Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
File: AA0P7izVZpZcoI21UGY8sgtBI0M.mft (raw, json)
Hash identifier: nncHl6bMKRuEhBepr5Rs36A+7zwUCqpi1bFcBOmiV6A=
Subject key identifier: B6:4E:A2:88:25:9C:54:93:39:63:A5:5E:BA:0E:10:59:3B:80:70:90
Authority key identifier: 00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
Certificate issuer: /CN=000d0fee2cd566965ca08db550663cb20b412343
Certificate serial: 01965424D0750ECC20584CD74E0D5492883A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
Manifest number: 0AC8
Signing time: Sun 20 Apr 2025 17:00:20 +0000
Manifest this update: Sun 20 Apr 2025 17:00:20 +0000
Manifest next update: Mon 21 Apr 2025 17:00:20 +0000
Files and hashes: 1: AA0P7izVZpZcoI21UGY8sgtBI0M.crl (hash: VgUdXOaWJ91TBaSc7mN5OXz8U813Zhze2zRZb5hIHcM=)
2: c2eVtCtVjsi6i3vPHgLATuNVfoM.roa (hash: tozwRqmwgoJZSoOdc4bKHZ1xB9xQYRcf64jJhmtl4S4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:24:d0:75:0e:cc:20:58:4c:d7:4e:0d:54:92:88:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000d0fee2cd566965ca08db550663cb20b412343
Validity
Not Before: Apr 20 17:00:20 2025 GMT
Not After : Apr 21 17:00:20 2025 GMT
Subject: CN=b64ea288259c54933963a55eba0e10593b807090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f3:42:78:ca:1c:fb:be:b2:6a:e8:d0:77:e7:
04:fc:3f:c7:f2:0d:a0:ba:9f:99:06:af:84:93:b6:
ea:c0:b1:2d:7c:14:1c:22:0c:ec:c4:1d:52:49:b9:
56:13:8e:7a:f2:ef:4e:2a:b6:b1:66:0f:fc:0c:fb:
27:43:4f:cd:6a:1b:15:5d:40:b8:fd:80:55:9a:02:
ce:65:cd:e8:b7:07:52:d7:3f:68:1c:20:d7:4d:bf:
1c:e0:f0:98:d5:97:0e:df:49:0c:b1:0d:68:45:89:
e8:1e:17:00:f3:98:2c:81:e4:41:6a:c6:45:05:65:
fe:08:43:ed:9c:9c:f9:bd:e3:40:80:5b:2f:c2:b1:
6e:41:3b:1b:e7:7e:00:9e:77:86:fa:b0:f9:c3:0a:
b8:c5:8e:b5:92:15:35:79:8a:81:53:3c:a9:51:43:
d6:1e:6d:93:64:4b:e5:41:cb:45:8a:8a:75:e8:9c:
12:c3:23:cc:fb:2e:0d:4d:fa:9c:aa:32:4a:53:0b:
58:bc:1f:6b:07:19:da:d3:06:c8:e8:47:2d:c4:3b:
cc:32:15:4c:ac:23:63:4d:4b:4f:89:ce:c7:ee:aa:
8e:9b:25:a0:34:2f:96:03:87:33:29:a8:ef:86:ea:
a4:bf:5e:c5:38:49:18:3f:1b:f3:51:de:bf:f3:80:
44:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:4E:A2:88:25:9C:54:93:39:63:A5:5E:BA:0E:10:59:3B:80:70:90
X509v3 Authority Key Identifier:
keyid:00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:2c:a6:10:9e:5b:9c:86:23:07:ce:2e:f5:53:ee:19:fc:26:
20:bd:3c:b9:03:c7:9d:e7:4a:a3:95:37:ea:f7:b5:97:64:9a:
74:52:9e:81:ea:85:91:c4:41:e8:23:26:d3:a6:13:c6:35:ac:
ab:88:5e:a2:65:a3:a2:6d:a8:88:d5:57:20:3d:66:ce:b2:67:
e7:dd:6a:cb:e9:15:fa:50:57:a0:63:b1:5f:1c:f8:ee:9c:ef:
59:00:04:14:ea:f7:28:54:84:0a:61:2c:7a:15:87:de:12:54:
63:d3:4d:b1:fa:21:18:27:aa:50:32:6e:71:3c:81:9c:c9:3f:
97:d7:af:06:4c:c7:4f:64:32:f4:0f:d4:e9:fe:7a:a4:fd:18:
50:dd:f5:40:c8:b9:3a:12:90:54:16:3e:eb:d4:02:93:d4:25:
76:3b:6c:b1:8d:21:fc:86:94:ef:9c:9f:6e:5d:21:25:89:27:
75:f9:ee:8c:b7:d9:60:f3:7b:a4:6e:4c:f7:2a:e7:44:f9:99:
d4:95:8b:b9:63:26:e1:4b:9f:48:ec:c9:a0:99:50:e1:19:dc:
ff:8a:bd:b9:0a:a5:2f:79:69:c2:8d:32:fa:58:1c:c3:fb:1c:
b7:c5:4a:00:08:16:ee:b2:54:53:75:c7:50:11:89:a1:f9:96:
92:19:59:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZUJNB1DswgWEzXTg1Ukog6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwMGQwZmVlMmNkNTY2OTY1Y2EwOGRiNTUwNjYzY2IyMGI0
MTIzNDMwHhcNMjUwNDIwMTcwMDIwWhcNMjUwNDIxMTcwMDIwWjAzMTEwLwYDVQQD
EyhiNjRlYTI4ODI1OWM1NDkzMzk2M2E1NWViYTBlMTA1OTNiODA3MDkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPNCeMoc+76yaujQd+cE/D/H8g2g
up+ZBq+Ek7bqwLEtfBQcIgzsxB1SSblWE4568u9OKraxZg/8DPsnQ0/NahsVXUC4
/YBVmgLOZc3otwdS1z9oHCDXTb8c4PCY1ZcO30kMsQ1oRYnoHhcA85gsgeRBasZF
BWX+CEPtnJz5veNAgFsvwrFuQTsb534AnneG+rD5wwq4xY61khU1eYqBUzypUUPW
Hm2TZEvlQctFiop16JwSwyPM+y4NTfqcqjJKUwtYvB9rBxna0wbI6EctxDvMMhVM
rCNjTUtPic7H7qqOmyWgNC+WA4czKajvhuqkv17FOEkYPxvzUd6/84BEawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLZOooglnFSTOWOlXroOEFk7gHCQMB8GA1UdIwQY
MBaAFAAND+4s1WaWXKCNtVBmPLILQSNDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUEwUDdpelZacFpjb0kyMVVHWThzZ3RCSTBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9lNmZlMDktYzIyZC00NWI3LWE1OTkt
Yjk0MWJhOTIxYjNmLzEvQUEwUDdpelZacFpjb0kyMVVHWThzZ3RCSTBNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9lNmZlMDktYzIyZC00NWI3LWE1OTktYjk0MWJhOTIxYjNm
LzEvQUEwUDdpelZacFpjb0kyMVVHWThzZ3RCSTBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGSymEJ5b
nIYjB84u9VPuGfwmIL08uQPHnedKo5U36ve1l2SadFKegeqFkcRB6CMm06YTxjWs
q4heomWjom2oiNVXID1mzrJn591qy+kV+lBXoGOxXxz47pzvWQAEFOr3KFSECmEs
ehWH3hJUY9NNsfohGCeqUDJucTyBnMk/l9evBkzHT2Qy9A/U6f56pP0YUN31QMi5
OhKQVBY+69QCk9QldjtssY0h/IaU75yfbl0hJYkndfnujLfZYPN7pG5M9yrnRPmZ
1JWLuWMm4UufSOzJoJlQ4Rnc/4q9uQqlL3lpwo0y+lgcw/sct8VKAAgW7rJUU3XH
UBGJofmWkhlZ+Q==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:29:13 2025 by rpki-client