Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft
File: AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft (raw, json)
Hash identifier: I2GEwFnbgcbI1S5lenVX31vX2ogEaebclOAN+mzMG9w=
Subject key identifier: B9:2A:E3:59:6E:D7:81:C4:36:86:EB:BB:F0:BE:65:B0:53:2A:7F:9F
Authority key identifier: 00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
Certificate issuer: /CN=0007534eb77caa836f8f118630164e0236e5fe86
Certificate serial: 01951135129273F8C7FB3CF55136C49F8B94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft
Manifest number: 0984
Signing time: Mon 17 Feb 2025 00:00:45 +0000
Manifest this update: Mon 17 Feb 2025 00:00:45 +0000
Manifest next update: Tue 18 Feb 2025 00:00:45 +0000
Files and hashes: 1: 7elRG4gqnvY-kvee5EC-ljUx8zc.roa (hash: EBapcQW4LSNex4n/3b9OtP2KhuUXB5IUoQf2KZKkJ6Q=)
2: AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl (hash: 9mkA1g6o82X1VjU5C4fjDhNRpTsXRmsWMHbeqlWWlxA=)
3: GAzN8JgljKfA3A30CpTpB9I-ljg.roa (hash: rKanLHq74yk8hIMHAP3lf3yTM47zrxq0k/XrA6g5TqI=)
4: KlGeCuL83ckpFDxEzckjMn7_6RE.roa (hash: sQSDNJGP0PRAc42NznmCEsFt8+XssPeUkQMlKcFGyeg=)
5: cI0Z3sLe1xjrCwyg19NbzVWgf58.roa (hash: RgqBJJ2OAbbh0xonFH0+36oQyNXiwKW4rTJMbCMMDzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:12:92:73:f8:c7:fb:3c:f5:51:36:c4:9f:8b:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0007534eb77caa836f8f118630164e0236e5fe86
Validity
Not Before: Feb 17 00:00:45 2025 GMT
Not After : Feb 18 00:00:45 2025 GMT
Subject: CN=b92ae3596ed781c43686ebbbf0be65b0532a7f9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e7:e9:74:d1:bf:f5:1b:a0:b9:55:24:8d:a8:
a6:d6:44:07:92:83:4a:e1:80:cb:34:1e:38:1a:23:
7e:e0:3f:70:ef:c0:d9:37:e3:72:99:51:d3:f3:9b:
a4:df:56:b7:02:b1:39:1f:a9:bc:78:00:38:31:81:
24:4c:69:af:b4:e1:22:fc:60:75:2f:ea:a1:54:ab:
fc:55:ac:21:36:76:d7:89:d5:f2:7c:e0:05:4f:cf:
f3:b0:9c:b6:f8:ed:ca:1e:ab:98:04:cc:a7:3d:c7:
f8:66:08:f5:3a:90:5d:17:0f:fa:aa:ad:d1:21:03:
d4:a0:52:c0:3e:34:ad:47:16:5b:f6:29:32:dd:3c:
aa:05:6b:50:e1:4d:a5:08:f5:29:58:08:87:e8:58:
23:7a:7e:84:40:71:5d:7e:02:72:52:c9:eb:aa:5e:
ff:a1:b0:9e:02:34:8c:f0:5f:70:81:5f:76:42:f0:
9a:45:94:05:2f:b2:ff:d1:92:bb:8c:61:03:08:39:
16:5d:66:d4:24:b7:0a:f9:e1:4a:59:df:bd:0d:95:
bf:1a:42:88:ee:5d:c8:59:0e:72:90:40:26:68:e4:
1f:88:ce:f2:c8:18:42:9f:16:fc:90:f1:be:5e:f6:
1c:45:bc:21:ca:e3:30:49:bc:d2:d8:da:0c:8a:9c:
2e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:2A:E3:59:6E:D7:81:C4:36:86:EB:BB:F0:BE:65:B0:53:2A:7F:9F
X509v3 Authority Key Identifier:
