Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
File: ga5w39QwUnNv6F8A0phM43a3brM.mft (raw, json)
Hash identifier: eVfa8hKMY70ZgwHUcyraqRa1GbJr5kod17aGPN9ZhmQ=
Subject key identifier: 2A:45:05:4B:8D:B8:C2:E7:30:A8:8A:32:A7:31:95:74:98:83:37:66
Authority key identifier: 81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
Certificate issuer: /CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Certificate serial: 0196760C474DA04CC5AD50653645E30C3E2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
Manifest number: 066A
Signing time: Sun 27 Apr 2025 07:00:38 +0000
Manifest this update: Sun 27 Apr 2025 07:00:38 +0000
Manifest next update: Mon 28 Apr 2025 07:00:38 +0000
Files and hashes: 1: PWVVCu9dDfBo5aJQ6tlPGGlV6B0.roa (hash: 7Oj98eAXsnZMzEk2r6cNh4fSjsZETDRb2EQ95CICh04=)
2: ga5w39QwUnNv6F8A0phM43a3brM.crl (hash: XuQl/JOmwlzG5mZ2H3C//rH+Dm/wLLg/Bc9RT41lQik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:47:4d:a0:4c:c5:ad:50:65:36:45:e3:0c:3e:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Validity
Not Before: Apr 27 07:00:38 2025 GMT
Not After : Apr 28 07:00:38 2025 GMT
Subject: CN=2a45054b8db8c2e730a88a32a731957498833766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:25:d7:fb:a9:bd:d6:cc:2f:48:4e:1d:ed:3f:
ba:46:9a:97:2a:ae:18:26:75:df:7a:53:0f:b9:bc:
b4:d9:43:d7:a7:cd:3e:21:d7:a3:b9:6e:37:62:a3:
42:9d:02:56:b1:7a:5b:e1:a5:2a:5b:0c:e7:19:72:
4b:f2:2b:28:6f:b9:26:21:88:d9:86:57:88:3e:cb:
07:98:31:c1:23:83:39:38:fc:00:de:ae:71:12:a5:
72:ee:26:cd:27:de:76:c3:67:b2:16:d1:4a:62:f4:
6c:ff:53:49:7c:07:1d:9e:74:66:84:59:b3:ad:9b:
da:d7:6b:49:56:76:d9:2d:42:6b:5e:a0:3e:b6:c3:
38:3c:fd:f9:f5:48:43:73:62:01:12:cb:03:4f:d3:
1a:6a:4b:2c:d7:2c:86:ef:04:27:c6:47:12:6d:19:
c2:3d:62:59:30:e6:c7:f8:b6:ab:48:d4:5f:36:15:
d4:3e:31:54:72:0e:97:01:f2:23:b4:46:3c:43:c0:
0f:f3:96:8f:74:b6:d2:7f:da:55:99:3c:bb:03:c3:
b4:2b:91:71:99:65:3c:24:aa:46:35:f7:1c:5e:ea:
24:85:40:8d:7b:2e:b9:86:44:a6:ea:d2:45:94:8d:
1a:e8:c2:e5:54:88:35:83:53:ea:be:34:aa:0a:07:
23:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:45:05:4B:8D:B8:C2:E7:30:A8:8A:32:A7:31:95:74:98:83:37:66
X509v3 Authority Key Identifier:
keyid:81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:34:4b:57:d2:3a:c9:67:94:d9:1e:57:11:66:d5:d7:9d:cc:
39:16:f4:00:9b:6b:fa:81:ee:72:06:ac:41:4e:99:1d:3c:7b:
22:df:b2:9e:c1:04:b0:79:de:68:39:39:fa:47:28:90:35:15:
86:73:d7:ea:57:d6:e8:c4:b6:b3:83:61:ec:3f:95:38:80:44:
1c:a0:81:d7:69:7c:1d:03:57:f0:29:8c:54:b8:d1:fa:3b:4d:
2a:79:26:0f:74:ec:90:33:4c:f7:d6:50:95:6c:1b:72:07:42:
e3:3c:98:06:0b:5a:b6:a8:7c:2b:46:2a:5d:17:05:c1:0f:47:
3d:29:04:c8:96:2e:e7:0d:12:ea:17:9c:ef:2f:cb:31:f7:1a:
cc:67:cb:a4:7a:ee:85:50:4e:e8:9e:ac:f5:f1:ab:57:9c:52:
de:43:8c:ba:09:4f:b6:33:cb:23:dd:92:b0:0d:c8:2f:b5:57:
51:36:4f:d4:18:fc:7b:8d:3a:88:6c:dd:f0:f5:b9:cc:be:88:
2b:e7:25:a4:f1:28:f6:cc:0e:f7:ea:5d:7b:43:e3:81:fa:56:
68:ee:4d:4e:9c:18:31:ee:24:6e:e2:53:4b:74:ef:b0:a4:73:
73:1e:de:fd:c5:7a:fd:29:dd:5d:60:35:0b:56:80:9b:f7:9e:
9b:e6:84:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2DEdNoEzFrVBlNkXjDD4uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYWU3MGRmZDQzMDUyNzM2ZmU4NWYwMGQyOTg0Y2UzNzZi
NzZlYjMwHhcNMjUwNDI3MDcwMDM4WhcNMjUwNDI4MDcwMDM4WjAzMTEwLwYDVQQD
EygyYTQ1MDU0YjhkYjhjMmU3MzBhODhhMzJhNzMxOTU3NDk4ODMzNzY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuyXX+6m91swvSE4d7T+6RpqXKq4Y
JnXfelMPuby02UPXp80+IdejuW43YqNCnQJWsXpb4aUqWwznGXJL8isob7kmIYjZ
hleIPssHmDHBI4M5OPwA3q5xEqVy7ibNJ952w2eyFtFKYvRs/1NJfAcdnnRmhFmz
rZva12tJVnbZLUJrXqA+tsM4PP359UhDc2IBEssDT9Maakss1yyG7wQnxkcSbRnC
PWJZMObH+LarSNRfNhXUPjFUcg6XAfIjtEY8Q8AP85aPdLbSf9pVmTy7A8O0K5Fx
mWU8JKpGNfccXuokhUCNey65hkSm6tJFlI0a6MLlVIg1g1PqvjSqCgcjzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCpFBUuNuMLnMKiKMqcxlXSYgzdmMB8GA1UdIwQY
MBaAFIGucN/UMFJzb+hfANKYTON2t26zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2E1dzM5UXdVbk52NkY4QTBwaE00M2EzYnJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS82ZWExNmMtYjkyZi00MDQxLWE1MDgt
YmI1ODkzYTZhYzkxLzEvZ2E1dzM5UXdVbk52NkY4QTBwaE00M2EzYnJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS82ZWExNmMtYjkyZi00MDQxLWE1MDgtYmI1ODkzYTZhYzkx
LzEvZ2E1dzM5UXdVbk52NkY4QTBwaE00M2EzYnJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2DRLV9I6
yWeU2R5XEWbV153MORb0AJtr+oHucgasQU6ZHTx7It+ynsEEsHneaDk5+kcokDUV
hnPX6lfW6MS2s4Nh7D+VOIBEHKCB12l8HQNX8CmMVLjR+jtNKnkmD3TskDNM99ZQ
lWwbcgdC4zyYBgtatqh8K0YqXRcFwQ9HPSkEyJYu5w0S6hec7y/LMfcazGfLpHru
hVBO6J6s9fGrV5xS3kOMuglPtjPLI92SsA3IL7VXUTZP1Bj8e406iGzd8PW5zL6I
K+clpPEo9swO9+pde0PjgfpWaO5NTpwYMe4kbuJTS3TvsKRzcx7e/cV6/SndXWA1
C1aAm/eem+aEbg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 13:43:46 2025 by rpki-client