Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
File: AkHvRDYUJQbyZZODwW69oeKbT4Y.mft (raw, json)
Hash identifier: XgE0d0n0rGbFtMuBj08LLNt/PsX6ndAN2OUgxRiGLSU=
Subject key identifier: EF:7D:5A:B8:0B:54:1C:1C:B0:B3:E5:D7:65:4E:9A:19:91:6E:15:31
Authority key identifier: 02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
Certificate issuer: /CN=0241ef4436142506f2659383c16ebda1e29b4f86
Certificate serial: 01967E6ADE311FB38372471442BDAC1D0182
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
Manifest number: 0DD6
Signing time: Mon 28 Apr 2025 22:00:54 +0000
Manifest this update: Mon 28 Apr 2025 22:00:54 +0000
Manifest next update: Tue 29 Apr 2025 22:00:54 +0000
Files and hashes: 1: AkHvRDYUJQbyZZODwW69oeKbT4Y.crl (hash: +fTQVRawjzvLms7VXDljLJpd44+akHAge3LOtfxMc2E=)
2: NDyhuvBiD7Dcf-VvAcHjeKP4Wls.roa (hash: oeDnEopXVy5MJcNbGxGeEZ1ceng1jmSd304y/xLBjoc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 22:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:6a:de:31:1f:b3:83:72:47:14:42:bd:ac:1d:01:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0241ef4436142506f2659383c16ebda1e29b4f86
Validity
Not Before: Apr 28 22:00:54 2025 GMT
Not After : Apr 29 22:00:54 2025 GMT
Subject: CN=ef7d5ab80b541c1cb0b3e5d7654e9a19916e1531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1f:ea:22:bd:7b:82:33:42:46:56:07:0c:70:
d3:dd:45:06:54:bf:7a:b1:35:fd:a5:fb:71:bc:3a:
8d:e8:00:92:40:9a:e7:05:db:4d:47:25:72:f5:92:
04:5b:90:74:16:fe:4f:27:54:22:81:d8:cf:7a:df:
73:59:e7:84:4b:83:45:88:1d:1d:b8:92:a4:44:6e:
3b:53:28:a3:bd:67:13:31:60:06:1c:7a:d1:1b:8b:
cf:49:7d:40:f6:e8:aa:d5:73:1a:c6:ee:ca:07:6e:
9c:6a:81:7d:5e:27:38:6c:7e:9e:01:13:d5:0e:2d:
83:23:a6:af:c0:2d:f1:1a:9c:5b:28:ba:ff:64:b3:
5b:69:d2:3c:50:e5:70:d1:19:cd:9d:50:b1:8b:fc:
ee:09:de:8e:2a:33:58:41:95:fa:6b:b0:fb:57:29:
f7:36:d0:1b:45:21:50:39:b8:c3:97:87:be:e3:06:
14:2b:e4:8a:24:fe:e6:93:70:f0:df:12:c8:9f:cc:
75:91:f8:c1:32:f5:4f:1c:c7:41:f1:7c:9c:be:53:
29:ea:a5:af:89:e9:59:70:de:fc:88:b3:49:93:d6:
18:61:17:ad:f9:b8:c3:9a:51:ce:f8:bc:b8:e2:1b:
b8:96:e9:88:23:07:5c:0f:49:f6:a9:0a:6b:9d:3d:
bd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:7D:5A:B8:0B:54:1C:1C:B0:B3:E5:D7:65:4E:9A:19:91:6E:15:31
X509v3 Authority Key Identifier:
keyid:02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:12:ac:1a:68:8e:cc:40:c0:87:cf:c2:d2:74:d3:f9:2e:36:
