Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
File: cG_6qbf85AgnGBpaoKzumaRmkVY.mft (raw, json)
Hash identifier: n8JmJeZaHq81/UhuHzmGIxWF9qt54euUHlhNOFM4JJc=
Subject key identifier: E4:42:A6:80:33:98:D0:E7:D9:45:E6:FC:18:D0:18:48:D9:9D:4D:74
Authority key identifier: 70:6F:FA:A9:B7:FC:E4:08:27:18:1A:5A:A0:AC:EE:99:A4:66:91:56
Certificate issuer: /CN=706ffaa9b7fce40827181a5aa0acee99a4669156
Certificate serial: 01963C8AB2913BC5B7002CD79ABCDA6549E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
Manifest number: 0A35
Signing time: Wed 16 Apr 2025 03:00:44 +0000
Manifest this update: Wed 16 Apr 2025 03:00:44 +0000
Manifest next update: Thu 17 Apr 2025 03:00:44 +0000
Files and hashes: 1: cG_6qbf85AgnGBpaoKzumaRmkVY.crl (hash: zXPLxwJgQEgMWQaF6pgSCnRTf6FUBXUNsc7LoU57SOo=)
2: wHLema0UGStCVJFXioCOp9yM9Yk.roa (hash: 9o2chTlhKcvV8PSsEOhRoW59X68c/vtOe1+mp0bUcck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3c:8a:b2:91:3b:c5:b7:00:2c:d7:9a:bc:da:65:49:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706ffaa9b7fce40827181a5aa0acee99a4669156
Validity
Not Before: Apr 16 03:00:44 2025 GMT
Not After : Apr 17 03:00:44 2025 GMT
Subject: CN=e442a6803398d0e7d945e6fc18d01848d99d4d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1f:fe:2c:c7:a1:95:6b:55:a3:28:49:5a:37:
ac:a4:7d:7a:db:a6:f6:68:33:c3:e8:cf:66:2c:b2:
d8:d9:a2:25:66:f6:76:3e:50:e6:f8:67:32:7b:72:
19:ac:27:e2:96:9c:a3:62:ae:4d:e7:f4:0b:51:03:
2e:f5:4a:98:39:69:22:95:50:35:51:1b:52:ec:f6:
c1:e0:c5:70:c8:c9:bc:e6:8a:74:b9:46:a9:02:78:
ec:b5:7a:f7:30:f4:d1:dd:52:26:f6:2f:dd:26:e4:
7d:cf:b2:55:09:bf:c9:c0:2d:27:d6:31:c1:c9:de:
7d:0d:3d:f3:ee:d4:b6:8e:7d:f3:33:c3:82:3b:50:
d4:1a:a0:25:f9:25:18:54:fe:ab:a6:46:0f:ff:4b:
d5:0c:c5:13:b8:9a:15:5a:ff:45:ae:64:c7:18:87:
84:8d:0f:e8:35:d2:ae:09:84:3e:84:24:e9:1b:d4:
56:4c:a9:b6:67:7f:44:19:6b:6d:4b:d2:41:bd:e9:
86:17:9c:b9:ad:1d:42:d2:7b:8e:62:fa:ea:6e:70:
ef:1d:0a:fa:e7:56:a5:4e:16:c8:01:e5:2d:13:b3:
e0:86:92:7b:5d:e8:af:bd:f2:ba:7d:d6:bb:28:0f:
6b:aa:ae:95:ba:00:33:dd:9f:df:c0:1d:52:0b:12:
2c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:42:A6:80:33:98:D0:E7:D9:45:E6:FC:18:D0:18:48:D9:9D:4D:74
X509v3 Authority Key Identifier:
keyid:70:6F:FA:A9:B7:FC:E4:08:27:18:1A:5A:A0:AC:EE:99:A4:66:91:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:38:bf:ec:2f:9e:9d:96:2a:44:57:b0:73:75:cf:ae:ea:74:
