Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
File: ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft (raw, json)
Hash identifier: JRwUIKyYsGix1NmQrlER+Q566umHBupk1PtfBBEFVMA=
Subject key identifier: CD:B2:32:3A:CD:B4:92:4A:1F:1A:E8:D3:C0:57:35:18:28:3F:68:25
Authority key identifier: AE:E1:D3:A4:25:ED:BD:9D:8A:DA:D0:41:06:AB:12:D7:C7:6A:C1:32
Certificate issuer: /CN=aee1d3a425edbd9d8adad04106ab12d7c76ac132
Certificate serial: 01963688B21118A64995C1A9D1EA8E33E6E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
Manifest number: 02CA
Signing time: Mon 14 Apr 2025 23:00:50 +0000
Manifest this update: Mon 14 Apr 2025 23:00:50 +0000
Manifest next update: Tue 15 Apr 2025 23:00:50 +0000
Files and hashes: 1: Y8bxmFfpWoR5ksX0Qq13ZOagVPo.roa (hash: C0DVCgE5f6/2s7WXTWOG0D5IiTtwmNwV6icT5/Rn4Qg=)
2: ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl (hash: jbBwotiWOrP3swn9M+XqXniFY1B/gvkLKXXeWw/IeVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:36:88:b2:11:18:a6:49:95:c1:a9:d1:ea:8e:33:e6:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee1d3a425edbd9d8adad04106ab12d7c76ac132
Validity
Not Before: Apr 14 23:00:50 2025 GMT
Not After : Apr 15 23:00:50 2025 GMT
Subject: CN=cdb2323acdb4924a1f1ae8d3c0573518283f6825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:59:20:fa:40:bd:01:1d:88:1d:0d:b3:22:d7:
72:40:68:46:7a:42:77:bc:c2:05:74:ad:9c:25:ed:
07:a7:08:90:d0:fb:d1:00:3e:da:b1:48:d4:aa:20:
6c:b6:24:46:4f:a2:6a:7a:b6:77:31:43:6e:61:41:
d0:ca:ae:a8:52:f5:34:4f:03:15:dd:c5:4c:69:aa:
8a:6c:b2:e2:88:5f:51:d5:f6:e4:2d:30:7a:c1:39:
52:e0:75:ae:d7:4e:64:86:2f:3a:5a:a0:08:7f:6a:
cf:a9:2b:e3:1f:d6:16:27:5b:4f:78:cd:bc:60:38:
b6:d2:d1:9a:dc:79:bc:3c:3a:52:5b:50:37:a5:e0:
8d:62:25:c1:8a:b8:cd:0a:bc:c3:88:09:3f:88:e2:
92:ac:32:9b:d9:da:4c:1b:5c:fa:36:19:33:1e:e0:
ab:d1:a6:a6:0e:17:98:22:0f:89:91:1a:c3:c7:ee:
42:66:e7:6d:dd:87:2a:02:e5:1b:7f:1d:f2:ef:d9:
aa:8d:c9:ab:e5:d8:a2:00:6e:7b:bf:8d:55:2f:16:
69:09:3f:5d:3d:fc:5e:62:21:c8:0a:96:0a:7c:48:
da:bc:e1:0f:80:69:d7:77:77:82:0e:37:a6:b4:88:
c9:5d:2e:cb:e6:ff:93:ef:96:34:8d:ad:f0:9f:44:
a8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B2:32:3A:CD:B4:92:4A:1F:1A:E8:D3:C0:57:35:18:28:3F:68:25
X509v3 Authority Key Identifier:
keyid:AE:E1:D3:A4:25:ED:BD:9D:8A:DA:D0:41:06:AB:12:D7:C7:6A:C1:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:3c:b9:a3:67:fc:db:e2:e5:f7:55:aa:88:5d:eb:3f:63:a8:
