Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
File: aH2bViukcmGPk5jiZcoOcQj2h6M.mft (raw, json)
Hash identifier: G7gud+8fWIA3tbSSh9vJqLLz7WAMfhFYeV6hwTQIKFE=
Subject key identifier: 70:A6:8E:B1:06:1E:84:D2:E0:5B:E9:FC:FA:CE:23:05:6F:32:94:D8
Authority key identifier: 68:7D:9B:56:2B:A4:72:61:8F:93:98:E2:65:CA:0E:71:08:F6:87:A3
Certificate issuer: /CN=687d9b562ba472618f9398e265ca0e7108f687a3
Certificate serial: 0196561328039619B9B37D66ED8F9AAA90AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
Manifest number: 1491
Signing time: Mon 21 Apr 2025 02:00:18 +0000
Manifest this update: Mon 21 Apr 2025 02:00:18 +0000
Manifest next update: Tue 22 Apr 2025 02:00:18 +0000
Files and hashes: 1: aH2bViukcmGPk5jiZcoOcQj2h6M.crl (hash: 1FAC9tqq0pINeEXo2xMnrDqBihaOZAkAnEe5mbPdzrg=)
2: lwjpFv3HgemxBJqe9gi4ArggD88.roa (hash: 7p7Zr7Ya8mUheMjW/Ww4B8S5/Cc2CZ+iZfLnhmKVtRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:28:03:96:19:b9:b3:7d:66:ed:8f:9a:aa:90:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687d9b562ba472618f9398e265ca0e7108f687a3
Validity
Not Before: Apr 21 02:00:18 2025 GMT
Not After : Apr 22 02:00:18 2025 GMT
Subject: CN=70a68eb1061e84d2e05be9fcface23056f3294d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:eb:78:26:2f:9d:6e:27:fb:11:ff:5e:14:56:
7d:08:a5:19:99:bb:be:5b:ec:d7:25:55:d9:89:4d:
21:1c:15:06:40:ba:ef:aa:db:a5:dd:bf:dd:06:d0:
a0:f8:60:8d:63:50:40:c7:6c:dc:ba:67:7e:a5:1e:
5c:da:e6:07:f6:38:5c:ed:df:bb:4b:f6:2b:7f:16:
cc:2d:36:90:b4:b1:ba:eb:8a:d0:9c:ba:d0:96:d7:
1f:28:c9:9c:47:f2:7a:37:fb:fb:b5:db:03:a4:34:
b5:6f:90:9d:53:36:b1:09:09:d2:5b:b1:de:bd:33:
13:1b:c4:60:3b:f4:48:4d:72:01:d3:0c:5e:f0:3a:
51:8c:81:ae:b9:ef:82:a1:ac:13:e4:38:53:59:02:
3f:f0:3f:68:0e:78:f4:7c:bd:1a:44:a0:c1:6a:ed:
b5:83:56:a8:9c:b1:58:cc:b7:4c:47:bf:f5:7b:88:
5a:66:08:ce:cc:08:33:31:5f:71:4d:5e:61:0e:4b:
37:48:2c:44:02:b6:c6:e5:5d:60:a1:a7:8c:59:c9:
1d:0f:01:7c:32:2b:b3:53:29:c2:a3:a8:61:07:8d:
7e:f7:e7:e9:8b:f9:61:2f:8a:a7:ed:cb:1f:ac:b9:
bb:71:db:94:eb:62:af:27:51:14:09:8f:54:06:4b:
99:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A6:8E:B1:06:1E:84:D2:E0:5B:E9:FC:FA:CE:23:05:6F:32:94:D8
X509v3 Authority Key Identifier:
keyid:68:7D:9B:56:2B:A4:72:61:8F:93:98:E2:65:CA:0E:71:08:F6:87:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:50:c7:0d:d7:80:d4:2c:ce:4c:4a:73:81:d6:9d:8a:17:07:
