Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
File: a0I7KaGCk2si34-YJt1YOgBZE0o.mft (raw, json)
Hash identifier: C3es3xyzrrdeCiADQy+jZoEGufw6ls2JQtrGD+WVLnA=
Subject key identifier: A3:91:D6:CB:EC:62:45:BD:62:D6:FE:E3:1F:81:D6:A1:36:32:AB:E2
Authority key identifier: 6B:42:3B:29:A1:82:93:6B:22:DF:8F:98:26:DD:58:3A:00:59:13:4A
Certificate issuer: /CN=6b423b29a182936b22df8f9826dd583a0059134a
Certificate serial: 019675D512B183142600F367AEE701B9E2AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
Manifest number: 0634
Signing time: Sun 27 Apr 2025 06:00:20 +0000
Manifest this update: Sun 27 Apr 2025 06:00:20 +0000
Manifest next update: Mon 28 Apr 2025 06:00:20 +0000
Files and hashes: 1: U_Lbl4dQRImqSP6zV_MXvnCzVro.roa (hash: k+fOfvjUjOj8hU8vOKkhlBwBO0V4NXX3JC8vdkG/viY=)
2: a0I7KaGCk2si34-YJt1YOgBZE0o.crl (hash: omRF8bodzuNIYzuzms8z/KG1vhddmZbclHQBw6FC5wA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:12:b1:83:14:26:00:f3:67:ae:e7:01:b9:e2:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b423b29a182936b22df8f9826dd583a0059134a
Validity
Not Before: Apr 27 06:00:20 2025 GMT
Not After : Apr 28 06:00:20 2025 GMT
Subject: CN=a391d6cbec6245bd62d6fee31f81d6a13632abe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:08:be:e9:66:e7:86:f7:a0:cb:10:ca:48:b0:
a7:14:b7:d3:49:06:dd:0c:f5:a8:a1:63:4f:64:7e:
2d:69:ac:95:6d:51:ac:28:6e:64:4f:2c:39:1a:e0:
22:5e:3f:fa:fd:5f:04:db:e3:fe:2a:e9:40:65:19:
68:0e:9c:75:df:14:37:63:4f:09:a1:e0:55:29:97:
64:b2:05:95:45:52:1d:7b:a1:c6:e7:c9:bd:c0:b9:
0f:7b:00:8d:fd:f6:ab:68:de:5b:40:3a:18:b4:67:
b0:8a:07:7b:a5:4a:f5:fd:6b:9a:c2:9d:83:42:04:
a8:dd:4b:22:2f:27:c2:04:15:7e:83:ef:8d:79:d5:
1e:3c:d6:5a:5a:36:88:8a:2f:22:b4:da:6e:f1:28:
47:1c:23:8f:32:b3:82:d7:9b:5b:02:ec:f8:42:db:
8b:ed:0a:f5:66:36:76:e6:3a:4c:b6:dd:aa:17:ee:
aa:6d:f8:4b:29:a2:bf:21:99:9c:46:81:91:0a:11:
7a:ab:f7:3b:3a:64:56:0d:c6:4b:26:86:77:01:c6:
99:93:ca:37:5e:a5:79:89:c6:36:34:e8:2a:69:ee:
36:3a:7f:36:59:60:5e:31:db:73:91:f4:01:65:46:
11:d5:65:06:eb:68:27:c9:e8:b2:39:e1:0a:97:63:
0b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:91:D6:CB:EC:62:45:BD:62:D6:FE:E3:1F:81:D6:A1:36:32:AB:E2
X509v3 Authority Key Identifier:
keyid:6B:42:3B:29:A1:82:93:6B:22:DF:8F:98:26:DD:58:3A:00:59:13:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0I7KaGCk2si34-YJt1YOgBZE0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba0ff0-2be2-4286-a2d7-58a8a33d54a6/1/a0I7KaGCk2si34-YJt1YOgBZE0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:51:3a:cf:b6:74:00:bc:92:b1:b8:9b:d4:17:58:47:0c:cb:
65:72:51:26:59:e9:d0:e6:db:10:d4:2c:80:41:05:77:d0:10:
89:36:7a:a8:5d:48:71:6c:b4:65:2a:8c:ca:c6:7b:1b:97:27:
1a:bd:e9:7a:d8:4c:0a:e3:bc:ee:98:5e:11:85:6c:c7:a8:d6:
3b:e0:71:1b:7c:64:7d:02:cf:82:be:71:30:5c:e4:10:11:40:
d2:dd:0c:0f:08:21:3d:bd:f1:62:36:3c:60:18:91:e6:4c:a1:
4a:aa:7c:5c:2b:8d:7a:d2:e9:65:5f:c9:e2:4e:a9:d2:5d:11:
f1:3e:55:57:85:3f:5f:7c:04:0e:cc:a4:a5:d9:fe:ec:a0:8b:
44:78:02:79:41:3e:d0:dd:83:4d:dd:eb:cb:2d:77:1b:b3:a4:
4a:b6:31:e7:6c:2c:31:42:f0:b8:69:a0:2f:09:b1:80:80:26:
83:e5:a8:32:b9:eb:6e:9e:28:2d:3b:ad:6d:e3:18:b1:2c:2c:
36:46:71:aa:35:8c:71:ca:d2:7e:e1:d3:e4:aa:2d:d3:27:b9:
1a:75:22:ed:54:85:5a:a2:4b:0e:af:d8:88:1e:9f:c3:1e:dc:
17:18:34:94:ff:05:6e:06:da:dc:85:17:5d:d5:b6:93:24:7f:
0c:f3:63:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ11RKxgxQmAPNnrucBueKtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiNDIzYjI5YTE4MjkzNmIyMmRmOGY5ODI2ZGQ1ODNhMDA1
OTEzNGEwHhcNMjUwNDI3MDYwMDIwWhcNMjUwNDI4MDYwMDIwWjAzMTEwLwYDVQQD
EyhhMzkxZDZjYmVjNjI0NWJkNjJkNmZlZTMxZjgxZDZhMTM2MzJhYmUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkQi+6WbnhvegyxDKSLCnFLfTSQbd
DPWooWNPZH4taayVbVGsKG5kTyw5GuAiXj/6/V8E2+P+KulAZRloDpx13xQ3Y08J
oeBVKZdksgWVRVIde6HG58m9wLkPewCN/faraN5bQDoYtGewigd7pUr1/Wuawp2D
QgSo3UsiLyfCBBV+g++NedUePNZaWjaIii8itNpu8ShHHCOPMrOC15tbAuz4QtuL
7Qr1ZjZ25jpMtt2qF+6qbfhLKaK/IZmcRoGRChF6q/c7OmRWDcZLJoZ3AcaZk8o3
XqV5icY2NOgqae42On82WWBeMdtzkfQBZUYR1WUG62gnyeiyOeEKl2MLjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKOR1svsYkW9Ytb+4x+B1qE2MqviMB8GA1UdIwQY
MBaAFGtCOymhgpNrIt+PmCbdWDoAWRNKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTBJN0thR0NrMnNpMzQtWUp0MVlPZ0JaRTBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9iYTBmZjAtMmJlMi00Mjg2LWEyZDct
NThhOGEzM2Q1NGE2LzEvYTBJN0thR0NrMnNpMzQtWUp0MVlPZ0JaRTBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC9iYTBmZjAtMmJlMi00Mjg2LWEyZDctNThhOGEzM2Q1NGE2
LzEvYTBJN0thR0NrMnNpMzQtWUp0MVlPZ0JaRTBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATVE6z7Z0
ALySsbib1BdYRwzLZXJRJlnp0ObbENQsgEEFd9AQiTZ6qF1IcWy0ZSqMysZ7G5cn
Gr3pethMCuO87pheEYVsx6jWO+BxG3xkfQLPgr5xMFzkEBFA0t0MDwghPb3xYjY8
YBiR5kyhSqp8XCuNetLpZV/J4k6p0l0R8T5VV4U/X3wEDsykpdn+7KCLRHgCeUE+
0N2DTd3ryy13G7OkSrYx52wsMULwuGmgLwmxgIAmg+WoMrnrbp4oLTutbeMYsSws
NkZxqjWMccrSfuHT5Kot0ye5GnUi7VSFWqJLDq/YiB6fwx7cFxg0lP8Fbgba3IUX
XdW2kyR/DPNjKA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 14:17:07 2025 by rpki-client