0b:3c:15:f9:48:62:ed:02:7a:23:89:84:14:a0:b2:73:09:61:
f4:9a:17:e1:a2:4a:b4:dc:ac:07:b3:b0:de:13:26:f5:aa:21:
7d:18:54:7e:5d:75:89:3e:7a:85:1c:71:92:c3:89:11:2d:3e:
b0:85:32:7e:96:4f:2e:4a:8c:fb:f2:0a:91:4a:b6:4b:50:2a:
d7:8f:92:ee:52:8f:9f:4f:64:b6:b5:83:c9:b4:3b:6f:c9:e1:
15:9b:34:3d:2a:5b:09:d1:e2:a0:f1:07:0b:13:03:07:84:76:
78:80:53:b1:47:5b:a6:f9:95:ac:bf:ce:c8:96:54:8e:cc:cb:
6a:ec:88:f7:09:f9:52:55:04:65:79:8a:88:c8:8f:ff:f3:74:
66:58:42:41:61:3f:da:66:57:b8:58:80:4f:5c:87:77:75:7d:
8c:50:9c:52:66:00:f7:9b:3a:e8:70:6e:3a:e1:0b:7a:67:40:
4e:67:da:e9:f2:ea:47:26:ce:3e:e8:a4:c2:9c:60:18:08:35:
33:0c:31:19:18:62:58:1c:ce:1a:ce:37:98:f3:69:9b:af:ae:
58:7b:94:2a:f4:4c:c7:4b:ef:b7:1f:98:30:be:ac:0b:b1:11:
8a:17:fe:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY8irKRO8W3ACzXmrzaZUnhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNmZmYWE5YjdmY2U0MDgyNzE4MWE1YWEwYWNlZTk5YTQ2
NjkxNTYwHhcNMjUwNDE2MDMwMDQ0WhcNMjUwNDE3MDMwMDQ0WjAzMTEwLwYDVQQD
EyhlNDQyYTY4MDMzOThkMGU3ZDk0NWU2ZmMxOGQwMTg0OGQ5OWQ0ZDc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArR/+LMehlWtVoyhJWjespH1626b2
aDPD6M9mLLLY2aIlZvZ2PlDm+Gcye3IZrCfilpyjYq5N5/QLUQMu9UqYOWkilVA1
URtS7PbB4MVwyMm85op0uUapAnjstXr3MPTR3VIm9i/dJuR9z7JVCb/JwC0n1jHB
yd59DT3z7tS2jn3zM8OCO1DUGqAl+SUYVP6rpkYP/0vVDMUTuJoVWv9FrmTHGIeE
jQ/oNdKuCYQ+hCTpG9RWTKm2Z39EGWttS9JBvemGF5y5rR1C0nuOYvrqbnDvHQr6
51alThbIAeUtE7PghpJ7XeivvfK6fda7KA9rqq6VugAz3Z/fwB1SCxIsSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFORCpoAzmNDn2UXm/BjQGEjZnU10MB8GA1UdIwQY
MBaAFHBv+qm3/OQIJxgaWqCs7pmkZpFWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0dfNnFiZjg1QWduR0JwYW9LenVtYVJta1ZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8yOTY3OGYtYzYwNS00NjU1LTkzNTkt
MTBmZWRjY2QyOTI0LzEvY0dfNnFiZjg1QWduR0JwYW9LenVtYVJta1ZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS8yOTY3OGYtYzYwNS00NjU1LTkzNTktMTBmZWRjY2QyOTI0
LzEvY0dfNnFiZjg1QWduR0JwYW9LenVtYVJta1ZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWzi/7C+e
nZYqRFewc3XPrup0CzwV+Uhi7QJ6I4mEFKCycwlh9JoX4aJKtNysB7Ow3hMm9aoh
fRhUfl11iT56hRxxksOJES0+sIUyfpZPLkqM+/IKkUq2S1Aq14+S7lKPn09ktrWD
ybQ7b8nhFZs0PSpbCdHioPEHCxMDB4R2eIBTsUdbpvmVrL/OyJZUjszLauyI9wn5
UlUEZXmKiMiP//N0ZlhCQWE/2mZXuFiAT1yHd3V9jFCcUmYA95s66HBuOuELemdA
Tmfa6fLqRybOPuikwpxgGAg1MwwxGRhiWBzOGs43mPNpm6+uWHuUKvRMx0vvtx+Y
ML6sC7ERihf+OA==
-----END CERTIFICATE-----
Generated at Wed Apr 16 09:12:25 2025 by rpki-client