Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: ZN2l6DIU0Rthht2RpgpVhviP790Or6IJaaHXLnF0avE=
Subject key identifier: B1:17:66:3C:ED:2A:0C:1B:17:5F:38:C2:A8:E7:CB:E9:39:DE:1C:5B
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 01968B13A877F00E9D1F9118D74F5BC5F294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 1519
Signing time: Thu 01 May 2025 09:00:43 +0000
Manifest this update: Thu 01 May 2025 09:00:43 +0000
Manifest next update: Fri 02 May 2025 09:00:43 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: L3TgzVYO5bIzL92AZmUhumpKMaeeDsicD4RZg5Adq0I=)
2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8b:13:a8:77:f0:0e:9d:1f:91:18:d7:4f:5b:c5:f2:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: May 1 09:00:43 2025 GMT
Not After : May 2 09:00:43 2025 GMT
Subject: CN=b117663ced2a0c1b175f38c2a8e7cbe939de1c5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:da:86:82:7b:6c:65:36:39:59:bb:22:7c:e8:
86:e5:f2:6c:7b:84:74:6e:63:09:69:55:6f:94:b1:
f1:4c:86:1b:29:75:02:4c:cb:a3:5b:42:74:bb:89:
d1:a5:a8:e1:fb:3b:8c:48:81:20:ab:97:f5:35:77:
cd:75:b0:f7:1c:72:76:02:e8:a5:13:1f:fd:70:35:
ff:d7:bb:5f:16:9b:b2:13:41:22:0e:9e:83:00:2c:
cf:14:3d:1c:26:7e:3e:0e:81:db:1e:5e:d3:41:c7:
4c:cc:e6:cc:6f:bc:e3:06:b5:35:fe:ee:62:f4:d6:
f5:50:36:9b:47:57:80:35:f7:38:b1:0b:0c:1f:a1:
33:01:3f:9c:65:d9:54:7c:d1:83:f3:e4:65:ca:2c:
7a:b2:4b:f8:b7:29:e8:53:70:1c:23:5f:b2:c7:0e:
5b:60:be:18:c0:9b:98:10:b7:0a:12:b4:4c:58:14:
12:70:80:4b:99:1e:65:e6:17:4f:0a:8c:4f:a1:d4:
11:7f:af:dc:c9:3a:27:70:28:22:bb:21:d3:33:79:
09:eb:c1:38:7d:f9:83:71:fe:ea:36:b8:ae:20:1d:
97:b1:54:3d:b9:a8:dc:22:71:63:bd:e5:73:b0:20:
fd:f8:11:26:3d:78:43:b9:9b:df:a8:08:46:72:4a:
94:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:17:66:3C:ED:2A:0C:1B:17:5F:38:C2:A8:E7:CB:E9:39:DE:1C:5B
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:81:d2:f1:d6:62:ea:a6:02:30:0b:cb:c3:e3:bd:d6:f2:97:
ca:8d:6b:f9:d6:93:35:a4:01:66:5e:e6:12:12:3b:13:4a:f1:
ea:9e:f3:7d:ca:7c:b4:8a:67:e2:94:35:74:31:56:69:b9:0a:
1e:07:db:33:9b:26:db:32:9c:32:95:50:65:15:32:d1:a2:e2:
cd:92:12:94:9b:12:66:c5:bf:91:b0:fc:dc:b4:e7:58:41:1d:
fa:f7:9e:51:f9:26:8c:a9:b9:6b:b5:d8:60:d2:de:af:1a:a8:
c2:3c:39:ee:eb:c5:88:05:56:85:59:65:98:c3:66:cb:17:14:
d8:0b:ee:b8:79:06:ef:9d:7f:37:22:c3:b2:89:63:a1:1a:4e:
39:d4:f4:e6:d4:65:ed:0c:f0:ca:c8:95:48:4a:91:3b:81:a4:
ae:b2:26:98:af:aa:2a:8c:c4:3d:9a:f2:ed:cc:2f:7d:4b:2d:
7a:a6:33:af:31:92:63:0e:71:c3:41:8b:b6:5a:11:ee:7a:88:
88:d2:fe:27:63:50:e0:e4:3f:95:2d:2c:ed:fe:66:69:13:fb:
d7:ed:44:9e:20:e6:f3:d5:bf:f1:00:aa:5f:b3:0d:65:8b:03:
3d:b0:05:17:fe:e5:01:d3:e1:ec:19:58:e2:2f:7f:52:97:ae:
48:17:d3:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaLE6h38A6dH5EY109bxfKUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyOTFkNGRlMTMwZGE2YWFjZTIyZWQ5OTY1MGJlMTgyNDk3
ZTBiY2YwHhcNMjUwNTAxMDkwMDQzWhcNMjUwNTAyMDkwMDQzWjAzMTEwLwYDVQQD
EyhiMTE3NjYzY2VkMmEwYzFiMTc1ZjM4YzJhOGU3Y2JlOTM5ZGUxYzViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntqGgntsZTY5WbsifOiG5fJse4R0
bmMJaVVvlLHxTIYbKXUCTMujW0J0u4nRpajh+zuMSIEgq5f1NXfNdbD3HHJ2Auil
Ex/9cDX/17tfFpuyE0EiDp6DACzPFD0cJn4+DoHbHl7TQcdMzObMb7zjBrU1/u5i
9Nb1UDabR1eANfc4sQsMH6EzAT+cZdlUfNGD8+Rlyix6skv4tynoU3AcI1+yxw5b
YL4YwJuYELcKErRMWBQScIBLmR5l5hdPCoxPodQRf6/cyToncCgiuyHTM3kJ68E4
ffmDcf7qNriuIB2XsVQ9uajcInFjveVzsCD9+BEmPXhDuZvfqAhGckqULwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLEXZjztKgwbF184wqjny+k53hxbMB8GA1UdIwQY
MBaAFAKR1N4TDaaqziLtmWUL4YJJfgvPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQt
Nzc4MTY4MTA3N2Y3LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQtNzc4MTY4MTA3N2Y3
LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIoHS8dZi
6qYCMAvLw+O91vKXyo1r+daTNaQBZl7mEhI7E0rx6p7zfcp8tIpn4pQ1dDFWabkK
HgfbM5sm2zKcMpVQZRUy0aLizZISlJsSZsW/kbD83LTnWEEd+veeUfkmjKm5a7XY
YNLerxqowjw57uvFiAVWhVllmMNmyxcU2AvuuHkG751/NyLDsoljoRpOOdT05tRl
7QzwysiVSEqRO4GkrrImmK+qKozEPZry7cwvfUsteqYzrzGSYw5xw0GLtloR7nqI
iNL+J2NQ4OQ/lS0s7f5maRP71+1EniDm89W/8QCqX7MNZYsDPbAFF/7lAdPh7BlY
4i9/UpeuSBfTPg==
-----END CERTIFICATE-----
Generated at Thu May 1 12:46:35 2025 by rpki-client