Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json)
Hash identifier: ypUaxxMgytNlNNj7pka+MPpF/qaJWixmeJZX5xx1Blk=
Subject key identifier: A7:84:A0:61:0A:38:17:7D:5A:72:9D:30:AF:9F:33:F4:A0:E9:04:A1
Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Certificate serial: 019679B2024D16628292A4A6DEE5887788E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
Manifest number: 1512
Signing time: Mon 28 Apr 2025 00:00:31 +0000
Manifest this update: Mon 28 Apr 2025 00:00:31 +0000
Manifest next update: Tue 29 Apr 2025 00:00:31 +0000
Files and hashes: 1: K-gQWrDorOWk95T1Ck9YnvOvyOw.roa (hash: M7ISU7dx2mACRrVyXnpQ2vx1ALS4joyLkkEwNFtNto0=)
2: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: otZ8spor5wYdtmC4f9Xz5/xf5W9VhcUHG5RIUmCufY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:b2:02:4d:16:62:82:92:a4:a6:de:e5:88:77:88:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3
Validity
Not Before: Apr 28 00:00:31 2025 GMT
Not After : Apr 29 00:00:31 2025 GMT
Subject: CN=a784a0610a38177d5a729d30af9f33f4a0e904a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b4:89:0b:54:42:e6:e1:64:fa:d9:3b:23:cd:
6c:bd:40:01:32:06:0a:80:3b:e9:de:30:c0:ed:76:
76:13:94:7e:04:de:9e:03:ef:db:ce:9b:8f:b4:30:
2c:4f:b5:dd:ba:52:e6:f6:ed:f7:b6:ff:99:48:50:
e6:c2:5e:d7:1b:6a:64:c7:00:81:23:de:85:4b:51:
03:ed:93:c0:39:45:31:5f:e5:0f:7c:8a:d7:5b:dc:
31:7e:aa:cc:7c:73:9d:ad:60:40:24:08:84:99:63:
27:4d:54:b4:2f:71:e1:3c:05:ee:98:0c:3f:55:24:
82:e6:6c:a9:46:74:22:ef:ce:e3:8d:22:e8:9d:68:
19:8b:50:9c:ee:fa:4e:80:f5:2f:c6:58:c4:08:34:
e0:8c:ae:3d:90:b7:3d:c4:87:4c:84:ea:61:6d:8f:
55:4f:59:99:d4:8a:bc:00:b5:d3:e4:39:08:2c:6f:
aa:b1:0b:f5:69:8b:55:27:fc:66:81:40:0e:16:8f:
28:4c:23:60:6e:2f:db:29:75:f4:0e:64:7e:2c:fe:
8a:c7:9a:2b:ae:f2:ae:8c:7c:73:6b:bb:1c:1f:c5:
8e:76:bc:92:6e:91:e9:dc:5c:23:62:ea:fb:23:39:
5f:ab:62:dd:e1:65:67:a8:5f:6c:d9:2e:91:b4:61:
5b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:84:A0:61:0A:38:17:7D:5A:72:9D:30:AF:9F:33:F4:A0:E9:04:A1
X509v3 Authority Key Identifier:
keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:e1:7d:95:7f:f8:87:9c:d0:b2:64:ad:ee:17:00:12:fa:4c:
42:18:01:ab:49:8c:04:2d:5f:d1:e6:1c:e5:23:1f:f0:00:df:
69:15:81:6f:b0:b7:7b:6c:dc:d5:24:b5:72:bc:9e:42:8e:06:
c2:c9:57:f2:20:f4:44:b2:5b:61:de:20:b0:fc:2c:cd:26:1b:
32:ac:c6:14:8d:b6:76:2f:ce:e3:80:a8:9b:67:64:ce:29:fd:
8a:10:6f:5a:ae:7d:f6:fd:97:ba:3d:02:0a:bd:23:5f:b0:44:
0d:b4:74:6c:fd:4b:4a:16:b2:7e:1e:79:3a:d8:4d:07:66:00:
40:f3:a9:c4:36:2f:f6:5d:78:c6:43:7f:14:8b:e2:48:05:88:
82:9a:23:e3:dd:86:4d:7c:08:fa:45:e4:b9:50:fe:9e:13:c8:
dc:7b:d3:3b:8c:0d:87:2a:32:b4:e8:17:ba:ce:4b:2c:35:b3:
6b:1d:fe:7a:e4:f2:bb:69:16:ae:67:b8:18:61:eb:8b:dd:4c:
ae:5c:d4:7c:68:f2:37:98:54:fc:08:d7:b7:d8:21:74:66:02:
7e:b9:6d:c5:9a:51:97:bf:91:7c:47:9b:6b:47:e7:9b:2a:af:
e3:e2:d8:10:26:9d:2f:1e:05:cc:2b:23:30:b9:b4:f9:43:fc:
a3:0b:4c:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ5sgJNFmKCkqSm3uWId4jhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YmYxYzVhMjFjMzgyNWI4Yjg2NTE2YTFhNTk3MTIxYjU0
YjNjYzMwHhcNMjUwNDI4MDAwMDMxWhcNMjUwNDI5MDAwMDMxWjAzMTEwLwYDVQQD
EyhhNzg0YTA2MTBhMzgxNzdkNWE3MjlkMzBhZjlmMzNmNGEwZTkwNGExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk7SJC1RC5uFk+tk7I81svUABMgYK
gDvp3jDA7XZ2E5R+BN6eA+/bzpuPtDAsT7XdulLm9u33tv+ZSFDmwl7XG2pkxwCB
I96FS1ED7ZPAOUUxX+UPfIrXW9wxfqrMfHOdrWBAJAiEmWMnTVS0L3HhPAXumAw/
VSSC5mypRnQi787jjSLonWgZi1Cc7vpOgPUvxljECDTgjK49kLc9xIdMhOphbY9V
T1mZ1Iq8ALXT5DkILG+qsQv1aYtVJ/xmgUAOFo8oTCNgbi/bKXX0DmR+LP6Kx5or
rvKujHxza7scH8WOdrySbpHp3FwjYur7Izlfq2Ld4WVnqF9s2S6RtGFbSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKeEoGEKOBd9WnKdMK+fM/Sg6QShMB8GA1UdIwQY
MBaAFGi/HFohw4Jbi4ZRahpZcSG1SzzDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8yZmNlNWUtYzkxNS00ZjAyLWFkM2Et
NTVlYjViYjk5ZTQ1LzEvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy8yZmNlNWUtYzkxNS00ZjAyLWFkM2EtNTVlYjViYjk5ZTQ1
LzEvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo+F9lX/4
h5zQsmSt7hcAEvpMQhgBq0mMBC1f0eYc5SMf8ADfaRWBb7C3e2zc1SS1cryeQo4G
wslX8iD0RLJbYd4gsPwszSYbMqzGFI22di/O44Com2dkzin9ihBvWq599v2Xuj0C
Cr0jX7BEDbR0bP1LShayfh55OthNB2YAQPOpxDYv9l14xkN/FIviSAWIgpoj492G
TXwI+kXkuVD+nhPI3HvTO4wNhyoytOgXus5LLDWzax3+euTyu2kWrme4GGHri91M
rlzUfGjyN5hU/AjXt9ghdGYCfrltxZpRl7+RfEeba0fnmyqv4+LYECadLx4FzCsj
MLm0+UP8owtM5w==
-----END CERTIFICATE-----
Generated at Mon Apr 28 06:04:56 2025 by rpki-client