keyid:00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:a9:be:29:f9:19:f1:b8:9a:a5:f9:24:5f:85:3d:e9:74:57:
a5:e2:af:52:a2:63:d7:5b:c8:b5:6e:fb:84:4a:02:7c:3c:73:
d3:0c:61:8a:c0:42:87:83:ae:f6:57:68:0a:53:93:b5:39:5c:
fe:4a:45:09:09:8f:6b:e7:1e:fb:7a:39:2c:de:b5:64:45:40:
d8:87:30:53:9b:6d:40:f8:e1:15:31:46:9c:5a:22:d5:b4:9a:
07:26:b1:c8:88:40:a6:86:61:01:1e:89:9a:d7:49:d1:83:a5:
07:ae:1f:f2:6c:74:2a:a0:7e:19:d4:22:35:7d:fb:ce:90:1b:
cf:14:d5:5e:56:b3:90:07:c2:16:35:15:c8:66:53:0b:6b:e5:
62:60:03:c0:7a:84:c5:43:a3:c9:f2:d1:e3:f3:38:d0:94:c7:
2a:eb:06:8c:56:ea:84:21:90:d4:6b:df:6d:e1:ef:67:58:00:
2f:db:ee:77:10:75:95:31:b3:ea:2f:09:18:ec:d9:eb:b2:d3:
a4:c4:1d:0f:fa:eb:ba:d8:53:1e:80:0e:ea:13:8b:aa:64:e2:
2d:e7:f0:52:d3:b8:50:eb:a2:f0:7d:a5:f5:46:e7:fd:59:d8:
bc:a3:f6:18:82:b3:a3:53:7e:eb:3c:0e:f2:f7:f9:85:ef:af:
da:96:1b:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURNRKSc/jH+zz1UTbEn4uUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwMDc1MzRlYjc3Y2FhODM2ZjhmMTE4NjMwMTY0ZTAyMzZl
NWZlODYwHhcNMjUwMjE3MDAwMDQ1WhcNMjUwMjE4MDAwMDQ1WjAzMTEwLwYDVQQD
EyhiOTJhZTM1OTZlZDc4MWM0MzY4NmViYmJmMGJlNjViMDUzMmE3ZjlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyufpdNG/9RuguVUkjaim1kQHkoNK
4YDLNB44GiN+4D9w78DZN+NymVHT85uk31a3ArE5H6m8eAA4MYEkTGmvtOEi/GB1
L+qhVKv8VawhNnbXidXyfOAFT8/zsJy2+O3KHquYBMynPcf4Zgj1OpBdFw/6qq3R
IQPUoFLAPjStRxZb9iky3TyqBWtQ4U2lCPUpWAiH6Fgjen6EQHFdfgJyUsnrql7/
obCeAjSM8F9wgV92QvCaRZQFL7L/0ZK7jGEDCDkWXWbUJLcK+eFKWd+9DZW/GkKI
7l3IWQ5ykEAmaOQfiM7yyBhCnxb8kPG+XvYcRbwhyuMwSbzS2NoMipwuvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLkq41lu14HENobru/C+ZbBTKn+fMB8GA1UdIwQY
MBaAFAAHU063fKqDb48RhjAWTgI25f6GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUFkVFRyZDhxb052anhHR01CWk9BamJsX29ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi80MWU5MGMtNjFjYy00NzBjLWEzODgt
NmQxYzliMTUzY2YwLzEvQUFkVFRyZDhxb052anhHR01CWk9BamJsX29ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi80MWU5MGMtNjFjYy00NzBjLWEzODgtNmQxYzliMTUzY2Yw
LzEvQUFkVFRyZDhxb052anhHR01CWk9BamJsX29ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY6m+KfkZ
8biapfkkX4U96XRXpeKvUqJj11vItW77hEoCfDxz0wxhisBCh4Ou9ldoClOTtTlc
/kpFCQmPa+ce+3o5LN61ZEVA2IcwU5ttQPjhFTFGnFoi1bSaByaxyIhApoZhAR6J
mtdJ0YOlB64f8mx0KqB+GdQiNX37zpAbzxTVXlazkAfCFjUVyGZTC2vlYmADwHqE
xUOjyfLR4/M40JTHKusGjFbqhCGQ1GvfbeHvZ1gAL9vudxB1lTGz6i8JGOzZ67LT
pMQdD/rruthTHoAO6hOLqmTiLefwUtO4UOui8H2l9Ubn/VnYvKP2GIKzo1N+6zwO
8vf5he+v2pYbKw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:41 2025 by rpki-client