6b:f1:a2:9f:e0:d4:fb:a2:60:9d:ba:25:56:4a:3c:4e:2a:13:
a6:89:e4:45:3d:60:c8:62:5c:af:e7:b3:d9:c6:cc:98:8a:a3:
7e:a9:22:7b:a8:3d:f2:bd:97:20:87:cc:f0:87:1a:31:d9:88:
fb:f4:d9:7e:98:a0:7d:1d:a9:4c:af:65:a3:aa:ff:8b:98:89:
be:3e:ec:38:d3:a7:fe:30:b0:f8:da:96:bd:b2:d5:c1:94:41:
ca:2c:03:98:04:8e:7f:81:d2:1c:95:d4:64:8b:4e:ed:f5:09:
69:fe:97:8a:77:9e:cd:3c:49:63:f6:67:da:e3:cd:96:4f:92:
22:11:7d:c9:2c:d8:3b:ea:9a:0b:e2:c0:e9:f2:15:ba:8a:91:
65:d0:40:44:09:3a:74:fa:2c:ab:82:15:a7:6c:a5:46:06:55:
68:f8:6d:d8:2a:64:98:04:6b:4f:72:ad:c4:9e:b9:4a:51:2a:
b7:a3:1d:f9:cb:0a:97:ea:d2:2a:d1:50:31:9a:42:ef:9e:01:
bb:47:44:b7:20:0e:cb:70:ca:1e:9a:39:4d:42:f4:29:c0:c0:
62:3d:cf:7a:93:dd:0b:48:a1:69:10:6d:c6:04:b3:8a:93:c1:
d1:51:90:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ+at4xH7ODckcUQr2sHQGCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyNDFlZjQ0MzYxNDI1MDZmMjY1OTM4M2MxNmViZGExZTI5
YjRmODYwHhcNMjUwNDI4MjIwMDU0WhcNMjUwNDI5MjIwMDU0WjAzMTEwLwYDVQQD
EyhlZjdkNWFiODBiNTQxYzFjYjBiM2U1ZDc2NTRlOWExOTkxNmUxNTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqh/qIr17gjNCRlYHDHDT3UUGVL96
sTX9pftxvDqN6ACSQJrnBdtNRyVy9ZIEW5B0Fv5PJ1QigdjPet9zWeeES4NFiB0d
uJKkRG47UyijvWcTMWAGHHrRG4vPSX1A9uiq1XMaxu7KB26caoF9Xic4bH6eARPV
Di2DI6avwC3xGpxbKLr/ZLNbadI8UOVw0RnNnVCxi/zuCd6OKjNYQZX6a7D7Vyn3
NtAbRSFQObjDl4e+4wYUK+SKJP7mk3Dw3xLIn8x1kfjBMvVPHMdB8XycvlMp6qWv
ielZcN78iLNJk9YYYRet+bjDmlHO+Ly44hu4lumIIwdcD0n2qQprnT29QwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO99WrgLVBwcsLPl12VOmhmRbhUxMB8GA1UdIwQY
MBaAFAJB70Q2FCUG8mWTg8FuvaHim0+GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85ZWUyMDItYjliMy00N2YwLThjOWEt
OWZkZjRjMTVmOWE2LzEvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85ZWUyMDItYjliMy00N2YwLThjOWEtOWZkZjRjMTVmOWE2
LzEvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPxKsGmiO
zEDAh8/C0nTT+S42a/Gin+DU+6JgnbolVko8TioTponkRT1gyGJcr+ez2cbMmIqj
fqkie6g98r2XIIfM8IcaMdmI+/TZfpigfR2pTK9lo6r/i5iJvj7sONOn/jCw+NqW
vbLVwZRByiwDmASOf4HSHJXUZItO7fUJaf6XineezTxJY/Zn2uPNlk+SIhF9ySzY
O+qaC+LA6fIVuoqRZdBARAk6dPosq4IVp2ylRgZVaPht2CpkmARrT3KtxJ65SlEq
t6Md+csKl+rSKtFQMZpC754Bu0dEtyAOy3DKHpo5TUL0KcDAYj3PepPdC0ihaRBt
xgSzipPB0VGQag==
-----END CERTIFICATE-----
Generated at Tue Apr 29 07:47:57 2025 by rpki-client