Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json)
Hash identifier: en2cgz/AK3nyOhaKjOSllmnDRTpejlNilA2qG8ijOso=
Subject key identifier: 10:3D:AB:A8:1C:30:30:D9:6E:11:E6:1A:E6:B8:77:16:6D:92:6B:1B
Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Certificate serial: 01964F6D55AC7CC85039F1BA5BE1BB3204D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
Manifest number: 07A0
Signing time: Sat 19 Apr 2025 19:01:27 +0000
Manifest this update: Sat 19 Apr 2025 19:01:27 +0000
Manifest next update: Sun 20 Apr 2025 19:01:27 +0000
Files and hashes: 1: 1YtqoFQLtfGDiVmHDelz4DRg3EU.roa (hash: IK9E4boh47Pzwtuw3Las8hTZNUl+rwA5t6hlkkr2bx4=)
2: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: qfGWT8qNF8mPGpO/nEw+x2mmF908EHem97zCghl6b1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6d:55:ac:7c:c8:50:39:f1:ba:5b:e1:bb:32:04:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755
Validity
Not Before: Apr 19 19:01:27 2025 GMT
Not After : Apr 20 19:01:27 2025 GMT
Subject: CN=103daba81c3030d96e11e61ae6b877166d926b1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:f1:10:49:87:d9:f1:0d:d1:fd:61:e9:f6:a7:
cb:6e:21:39:9a:e5:e8:23:08:ad:55:eb:fc:bd:7d:
6d:eb:ab:a1:2e:1d:6c:69:dc:25:95:e8:66:08:8e:
1c:0e:06:f5:fd:c8:4e:79:70:f4:59:56:72:71:e5:
44:c2:a7:38:a5:3e:dd:27:4d:d5:f9:39:58:38:e3:
be:1d:13:1d:1b:dc:20:bd:95:20:e7:24:06:ad:54:
9b:46:64:32:67:9d:d3:88:64:8d:dc:43:e2:f5:99:
81:f4:cb:b5:21:30:67:32:d3:d0:57:63:59:3f:50:
9d:24:8f:7f:14:de:b2:fa:1e:9b:38:6c:10:50:90:
9d:d9:e0:21:cd:f3:72:44:8a:bb:7e:08:ba:0d:d7:
99:46:56:c6:30:fc:e7:18:4b:b4:23:76:6d:d9:84:
97:29:04:ef:e5:0d:ac:eb:d3:0b:68:16:34:69:80:
cc:11:01:7c:86:ff:83:ae:8e:f1:a3:49:80:3a:65:
12:a6:90:81:f0:77:a0:6a:66:aa:26:0a:91:03:2a:
62:ca:e2:51:3c:4a:ec:4a:4e:29:6b:b7:79:aa:c2:
bd:8e:1a:eb:3b:df:85:fb:ed:cc:83:56:49:b4:23:
b9:f7:78:05:65:db:d9:9b:41:c4:15:7f:7b:a0:f2:
dc:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:3D:AB:A8:1C:30:30:D9:6E:11:E6:1A:E6:B8:77:16:6D:92:6B:1B
X509v3 Authority Key Identifier:
keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:32:18:c9:0c:9a:b9:67:cb:20:38:81:cf:79:30:c7:5b:51:
91:cc:1a:1f:4b:65:e4:93:41:60:95:7c:59:91:15:98:a6:0c:
32:bd:08:3a:22:17:d2:71:ae:81:04:4c:73:f2:e1:86:b4:5a:
b9:70:4a:e2:c7:9b:94:7c:cf:be:42:83:55:ef:13:9a:6f:f4:
ce:20:f6:9d:29:fa:ac:f0:3e:2a:15:d0:be:99:0b:2c:db:1c:
c0:a6:da:96:15:ea:81:45:e5:82:7a:b8:7b:a3:5f:43:25:65:
87:19:37:7e:63:5b:2b:24:1d:ab:6c:0d:24:aa:6a:c0:db:ce:
d4:8b:ab:dd:75:3e:1c:08:eb:a1:57:fd:40:ae:3e:db:7f:d6:
d6:d4:5e:69:d1:19:8d:7f:26:3d:0b:bd:75:c9:02:d9:ad:76:
f0:9e:87:c1:69:1d:d2:49:e3:ff:04:d2:7d:0c:9f:25:29:7e:
d7:72:88:fd:24:b4:16:9b:96:13:63:3d:fa:22:5b:7c:8c:2b:
4b:12:0a:34:00:3d:4a:30:36:72:c5:57:00:17:29:f3:5e:dc:
94:a7:3d:18:46:5f:8e:6f:28:1b:f2:fa:e9:89:29:1a:e5:41:
db:aa:32:c6:8d:20:56:19:f8:4c:a2:b4:63:02:e1:0f:01:c4:
65:bb:6b:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZPbVWsfMhQOfG6W+G7MgTXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxYTg1ZWNlMmM1MzlmNTg1MGZhNzAxZjJkNDVhMjEyN2Rj
ODY3NTUwHhcNMjUwNDE5MTkwMTI3WhcNMjUwNDIwMTkwMTI3WjAzMTEwLwYDVQQD
EygxMDNkYWJhODFjMzAzMGQ5NmUxMWU2MWFlNmI4NzcxNjZkOTI2YjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9PEQSYfZ8Q3R/WHp9qfLbiE5muXo
IwitVev8vX1t66uhLh1sadwllehmCI4cDgb1/chOeXD0WVZyceVEwqc4pT7dJ03V
+TlYOOO+HRMdG9wgvZUg5yQGrVSbRmQyZ53TiGSN3EPi9ZmB9Mu1ITBnMtPQV2NZ
P1CdJI9/FN6y+h6bOGwQUJCd2eAhzfNyRIq7fgi6DdeZRlbGMPznGEu0I3Zt2YSX
KQTv5Q2s69MLaBY0aYDMEQF8hv+Dro7xo0mAOmUSppCB8HegamaqJgqRAypiyuJR
PErsSk4pa7d5qsK9jhrrO9+F++3Mg1ZJtCO593gFZdvZm0HEFX97oPLcMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBA9q6gcMDDZbhHmGua4dxZtkmsbMB8GA1UdIwQY
MBaAFAGoXs4sU59YUPpwHy1FohJ9yGdVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy80M2E5MWMtM2FhYy00OTVjLTgwODEt
NzUyYTQ1YzMyZGZmLzEvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy80M2E5MWMtM2FhYy00OTVjLTgwODEtNzUyYTQ1YzMyZGZm
LzEvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgDIYyQya
uWfLIDiBz3kwx1tRkcwaH0tl5JNBYJV8WZEVmKYMMr0IOiIX0nGugQRMc/LhhrRa
uXBK4seblHzPvkKDVe8Tmm/0ziD2nSn6rPA+KhXQvpkLLNscwKbalhXqgUXlgnq4
e6NfQyVlhxk3fmNbKyQdq2wNJKpqwNvO1Iur3XU+HAjroVf9QK4+23/W1tReadEZ
jX8mPQu9dckC2a128J6HwWkd0knj/wTSfQyfJSl+13KI/SS0FpuWE2M9+iJbfIwr
SxIKNAA9SjA2csVXABcp817clKc9GEZfjm8oG/L66YkpGuVB26oyxo0gVhn4TKK0
YwLhDwHEZbtr2A==
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:09:36 2025 by rpki-client