Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
File: 1AYg6l2vilSq6hfyy57N8114UwY.mft (raw, json)
Hash identifier: hh7Zws5bWErFejh8X7fBA9wPaxpV3x+zEAKX7T3+4NY=
Subject key identifier: 93:D5:2D:47:85:0C:B9:8D:B1:A6:23:3A:88:6A:DB:DB:40:09:3F:5B
Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Certificate serial: 019675D574A16F97C7D490607D479EA1D26B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
Manifest number: 0FE7
Signing time: Sun 27 Apr 2025 06:00:45 +0000
Manifest this update: Sun 27 Apr 2025 06:00:45 +0000
Manifest next update: Mon 28 Apr 2025 06:00:45 +0000
Files and hashes: 1: 1AYg6l2vilSq6hfyy57N8114UwY.crl (hash: 5P6jDAwZ4vJUOJk74leDMReIG66qJZYvBTqZcPqr28M=)
2: gGx-x2iRamyRfnlhx5me1YxCw6s.roa (hash: JLnMtxeLdoGYGRa/pvkNkIdX/aY0zlXxd7zsjwME0tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:74:a1:6f:97:c7:d4:90:60:7d:47:9e:a1:d2:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Validity
Not Before: Apr 27 06:00:45 2025 GMT
Not After : Apr 28 06:00:45 2025 GMT
Subject: CN=93d52d47850cb98db1a6233a886adbdb40093f5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:df:66:af:eb:ab:92:c4:95:95:00:d2:d0:7e:
52:14:48:3f:06:d0:c6:45:76:ac:bd:60:b1:82:67:
d9:cc:c2:61:d2:54:17:f5:3d:ba:6f:05:2c:da:64:
b7:79:33:b5:8e:e8:71:21:3e:93:0d:50:dd:67:46:
53:19:b1:14:df:91:d7:4f:dd:67:2e:b1:bf:0c:ec:
d0:d6:4c:1f:e5:0f:e5:c3:a1:4d:b9:56:8c:1b:14:
83:60:7b:bf:ec:1a:2b:39:e9:72:7e:85:f4:ec:6d:
96:61:b9:a9:65:bf:f4:a8:97:37:15:ea:cd:4a:34:
2f:74:28:ec:6e:87:90:0b:de:6f:c3:94:2d:a1:bd:
74:13:08:12:48:5b:1b:e5:97:01:50:82:d7:29:c2:
c7:e6:98:43:a6:11:91:ef:5b:97:b6:e8:58:c0:05:
9c:b1:6c:ee:f9:fd:e5:f0:32:c8:96:69:a7:35:c5:
66:ed:66:fe:d3:e7:98:ae:94:e3:75:ab:1f:b7:28:
5b:24:05:ce:2a:25:dd:6d:c4:11:cc:28:8c:4f:63:
7f:18:ea:bf:ea:ef:a0:d1:f0:44:73:e7:ea:46:f3:
8d:ec:8c:ea:e1:6c:26:e5:64:1c:69:40:f1:e2:1d:
3c:02:77:b1:c4:64:ea:af:35:55:e9:9a:9f:6f:2f:
59:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D5:2D:47:85:0C:B9:8D:B1:A6:23:3A:88:6A:DB:DB:40:09:3F:5B
X509v3 Authority Key Identifier:
keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:25:d4:4f:28:a8:ed:be:2d:1a:60:c8:f9:fb:27:51:a6:4d:
83:f5:13:c1:c5:68:a4:53:e9:bd:c0:34:00:ae:12:94:42:f6:
fb:c8:8c:2c:3f:8a:07:8a:73:97:37:b8:53:a5:36:21:dd:2a:
04:86:03:72:71:0e:49:1e:f7:45:80:18:2a:27:35:22:95:5f:
28:1f:61:ec:bc:26:6b:73:6e:c5:e3:25:bd:b9:15:58:80:3c:
a7:1b:9c:0b:46:75:54:a1:c6:40:be:6e:02:01:01:42:42:14:
c4:24:50:50:84:bb:cb:d4:59:d8:8d:15:47:9e:53:65:b3:90:
10:8e:61:7c:b6:e9:c8:9e:b9:df:94:67:0d:64:90:ef:cb:c6:
3f:73:fb:9f:c8:64:9e:e3:bf:ec:43:a3:9c:09:30:ae:94:b7:
c6:68:15:8c:58:6b:7a:d3:21:9c:ce:85:e7:a6:18:0f:2e:73:
20:0d:5b:c8:90:68:aa:a8:5d:1c:44:fd:41:13:8b:36:5c:fc:
0c:d1:51:6a:eb:4c:2c:a6:89:30:94:87:09:64:50:fc:ea:a1:
b8:46:4a:6a:d6:fa:b7:e1:f1:6d:f5:ef:08:a8:5d:6b:d9:2d:
a3:c2:f7:79:57:e7:9d:9b:58:3a:6e:3b:a5:63:e3:be:5f:4d:
2d:f7:78:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ11XShb5fH1JBgfUeeodJrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0MDYyMGVhNWRhZjhhNTRhYWVhMTdmMmNiOWVjZGYzNWQ3
ODUzMDYwHhcNMjUwNDI3MDYwMDQ1WhcNMjUwNDI4MDYwMDQ1WjAzMTEwLwYDVQQD
Eyg5M2Q1MmQ0Nzg1MGNiOThkYjFhNjIzM2E4ODZhZGJkYjQwMDkzZjViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7d9mr+urksSVlQDS0H5SFEg/BtDG
RXasvWCxgmfZzMJh0lQX9T26bwUs2mS3eTO1juhxIT6TDVDdZ0ZTGbEU35HXT91n
LrG/DOzQ1kwf5Q/lw6FNuVaMGxSDYHu/7BorOelyfoX07G2WYbmpZb/0qJc3FerN
SjQvdCjsboeQC95vw5Qtob10EwgSSFsb5ZcBUILXKcLH5phDphGR71uXtuhYwAWc
sWzu+f3l8DLIlmmnNcVm7Wb+0+eYrpTjdasftyhbJAXOKiXdbcQRzCiMT2N/GOq/
6u+g0fBEc+fqRvON7Izq4Wwm5WQcaUDx4h08AnexxGTqrzVV6Zqfby9ZjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJPVLUeFDLmNsaYjOohq29tACT9bMB8GA1UdIwQY
MBaAFNQGIOpdr4pUquoX8suezfNdeFMGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi83OThmYzUtYjU0Yy00MWMxLThhZmUt
ZjA5ZTQ2YzY5YmY4LzEvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi83OThmYzUtYjU0Yy00MWMxLThhZmUtZjA5ZTQ2YzY5YmY4
LzEvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmiXUTyio
7b4tGmDI+fsnUaZNg/UTwcVopFPpvcA0AK4SlEL2+8iMLD+KB4pzlze4U6U2Id0q
BIYDcnEOSR73RYAYKic1IpVfKB9h7Lwma3NuxeMlvbkVWIA8pxucC0Z1VKHGQL5u
AgEBQkIUxCRQUIS7y9RZ2I0VR55TZbOQEI5hfLbpyJ6535RnDWSQ78vGP3P7n8hk
nuO/7EOjnAkwrpS3xmgVjFhretMhnM6F56YYDy5zIA1byJBoqqhdHET9QROLNlz8
DNFRautMLKaJMJSHCWRQ/OqhuEZKatb6t+HxbfXvCKhda9kto8L3eVfnnZtYOm47
pWPjvl9NLfd4nw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 12:57:35 2025 by rpki-client