Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
File: aQomMkmEfPlzRHQiE2RPkpvqqZc.mft (raw, json)
Hash identifier: myfoNya7JBujMQ2/vX0VCzwgN50S7bxjX3pP1paArbM=
Subject key identifier: C7:29:ED:6A:79:AC:FB:BC:74:A1:C3:61:B8:D4:D9:A0:5F:32:D2:14
Authority key identifier: 69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
Certificate issuer: /CN=690a263249847cf97344742213644f929beaa997
Certificate serial: 0196760BEE7C2437EB854C95BDEEF354C973
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
Manifest number: 076E
Signing time: Sun 27 Apr 2025 07:00:15 +0000
Manifest this update: Sun 27 Apr 2025 07:00:15 +0000
Manifest next update: Mon 28 Apr 2025 07:00:15 +0000
Files and hashes: 1: DY21Bg3oUbtzm77wQkCwRHIkQQk.roa (hash: qZIMcnP47zIIcLpWesPleUJ2XdB9zCYyYyzYWyBj/nk=)
2: aQomMkmEfPlzRHQiE2RPkpvqqZc.crl (hash: 8ERI3cZXDYz6fD6g1l9/lUvsY2B0LBXybbFnLbUWDlM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0b:ee:7c:24:37:eb:85:4c:95:bd:ee:f3:54:c9:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690a263249847cf97344742213644f929beaa997
Validity
Not Before: Apr 27 07:00:15 2025 GMT
Not After : Apr 28 07:00:15 2025 GMT
Subject: CN=c729ed6a79acfbbc74a1c361b8d4d9a05f32d214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f0:3a:f1:85:04:c2:cd:d2:95:d0:7a:5f:c6:
eb:c2:24:00:f3:d4:e3:36:9c:ba:91:8b:3c:96:de:
43:a6:11:3f:fd:77:88:69:70:95:96:4f:e6:70:45:
14:fd:20:f6:5c:29:df:ef:41:84:79:84:28:c7:e0:
68:98:f3:8a:19:05:7b:90:71:f6:21:47:f3:2f:77:
78:c4:eb:35:00:a3:a7:ed:10:6c:16:80:12:d0:b1:
b2:72:87:9a:18:03:ab:ab:b3:a0:9d:da:93:63:47:
71:8a:89:23:9f:67:78:6b:85:8b:59:9f:30:ab:6f:
0e:15:a3:5b:93:bb:94:28:a2:6d:e1:46:89:5c:d4:
ce:df:df:23:01:9f:93:eb:93:c8:c6:89:00:27:02:
21:21:34:62:4b:99:23:1c:ef:2c:87:c8:99:8a:91:
e0:95:41:a0:eb:72:37:f5:dc:6b:7b:e6:e5:53:83:
2f:c6:58:b2:a2:0b:e1:7f:29:55:29:ed:5a:e0:f4:
cd:d6:c8:9a:19:dc:ac:33:30:10:cc:de:6f:a0:e1:
f7:38:d5:61:13:2f:fd:6b:b4:07:57:bd:27:6b:13:
28:4d:50:d7:cf:d9:91:2e:b6:0e:b6:9d:f9:ae:c5:
69:63:2e:5d:84:b3:82:70:d6:63:e4:24:01:6a:7d:
bd:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:29:ED:6A:79:AC:FB:BC:74:A1:C3:61:B8:D4:D9:A0:5F:32:D2:14
X509v3 Authority Key Identifier:
keyid:69:0A:26:32:49:84:7C:F9:73:44:74:22:13:64:4F:92:9B:EA:A9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQomMkmEfPlzRHQiE2RPkpvqqZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/a76a86-75b3-4cef-a340-31b2a607ba97/1/aQomMkmEfPlzRHQiE2RPkpvqqZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:29:c5:c5:1e:de:33:3f:73:0d:ef:0a:02:84:ac:bc:8b:8f:
14:2f:72:49:dc:e9:ea:9b:3c:9a:5f:75:55:ea:9c:96:91:44:
87:bb:5c:f3:23:0e:8e:d8:d8:c9:bb:35:d8:a7:7a:15:73:bb:
25:c0:78:e8:82:53:cc:2f:38:6f:c6:0b:0a:a0:dc:98:c8:b1:
fb:cb:95:3f:59:35:58:44:d3:b2:97:90:cf:f4:af:e7:bb:d8:
5c:ed:36:62:4d:ab:34:7f:d2:6a:fa:73:cd:9f:51:cc:cd:f3:
dd:07:e8:12:7a:c3:36:67:29:2f:08:3c:92:eb:b1:b9:13:31:
ab:e0:78:ee:7e:6c:10:3e:ee:05:fe:6d:5b:9e:55:2d:a7:ec:
30:17:94:6d:8b:3e:88:66:d3:49:2e:f1:aa:a5:8e:bc:53:61:
4a:d2:ac:7f:22:c5:b4:5e:87:02:ed:2b:4a:9a:30:29:bc:0c:
f6:75:f6:2a:76:2b:df:5c:42:c9:19:a9:0d:43:9b:98:15:91:
b3:7c:a9:e0:ed:17:c0:33:58:5c:42:f0:32:7e:9b:a6:58:ef:
25:3b:9b:1d:89:ce:9f:59:73:7d:db:b2:b8:6f:f7:72:79:ea:
fc:49:bd:4d:31:22:2a:84:7e:03:fe:d6:f5:db:0a:03:9d:73:
d5:75:d9:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2C+58JDfrhUyVve7zVMlzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MGEyNjMyNDk4NDdjZjk3MzQ0NzQyMjEzNjQ0ZjkyOWJl
YWE5OTcwHhcNMjUwNDI3MDcwMDE1WhcNMjUwNDI4MDcwMDE1WjAzMTEwLwYDVQQD
EyhjNzI5ZWQ2YTc5YWNmYmJjNzRhMWMzNjFiOGQ0ZDlhMDVmMzJkMjE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm/A68YUEws3SldB6X8brwiQA89Tj
Npy6kYs8lt5DphE//XeIaXCVlk/mcEUU/SD2XCnf70GEeYQox+BomPOKGQV7kHH2
IUfzL3d4xOs1AKOn7RBsFoAS0LGycoeaGAOrq7OgndqTY0dxiokjn2d4a4WLWZ8w
q28OFaNbk7uUKKJt4UaJXNTO398jAZ+T65PIxokAJwIhITRiS5kjHO8sh8iZipHg
lUGg63I39dxre+blU4MvxliyogvhfylVKe1a4PTN1siaGdysMzAQzN5voOH3ONVh
Ey/9a7QHV70naxMoTVDXz9mRLrYOtp35rsVpYy5dhLOCcNZj5CQBan295QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMcp7Wp5rPu8dKHDYbjU2aBfMtIUMB8GA1UdIwQY
MBaAFGkKJjJJhHz5c0R0IhNkT5Kb6qmXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVFvbU1rbUVmUGx6UkhRaUUyUlBrcHZxcVpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9hNzZhODYtNzViMy00Y2VmLWEzNDAt
MzFiMmE2MDdiYTk3LzEvYVFvbU1rbUVmUGx6UkhRaUUyUlBrcHZxcVpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9hNzZhODYtNzViMy00Y2VmLWEzNDAtMzFiMmE2MDdiYTk3
LzEvYVFvbU1rbUVmUGx6UkhRaUUyUlBrcHZxcVpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYSnFxR7e
Mz9zDe8KAoSsvIuPFC9ySdzp6ps8ml91VeqclpFEh7tc8yMOjtjYybs12Kd6FXO7
JcB46IJTzC84b8YLCqDcmMix+8uVP1k1WETTspeQz/Sv57vYXO02Yk2rNH/Savpz
zZ9RzM3z3QfoEnrDNmcpLwg8kuuxuRMxq+B47n5sED7uBf5tW55VLafsMBeUbYs+
iGbTSS7xqqWOvFNhStKsfyLFtF6HAu0rSpowKbwM9nX2KnYr31xCyRmpDUObmBWR
s3yp4O0XwDNYXELwMn6bpljvJTubHYnOn1lzfduyuG/3cnnq/Em9TTEiKoR+A/7W
9dsKA51z1XXZ1g==
-----END CERTIFICATE-----
Generated at Sun Apr 27 16:38:18 2025 by rpki-client