Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json)
Hash identifier: wsQmPRlEec/2ve5T19aLB97xKVu66WaWKtqOQDMnNI8=
Subject key identifier: 4A:81:36:6F:EA:5E:FD:48:76:56:95:C3:D7:72:B9:0B:CE:33:F4:4F
Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D
Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d
Certificate serial: 019646D73056DA56819A22E0BCEA2C2FDAAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
Manifest number: 0850
Signing time: Fri 18 Apr 2025 03:00:29 +0000
Manifest this update: Fri 18 Apr 2025 03:00:29 +0000
Manifest next update: Sat 19 Apr 2025 03:00:29 +0000
Files and hashes: 1: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: 3E/vBgb8cALqaFIxXiqMVgRYwG9QsyZZB3E7toXv9qk=)
2: x-UkkAB6bBHjnvfgkifHZfsul34.roa (hash: Z+EoTHR/GmNeC+PGL9FT4NMDxcyauPnVaWgbSwI9JOU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:46:d7:30:56:da:56:81:9a:22:e0:bc:ea:2c:2f:da:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6991c56f11a7171c6153239769f557beba10182d
Validity
Not Before: Apr 18 03:00:29 2025 GMT
Not After : Apr 19 03:00:29 2025 GMT
Subject: CN=4a81366fea5efd48765695c3d772b90bce33f44f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b5:d1:6f:b0:68:93:ae:2b:11:bb:8e:d6:a0:
9f:15:93:10:bf:53:75:bb:73:7f:49:78:55:60:fd:
d2:58:a2:4e:89:f7:6c:fb:a6:3b:80:27:98:ee:30:
64:4c:c3:d4:53:a2:bc:bd:db:09:02:a9:07:ff:70:
a4:4c:c9:79:b0:77:51:20:7a:51:41:56:59:cb:ef:
f5:00:46:fa:3a:05:3b:52:63:bb:fb:0a:b8:76:05:
e1:35:9a:f8:60:31:1d:9f:48:e5:7e:4d:93:43:e8:
2e:c4:40:78:49:2e:d2:51:ec:42:fc:2d:1f:e3:91:
ea:1d:96:cd:a8:ae:07:b2:aa:c8:20:41:86:2b:29:
f6:63:72:af:2c:09:bc:31:14:55:03:ea:b8:f5:ac:
bf:4c:87:ff:db:b2:6e:a0:7d:78:df:ea:06:b0:ad:
04:9d:4f:dc:37:b3:48:66:4f:98:3c:5e:17:37:1c:
36:ef:63:d8:e2:f8:8c:d8:99:12:b1:45:3f:6d:48:
d7:70:1a:3b:fc:cd:65:2b:a4:bf:ea:f7:2f:10:3b:
93:88:2a:29:e9:61:18:e8:e1:1c:f9:e5:d1:ec:d5:
c9:9a:b3:55:31:50:ee:7b:c0:e5:63:ec:e7:e2:f6:
95:94:f2:ac:c8:01:20:c2:f2:96:f3:88:71:4b:13:
38:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:81:36:6F:EA:5E:FD:48:76:56:95:C3:D7:72:B9:0B:CE:33:F4:4F
X509v3 Authority Key Identifier:
keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:c6:af:84:a8:44:c9:02:f4:90:88:e2:61:2a:bb:4a:fa:b3:
d9:6d:70:8b:7a:17:d7:79:6e:98:05:ec:ba:52:d4:4d:de:20:
e5:3f:93:30:8f:06:2b:67:72:e7:f6:33:50:07:b7:fa:68:fc:
1e:ae:83:c4:ea:14:92:18:cc:73:6e:30:e4:67:5a:9d:52:ee:
7a:bc:7d:7a:70:53:83:c8:1c:07:b2:63:ef:5d:1e:11:ce:6d:
c4:0f:e2:f5:01:ce:6f:fe:2c:6b:60:2f:6b:0e:d2:a2:3a:29:
aa:86:6c:cf:3e:47:8a:c6:98:26:9f:11:83:05:b7:ea:65:d0:
38:99:81:0e:13:70:6f:28:36:75:12:c2:81:58:a5:a7:ca:c3:
e7:06:7f:f6:6a:78:2c:66:94:fb:62:98:58:bc:3b:ea:80:2b:
63:17:bb:90:fa:a7:2a:29:19:99:e2:e5:01:3b:12:f7:f2:c9:
91:78:a7:9b:b1:77:f4:89:ee:93:e5:fd:6e:f4:d1:d0:51:bd:
e5:b9:2f:e1:d2:08:e1:ff:f1:26:02:20:3c:b5:5f:06:d5:23:
93:34:aa:b6:bb:96:94:4d:ad:73:f6:5b:67:f1:74:8e:0f:a9:
2a:64:57:37:be:1b:8c:e8:56:d7:8c:83:a4:ae:1b:cf:86:ea:
55:12:82:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZG1zBW2laBmiLgvOosL9qqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx
MDE4MmQwHhcNMjUwNDE4MDMwMDI5WhcNMjUwNDE5MDMwMDI5WjAzMTEwLwYDVQQD
Eyg0YTgxMzY2ZmVhNWVmZDQ4NzY1Njk1YzNkNzcyYjkwYmNlMzNmNDRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz7XRb7Bok64rEbuO1qCfFZMQv1N1
u3N/SXhVYP3SWKJOifds+6Y7gCeY7jBkTMPUU6K8vdsJAqkH/3CkTMl5sHdRIHpR
QVZZy+/1AEb6OgU7UmO7+wq4dgXhNZr4YDEdn0jlfk2TQ+guxEB4SS7SUexC/C0f
45HqHZbNqK4HsqrIIEGGKyn2Y3KvLAm8MRRVA+q49ay/TIf/27JuoH143+oGsK0E
nU/cN7NIZk+YPF4XNxw272PY4viM2JkSsUU/bUjXcBo7/M1lK6S/6vcvEDuTiCop
6WEY6OEc+eXR7NXJmrNVMVDue8DlY+zn4vaVlPKsyAEgwvKW84hxSxM43QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEqBNm/qXv1IdlaVw9dyuQvOM/RPMB8GA1UdIwQY
MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt
NjVkMTU2NzM0MGZkLzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk
LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn8avhKhE
yQL0kIjiYSq7Svqz2W1wi3oX13lumAXsulLUTd4g5T+TMI8GK2dy5/YzUAe3+mj8
Hq6DxOoUkhjMc24w5GdanVLuerx9enBTg8gcB7Jj710eEc5txA/i9QHOb/4sa2Av
aw7SojopqoZszz5HisaYJp8RgwW36mXQOJmBDhNwbyg2dRLCgVilp8rD5wZ/9mp4
LGaU+2KYWLw76oArYxe7kPqnKikZmeLlATsS9/LJkXinm7F39Inuk+X9bvTR0FG9
5bkv4dII4f/xJgIgPLVfBtUjkzSqtruWlE2tc/ZbZ/F0jg+pKmRXN74bjOhW14yD
pK4bz4bqVRKCpg==
-----END CERTIFICATE-----
Generated at Fri Apr 18 06:52:28 2025 by rpki-client