8b:91:65:4b:4f:c7:64:d1:36:b2:44:13:47:54:c6:2f:50:56:
cf:1b:e4:d3:ac:d5:81:7d:3d:2e:4d:76:91:cb:9c:44:5e:73:
e7:62:85:84:7f:09:ff:74:a2:c2:2e:27:9a:8a:f8:d4:50:8d:
88:08:d7:d2:87:8c:d8:11:80:45:14:eb:15:76:a2:67:c9:a3:
1a:f3:3f:ce:2c:ce:fa:27:18:53:f7:7c:99:14:35:8f:ae:f2:
22:3b:41:76:62:72:c8:db:c3:3e:e7:89:fb:81:d1:ae:b5:c9:
ed:41:ae:0b:0e:6a:d6:9f:7d:c3:93:ba:99:15:88:66:b7:ff:
73:a3:c1:cc:55:33:33:23:d1:3d:89:79:49:2f:52:c0:c8:dd:
a2:bb:5c:14:6b:77:17:fb:f6:97:f7:e3:76:98:9a:34:7d:5a:
85:8f:27:1e:3c:8c:9a:0b:d7:f7:46:0d:1b:67:19:36:87:91:
2c:ca:53:94:e7:2e:57:7a:9e:5f:1f:67:53:26:ff:1a:3e:4c:
d6:0b:c2:e7:a2:8e:15:1f:b6:6a:3b:48:38:31:01:5b:24:c4:
5b:a6:6e:fe:e9:dd:66:57:26:e7:99:84:fc:92:e8:a6:77:31:
c1:c6:50:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY2iLIRGKZJlcGp0eqOM+bpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlZTFkM2E0MjVlZGJkOWQ4YWRhZDA0MTA2YWIxMmQ3Yzc2
YWMxMzIwHhcNMjUwNDE0MjMwMDUwWhcNMjUwNDE1MjMwMDUwWjAzMTEwLwYDVQQD
EyhjZGIyMzIzYWNkYjQ5MjRhMWYxYWU4ZDNjMDU3MzUxODI4M2Y2ODI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1kg+kC9AR2IHQ2zItdyQGhGekJ3
vMIFdK2cJe0HpwiQ0PvRAD7asUjUqiBstiRGT6JqerZ3MUNuYUHQyq6oUvU0TwMV
3cVMaaqKbLLiiF9R1fbkLTB6wTlS4HWu105khi86WqAIf2rPqSvjH9YWJ1tPeM28
YDi20tGa3Hm8PDpSW1A3peCNYiXBirjNCrzDiAk/iOKSrDKb2dpMG1z6NhkzHuCr
0aamDheYIg+JkRrDx+5CZudt3YcqAuUbfx3y79mqjcmr5diiAG57v41VLxZpCT9d
PfxeYiHICpYKfEjavOEPgGnXd3eCDjemtIjJXS7L5v+T75Y0ja3wn0SoIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM2yMjrNtJJKHxro08BXNRgoP2glMB8GA1UdIwQY
MBaAFK7h06Ql7b2ditrQQQarEtfHasEyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnVIVHBDWHR2WjJLMnRCQkJxc1MxOGRxd1RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9hY2E0YWQtMWRmMC00Nzk3LTlhOTAt
ZmJlNWZkY2YwZWQzLzEvcnVIVHBDWHR2WjJLMnRCQkJxc1MxOGRxd1RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi9hY2E0YWQtMWRmMC00Nzk3LTlhOTAtZmJlNWZkY2YwZWQz
LzEvcnVIVHBDWHR2WjJLMnRCQkJxc1MxOGRxd1RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASjy5o2f8
2+Ll91WqiF3rP2Ooi5FlS0/HZNE2skQTR1TGL1BWzxvk06zVgX09Lk12kcucRF5z
52KFhH8J/3Siwi4nmor41FCNiAjX0oeM2BGARRTrFXaiZ8mjGvM/zizO+icYU/d8
mRQ1j67yIjtBdmJyyNvDPueJ+4HRrrXJ7UGuCw5q1p99w5O6mRWIZrf/c6PBzFUz
MyPRPYl5SS9SwMjdortcFGt3F/v2l/fjdpiaNH1ahY8nHjyMmgvX90YNG2cZNoeR
LMpTlOcuV3qeXx9nUyb/Gj5M1gvC56KOFR+2ajtIODEBWyTEW6Zu/undZlcm55mE
/JLopncxwcZQDQ==
-----END CERTIFICATE-----
Generated at Tue Apr 15 04:45:50 2025 by rpki-client