Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json)
Hash identifier: wLT/QPQ8M710bVSJT8T3hcmYje4gxIigJV0QLQTSv/c=
Subject key identifier: E1:D9:F4:25:4D:67:F8:42:49:50:AD:60:DB:3E:35:8D:D4:78:71:5C
Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Certificate serial: 0196737921D71A8ED58D1CDA04C16A52C857
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
Manifest number: 150D
Signing time: Sat 26 Apr 2025 19:00:40 +0000
Manifest this update: Sat 26 Apr 2025 19:00:40 +0000
Manifest next update: Sun 27 Apr 2025 19:00:40 +0000
Files and hashes: 1: G3jkppDUZ7UShIbg3wj67wwITjQ.roa (hash: IM9aMDCOjn2pDhh5r2plZvteAbzhdwZ0L/lTf4RJayk=)
2: Tz1CIM1JoghruWTN6nGpazj8zTs.roa (hash: VV/wpFoAA0PEYjeaECSEYgoe19Q1uDYWZTbwDnhLY+0=)
3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: 5xqIG0+3sypMwMB4Gr1KOJb192P+Au+zgY3hefRK2os=)
4: qOyspdHf0vEJQuyvIz0XkgRHk_0.roa (hash: yR7LTFxNYmFcq/nxWYOH7mZupl2rRRW8SrPwUWcJB0k=)
5: uiGdfZv36ngdlEPtH0Dctu5_0kI.roa (hash: kwlBzu/ziaLKG7neS7FV84L3FCZ7YdUCR1fgHvPBMoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 19:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:79:21:d7:1a:8e:d5:8d:1c:da:04:c1:6a:52:c8:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39
Validity
Not Before: Apr 26 19:00:40 2025 GMT
Not After : Apr 27 19:00:40 2025 GMT
Subject: CN=e1d9f4254d67f8424950ad60db3e358dd478715c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8d:2b:52:8b:c2:b1:17:10:47:cf:d6:01:32:
d3:8c:65:89:fa:c1:af:5c:62:f1:d9:da:ba:ba:e4:
78:4b:92:d3:ba:ea:85:e7:0e:ff:c1:1f:c2:27:b9:
5d:ad:0d:38:b4:4a:17:3e:22:5c:cc:2c:47:7f:30:
7d:bd:ca:8f:51:f1:44:86:4f:bd:40:35:02:83:ec:
db:1e:38:01:23:3d:93:a9:48:0a:ba:a0:68:c1:ed:
27:70:70:f2:0c:d6:82:d8:cb:db:16:6c:48:3c:38:
af:7c:a5:be:fe:67:97:76:1d:1f:13:db:40:88:00:
62:c0:c2:4a:ab:25:29:6e:8a:83:55:28:80:18:d5:
2e:27:68:52:c2:d4:30:79:21:b8:29:d7:a4:f0:b5:
af:d6:96:dd:8e:59:fa:aa:11:7c:c8:66:ce:fa:f6:
1c:c3:74:d5:38:9e:c8:d5:1f:4f:a3:40:bd:dc:71:
c4:f3:2b:29:62:a5:05:d1:e2:b7:7f:70:d5:72:15:
4b:6b:bf:5c:d7:d9:94:19:46:03:7a:e4:a8:10:c5:
f1:04:b9:fb:24:4d:13:cf:ef:3a:2b:19:94:70:46:
5a:84:79:be:2e:fe:1f:4c:c7:80:a7:e8:58:e7:72:
d1:37:21:3e:40:bd:85:b1:5f:2d:dc:e8:95:89:23:
0d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D9:F4:25:4D:67:F8:42:49:50:AD:60:DB:3E:35:8D:D4:78:71:5C
X509v3 Authority Key Identifier:
keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:88:00:57:fa:86:f5:0d:3e:45:32:b1:2e:8b:a2:25:20:b3:
39:08:d6:5e:30:1b:e5:52:30:a5:18:a2:ab:c7:93:90:84:83:
5d:6d:e4:6f:fb:68:d4:45:ff:75:84:76:d4:16:a5:bc:07:12:
6f:db:78:9a:c7:f0:1e:88:dc:e8:4f:78:cd:0c:7d:82:5e:c8:
a1:48:b5:fd:fc:74:51:15:80:ed:c0:d2:e9:e2:0f:f3:f3:0a:
37:56:cc:f0:59:92:a1:0b:df:df:8d:02:59:53:e1:43:86:60:
bf:dd:54:78:87:05:87:8e:a3:ec:7c:4b:ad:03:95:10:73:56:
8b:e9:77:4e:7a:2d:9e:cc:26:a2:4a:76:9e:3a:19:70:cc:e1:
23:71:86:3c:bf:bc:48:1b:46:6d:a2:12:e1:9d:bb:1e:71:88:
3f:a5:49:15:34:a1:60:1a:13:59:65:08:f7:7b:38:ae:93:1c:
a1:e0:85:11:f7:0b:a7:b5:36:4d:3d:04:15:35:2d:e5:0a:4a:
83:d5:2b:bc:f7:6d:6c:87:11:f1:72:42:a5:61:2f:dd:20:90:
9d:cd:61:4a:e5:5e:82:95:59:c1:4f:10:40:18:c7:4b:c3:da:
be:38:6e:32:02:04:00:97:60:02:38:81:f7:76:17:2a:ae:19:
b7:02:cf:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZzeSHXGo7VjRzaBMFqUshXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZThiYWVhOTVkNDA0MDM0OGYwYTg5ZWM0ZTRiZDE1Mjc1
ZjZjMzkwHhcNMjUwNDI2MTkwMDQwWhcNMjUwNDI3MTkwMDQwWjAzMTEwLwYDVQQD
EyhlMWQ5ZjQyNTRkNjdmODQyNDk1MGFkNjBkYjNlMzU4ZGQ0Nzg3MTVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuY0rUovCsRcQR8/WATLTjGWJ+sGv
XGLx2dq6uuR4S5LTuuqF5w7/wR/CJ7ldrQ04tEoXPiJczCxHfzB9vcqPUfFEhk+9
QDUCg+zbHjgBIz2TqUgKuqBowe0ncHDyDNaC2MvbFmxIPDivfKW+/meXdh0fE9tA
iABiwMJKqyUpboqDVSiAGNUuJ2hSwtQweSG4Kdek8LWv1pbdjln6qhF8yGbO+vYc
w3TVOJ7I1R9Po0C93HHE8yspYqUF0eK3f3DVchVLa79c19mUGUYDeuSoEMXxBLn7
JE0Tz+86KxmUcEZahHm+Lv4fTMeAp+hY53LRNyE+QL2FsV8t3OiViSMNGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOHZ9CVNZ/hCSVCtYNs+NY3UeHFcMB8GA1UdIwQY
MBaAFGjouuqV1AQDSPConsTkvRUnX2w5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU9pNjZwWFVCQU5JOEtpZXhPUzlGU2RmYkRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83NjUzZTAtOGE3Mi00MzUxLWJmY2Ut
MzcxMWZhZThjYTc3LzEvYU9pNjZwWFVCQU5JOEtpZXhPUzlGU2RmYkRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny83NjUzZTAtOGE3Mi00MzUxLWJmY2UtMzcxMWZhZThjYTc3
LzEvYU9pNjZwWFVCQU5JOEtpZXhPUzlGU2RmYkRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE4gAV/qG
9Q0+RTKxLouiJSCzOQjWXjAb5VIwpRiiq8eTkISDXW3kb/to1EX/dYR21BalvAcS
b9t4msfwHojc6E94zQx9gl7IoUi1/fx0URWA7cDS6eIP8/MKN1bM8FmSoQvf340C
WVPhQ4Zgv91UeIcFh46j7HxLrQOVEHNWi+l3Tnotnswmokp2njoZcMzhI3GGPL+8
SBtGbaIS4Z27HnGIP6VJFTShYBoTWWUI93s4rpMcoeCFEfcLp7U2TT0EFTUt5QpK
g9UrvPdtbIcR8XJCpWEv3SCQnc1hSuVegpVZwU8QQBjHS8PavjhuMgIEAJdgAjiB
93YXKq4ZtwLPwA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 05:05:13 2025 by rpki-client