84:af:ce:29:d7:92:50:32:98:a6:df:2a:77:77:23:b3:55:97:
51:b0:82:8f:5f:e5:ad:c0:36:72:e0:ed:8d:e9:37:8d:fc:f1:
71:2e:51:67:86:5b:d5:f9:62:c2:e5:fc:4e:98:0f:d2:ab:80:
7d:2d:73:37:d4:db:e3:15:e9:64:e1:1b:df:47:31:b7:17:21:
c3:02:51:fa:20:ad:f8:fa:6e:29:cd:f1:0e:30:c2:71:f3:38:
e9:86:ea:3c:2c:38:56:d1:d3:35:a5:36:0f:07:02:bc:db:3c:
fd:60:60:dc:58:16:a7:94:be:89:86:bb:c1:43:78:ae:30:2e:
5e:9c:13:92:bc:40:fe:7a:19:ce:2a:a4:0d:c3:69:84:b3:6d:
1e:56:63:74:d4:6f:01:e2:23:9a:a4:31:8c:e1:93:69:e0:7a:
fc:bb:77:7a:fb:40:43:9d:bb:5e:e1:35:58:57:61:80:0a:81:
87:26:37:fb:54:f8:20:cb:ab:6d:aa:62:ef:2b:c0:d9:25:42:
b9:28:93:9f:fe:c6:e7:27:1e:e4:e6:34:dd:74:65:9d:a8:18:
58:05:19:31:6c:08:ec:b6:3c:c5:b8:0d:d7:f2:6f:f0:59:e5:
28:48:8a:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZWEygDlhm5s31m7Y+aqpCuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4N2Q5YjU2MmJhNDcyNjE4ZjkzOThlMjY1Y2EwZTcxMDhm
Njg3YTMwHhcNMjUwNDIxMDIwMDE4WhcNMjUwNDIyMDIwMDE4WjAzMTEwLwYDVQQD
Eyg3MGE2OGViMTA2MWU4NGQyZTA1YmU5ZmNmYWNlMjMwNTZmMzI5NGQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Ot4Ji+dbif7Ef9eFFZ9CKUZmbu+
W+zXJVXZiU0hHBUGQLrvqtul3b/dBtCg+GCNY1BAx2zcumd+pR5c2uYH9jhc7d+7
S/YrfxbMLTaQtLG664rQnLrQltcfKMmcR/J6N/v7tdsDpDS1b5CdUzaxCQnSW7He
vTMTG8RgO/RITXIB0wxe8DpRjIGuue+CoawT5DhTWQI/8D9oDnj0fL0aRKDBau21
g1aonLFYzLdMR7/1e4haZgjOzAgzMV9xTV5hDks3SCxEArbG5V1goaeMWckdDwF8
MiuzUynCo6hhB41+9+fpi/lhL4qn7csfrLm7cduU62KvJ1EUCY9UBkuZ4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHCmjrEGHoTS4Fvp/PrOIwVvMpTYMB8GA1UdIwQY
MBaAFGh9m1YrpHJhj5OY4mXKDnEI9oejMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUgyYlZpdWtjbUdQazVqaVpjb09jUWoyaDZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iODljMWYtOGRjYi00MzhiLThhZmQt
NjA1ZDEzNTEzNmY3LzEvYUgyYlZpdWtjbUdQazVqaVpjb09jUWoyaDZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9iODljMWYtOGRjYi00MzhiLThhZmQtNjA1ZDEzNTEzNmY3
LzEvYUgyYlZpdWtjbUdQazVqaVpjb09jUWoyaDZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATVDHDdeA
1CzOTEpzgdadihcHhK/OKdeSUDKYpt8qd3cjs1WXUbCCj1/lrcA2cuDtjek3jfzx
cS5RZ4Zb1fliwuX8TpgP0quAfS1zN9Tb4xXpZOEb30cxtxchwwJR+iCt+PpuKc3x
DjDCcfM46YbqPCw4VtHTNaU2DwcCvNs8/WBg3FgWp5S+iYa7wUN4rjAuXpwTkrxA
/noZziqkDcNphLNtHlZjdNRvAeIjmqQxjOGTaeB6/Lt3evtAQ527XuE1WFdhgAqB
hyY3+1T4IMurbapi7yvA2SVCuSiTn/7G5yce5OY03XRlnagYWAUZMWwI7LY8xbgN
1/Jv8FnlKEiKTA==
-----END CERTIFICATE-----
Generated at Mon Apr 21 05:30:02 2025 by rpki-client