5ouGpiB3E5VZ6ORdfrW0IVqqRil+FM7S3yeXG8qk0KUC
qaMhTWqaKg2tWqm2G2BQRCzxSK78RPPqUtDWS5FFr9MrNF1emSYDXI/Gzr1u3Zk9
ph4q2vd5uE/lzAIUigRocVPJw1gO0FNAkpID3003/imec+Er7Jz15tAoBrn+VXEx
cnZR39HgEsd3VZArfAkmwFnGb2pRZlNjLOONXDe+zfWFqdMtHpOqGMwr/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAGEYhkf/6o1F4c7PmvA6qTg5/FjMB8GA1UdIwQY
MBaAFO9AGlLj/eaZSG6ZZ42/SIdTKcM9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzBBYVV1UDk1cGxJYnBsbmpiOUloMU1wd3owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy8yNTIzOGMtOGVlZS00NDAzLTkxMDQt
OWNhOTQ3YWE2NjVhLzEvNzBBYVV1UDk1cGxJYnBsbmpiOUloMU1wd3owLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy8yNTIzOGMtOGVlZS00NDAzLTkxMDQtOWNhOTQ3YWE2NjVh
LzEvNzBBYVV1UDk1cGxJYnBsbmpiOUloMU1wd3owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOjBuQW7L
6h1XFzasYhor0N4c0xRrOyGRyXHYuCnLfCTGUzmrfoKuLOTqOC5w6Jkm4B6WRZrU
2Ogmpt/HLzqb0RxSkDjVDQx7dlm2sB1upYbsiKpaADvVwWUoEFU3cVGfYpTct53o
wMkvP4n5nA6qaAWBrmWg7VKZTySHQjgTFdgAZTWiXytcUXxngq+BglIgRFOVKoXi
+kubCMqcBav6gDbz628xwmFcMSjRwi/8K9+aI6m8wcBiUFGisdYc2d61tJsoySDa
GdMYbrzzscK+1MOqvbvOBAx+MTfh3RS8ETnv3rqkGZJUsCIyp1bs+60JqkvBxk83
ngL+gYxTIWKlxA==
-----END CERTIFICATE-----
Generated at Wed Apr 16 06:46:23 2025 by rpki-client