Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
File: aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft (raw, json)
Hash identifier: pzw6Ci4SPtC4W1RCCUw4qlBKpl0aUi+fKl1PepUWbcQ=
Subject key identifier: 04:D2:E2:9E:E0:75:C1:B2:FA:5B:5E:72:ED:00:C5:DB:F4:40:5A:76
Authority key identifier: 68:F8:3E:2A:34:14:5A:D4:7E:0C:C2:B3:C7:9F:C6:31:2B:AE:2C:71
Certificate issuer: /CN=68f83e2a34145ad47e0cc2b3c79fc6312bae2c71
Certificate serial: 019786FD3B1AF5357560BA17F9017C73984B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
Manifest number: 045A
Signing time: Thu 19 Jun 2025 07:00:32 +0000
Manifest this update: Thu 19 Jun 2025 07:00:32 +0000
Manifest next update: Fri 20 Jun 2025 07:00:32 +0000
Files and hashes: 1: N-BSf874DQvK549b1pSEfsfJ-W8.roa (hash: bW40XSisvNpm05Mkk5fR9GiNdKpGc7uzNKkhrhBHqx4=)
2: aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl (hash: 5p3LA5OIGVqKqrSWKUFJWbf4+fmH5XGDo07glzDu8nM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 07:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:86:fd:3b:1a:f5:35:75:60:ba:17:f9:01:7c:73:98:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f83e2a34145ad47e0cc2b3c79fc6312bae2c71
Validity
Not Before: Jun 19 07:00:32 2025 GMT
Not After : Jun 20 07:00:32 2025 GMT
Subject: CN=04d2e29ee075c1b2fa5b5e72ed00c5dbf4405a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ee:c3:5a:b9:23:8a:13:4f:0f:e5:89:0c:bf:
45:42:ac:55:5b:06:50:e7:27:61:01:11:a0:e5:ad:
e7:9f:2a:b8:4f:25:2c:c3:34:f4:86:08:4a:1b:9e:
c9:45:15:12:6f:73:a5:76:85:a7:e0:00:46:6b:96:
18:ee:09:1e:3a:79:32:e9:f8:f7:25:a2:51:9d:25:
7d:7c:27:4e:0b:a8:36:11:49:1c:bf:b2:72:7e:05:
07:30:b5:02:cb:4f:ed:4a:3a:e6:03:e2:ef:35:62:
a9:78:50:8b:74:79:a1:56:aa:3d:72:5b:e9:4b:f5:
66:fb:e8:e4:b1:67:38:19:3e:d2:be:12:d8:e4:c0:
6d:2e:ab:66:da:99:46:46:e6:2b:cb:d5:63:d3:cd:
e5:72:00:81:f6:46:ac:a1:c3:aa:ce:db:2f:fe:17:
6d:10:63:7d:50:49:ca:2d:b5:11:74:35:e3:16:30:
a8:63:62:48:39:11:b5:2f:f8:fe:39:93:32:ce:d5:
df:99:1f:a6:53:f9:70:47:b1:82:c0:f7:29:01:14:
ca:80:e6:37:83:4f:43:1b:57:2d:5e:bd:b1:1e:7d:
14:46:a0:bd:a0:50:d3:a0:c5:82:23:fa:09:5e:6b:
f3:55:d8:de:12:c5:05:1f:73:40:00:db:29:41:d3:
81:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:D2:E2:9E:E0:75:C1:B2:FA:5B:5E:72:ED:00:C5:DB:F4:40:5A:76
X509v3 Authority Key Identifier:
keyid:68:F8:3E:2A:34:14:5A:D4:7E:0C:C2:B3:C7:9F:C6:31:2B:AE:2C:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:4e:b1:df:97:50:bb:6b:1e:b5:4f:45:a9:f6:80:53:d6:72:
7c:77:38:87:9e:2c:1c:af:60:6f:0d:dc:8e:a6:61:7d:14:98:
3a:17:59:26:17:ca:45:d4:0c:b0:29:2f:d4:e4:23:86:f1:2b:
fa:d2:36:d2:ed:76:ec:25:3e:92:31:98:2a:58:3e:f2:5a:12:
74:7a:a2:ea:be:70:6a:41:f6:26:1a:48:7d:a8:54:c8:fe:88:
4e:cf:61:69:c9:3d:45:55:6f:0c:d3:33:15:eb:e7:0d:77:a7:
0d:fc:40:64:d8:96:b9:5c:ae:eb:a8:33:75:45:09:1f:9e:44:
2d:79:45:53:87:89:c4:85:ff:ff:b9:7a:01:58:4d:22:f2:4f:
42:85:2e:bd:00:ac:f2:5f:26:92:a3:dc:02:66:5e:ba:23:79:
4f:1d:3d:e5:27:f1:1a:37:a6:97:fd:b0:6e:17:95:a0:c9:df:
c5:5f:66:0b:25:1b:d3:84:bf:55:96:51:1b:9c:3a:65:69:4b:
4c:c4:20:b9:c1:c8:7a:a7:8a:75:8a:e4:28:7d:8d:07:dc:1d:
08:a1:2c:24:5e:26:a1:da:e8:5a:7b:6c:07:b0:16:29:34:a3:
1b:62:fd:fe:d7:67:e8:dc:11:96:fc:06:fd:55:92:db:a0:c2:
a0:ac:bd:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeG/Tsa9TV1YLoX+QF8c5hLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZjgzZTJhMzQxNDVhZDQ3ZTBjYzJiM2M3OWZjNjMxMmJh
ZTJjNzEwHhcNMjUwNjE5MDcwMDMyWhcNMjUwNjIwMDcwMDMyWjAzMTEwLwYDVQQD
EygwNGQyZTI5ZWUwNzVjMWIyZmE1YjVlNzJlZDAwYzVkYmY0NDA1YTc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+7DWrkjihNPD+WJDL9FQqxVWwZQ
5ydhARGg5a3nnyq4TyUswzT0hghKG57JRRUSb3OldoWn4ABGa5YY7gkeOnky6fj3
JaJRnSV9fCdOC6g2EUkcv7JyfgUHMLUCy0/tSjrmA+LvNWKpeFCLdHmhVqo9clvp
S/Vm++jksWc4GT7SvhLY5MBtLqtm2plGRuYry9Vj083lcgCB9kasocOqztsv/hdt
EGN9UEnKLbURdDXjFjCoY2JIORG1L/j+OZMyztXfmR+mU/lwR7GCwPcpARTKgOY3
g09DG1ctXr2xHn0URqC9oFDToMWCI/oJXmvzVdjeEsUFH3NAANspQdOBIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFATS4p7gdcGy+ltecu0Axdv0QFp2MB8GA1UdIwQY
MBaAFGj4Pio0FFrUfgzCs8efxjErrixxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVBnLUtqUVVXdFItRE1Leng1X0dNU3V1TEhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy81ZTlmOTAtYTZiMC00ZmQ4LWI4ZGQt
NzkyODAyYzQzOTI1LzEvYVBnLUtqUVVXdFItRE1Leng1X0dNU3V1TEhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy81ZTlmOTAtYTZiMC00ZmQ4LWI4ZGQtNzkyODAyYzQzOTI1
LzEvYVBnLUtqUVVXdFItRE1Leng1X0dNU3V1TEhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaE6x35dQ
u2setU9FqfaAU9ZyfHc4h54sHK9gbw3cjqZhfRSYOhdZJhfKRdQMsCkv1OQjhvEr
+tI20u127CU+kjGYKlg+8loSdHqi6r5wakH2JhpIfahUyP6ITs9hack9RVVvDNMz
FevnDXenDfxAZNiWuVyu66gzdUUJH55ELXlFU4eJxIX//7l6AVhNIvJPQoUuvQCs
8l8mkqPcAmZeuiN5Tx095SfxGjeml/2wbheVoMnfxV9mCyUb04S/VZZRG5w6ZWlL
TMQgucHIeqeKdYrkKH2NB9wdCKEsJF4modroWntsB7AWKTSjG2L9/tdn6NwRlvwG
/VWS26DCoKy9vg==
-----END CERTIFICATE-----
Generated at Thu Jun 19 15:47:18 2025 by rpki-client