Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json)
Hash identifier: xUwkS9DwC3o/NqI+Dtl8rtht36ZOqBqcykvcRs6KkpI=
Subject key identifier: F8:58:0F:33:CD:DF:18:01:50:5F:28:B2:24:58:26:6F:08:1B:CC:6E
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 019686C9067F4EFA3F53C745F452A300D8BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
Manifest number: 151A
Signing time: Wed 30 Apr 2025 13:00:43 +0000
Manifest this update: Wed 30 Apr 2025 13:00:43 +0000
Manifest next update: Thu 01 May 2025 13:00:43 +0000
Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: sKOUayV2bPP42D3xha0qqlGUtWNAo1Li1MzTrzKlmN8=)
2: qen-QoIAAGwgpqx4OQAF6M4rR_M.roa (hash: Pfgs1o9qvVrkxz8on7jtYneDypFRD7JuU2XED3GEHk4=)
3: sJjIi8LxyBaapUPztypafiGazB4.roa (hash: snoS7xcNMuCgLXX7PRPXvmr0bu9uS7kTUSsVN0SedsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 13:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:c9:06:7f:4e:fa:3f:53:c7:45:f4:52:a3:00:d8:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Apr 30 13:00:43 2025 GMT
Not After : May 1 13:00:43 2025 GMT
Subject: CN=f8580f33cddf1801505f28b22458266f081bcc6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bd:12:35:f0:5e:b0:0a:94:f3:ec:bf:f6:86:
79:c8:ba:e2:88:ff:c6:99:d8:b7:4e:26:9c:01:7a:
e1:f8:3e:f0:7d:07:66:34:4a:6e:46:1c:09:b2:83:
20:78:ea:49:c6:60:62:25:70:c2:b7:51:2b:e2:e0:
53:02:9a:4a:ee:9b:42:8a:b8:2b:45:bc:51:90:c9:
ba:41:2d:89:5b:60:39:4d:2e:49:83:54:8f:78:09:
79:ee:0a:97:01:32:9c:1c:1b:e0:be:7e:d6:cc:eb:
d8:74:90:48:ff:cd:c8:b9:f6:f4:88:fd:4b:e4:26:
44:39:96:2d:cf:c6:40:59:16:fa:d3:a0:a6:2c:b9:
a7:48:c5:e7:b5:0c:49:2b:6f:40:89:85:6c:59:05:
49:ee:26:74:41:c8:bd:0b:76:38:f6:55:8f:58:1c:
33:b3:62:47:d2:bb:09:86:63:b5:94:f4:01:11:7f:
69:f2:59:d6:24:a9:d0:6f:37:a0:a2:fb:d0:a7:d2:
63:62:d9:b5:b5:b7:5e:c2:8a:c7:e2:bf:4a:07:48:
a9:d5:93:52:5b:e4:32:af:6c:62:c2:06:4e:e7:b2:
5c:f4:9d:b4:06:b4:af:e2:a2:c1:21:76:dd:4a:8c:
98:ad:63:60:c8:d9:eb:1f:8a:ad:4e:bd:22:bd:80:
dc:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:58:0F:33:CD:DF:18:01:50:5F:28:B2:24:58:26:6F:08:1B:CC:6E
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:b4:b3:b2:72:f8:fc:43:fd:ed:03:aa:01:81:7d:43:87:00:
a3:69:9d:aa:60:2f:cf:f7:14:84:38:05:40:46:61:f7:9b:0d:
ec:66:1b:ab:4a:91:d2:5a:1f:92:ab:ae:a2:85:32:8b:ca:6e:
78:6d:4f:96:81:e4:0f:21:6d:ea:81:55:f1:b0:c7:4c:24:b2:
5a:f9:85:10:86:ef:28:2e:4f:54:07:54:38:28:77:07:94:23:
0a:85:1c:bf:6d:cc:e0:4b:fd:4d:d6:58:22:c9:86:ee:4c:03:
8f:b1:60:ed:34:0d:53:33:4b:1d:8f:b5:fe:cf:39:98:2a:04:
68:0a:84:b8:ac:c6:a8:cd:64:57:98:db:6c:02:40:fe:a5:58:
9e:9c:08:06:05:ac:1c:5b:c1:32:d4:e5:64:76:30:29:c6:12:
d1:06:03:01:83:89:a2:71:c3:12:3e:63:4b:07:cf:69:9e:db:
96:4f:74:9f:fa:81:14:c9:be:b9:de:3d:78:73:76:2f:bd:27:
28:5a:72:6f:12:e0:0b:37:ed:30:3c:e8:7b:90:9a:93:17:d7:
e1:63:14:29:f2:92:32:53:81:43:32:c0:a6:3e:a4:48:7f:73:
22:54:72:90:23:17:8f:82:1a:94:fd:06:d5:6a:3d:c2:cc:97:
11:23:cd:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaGyQZ/Tvo/U8dF9FKjANi8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzJjMDhmNzRkMmE4NDJhNzFmMjNhYjYxNDk5YjUyNjk0
ZmM3YTUwHhcNMjUwNDMwMTMwMDQzWhcNMjUwNTAxMTMwMDQzWjAzMTEwLwYDVQQD
EyhmODU4MGYzM2NkZGYxODAxNTA1ZjI4YjIyNDU4MjY2ZjA4MWJjYzZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnL0SNfBesAqU8+y/9oZ5yLriiP/G
mdi3TiacAXrh+D7wfQdmNEpuRhwJsoMgeOpJxmBiJXDCt1Er4uBTAppK7ptCirgr
RbxRkMm6QS2JW2A5TS5Jg1SPeAl57gqXATKcHBvgvn7WzOvYdJBI/83Iufb0iP1L
5CZEOZYtz8ZAWRb606CmLLmnSMXntQxJK29AiYVsWQVJ7iZ0Qci9C3Y49lWPWBwz
s2JH0rsJhmO1lPQBEX9p8lnWJKnQbzegovvQp9JjYtm1tbdeworH4r9KB0ip1ZNS
W+Qyr2xiwgZO57Jc9J20BrSv4qLBIXbdSoyYrWNgyNnrH4qtTr0ivYDcVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPhYDzPN3xgBUF8osiRYJm8IG8xuMB8GA1UdIwQY
MBaAFABywI900qhCpx8jq2FJm1JpT8elMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hYzhlN2MtNDE3NC00ODBlLWJmYWYt
NjY3ZDY2NDY5Y2Q5LzEvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny9hYzhlN2MtNDE3NC00ODBlLWJmYWYtNjY3ZDY2NDY5Y2Q5
LzEvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiLSzsnL4
/EP97QOqAYF9Q4cAo2mdqmAvz/cUhDgFQEZh95sN7GYbq0qR0lofkquuooUyi8pu
eG1PloHkDyFt6oFV8bDHTCSyWvmFEIbvKC5PVAdUOCh3B5QjCoUcv23M4Ev9TdZY
IsmG7kwDj7Fg7TQNUzNLHY+1/s85mCoEaAqEuKzGqM1kV5jbbAJA/qVYnpwIBgWs
HFvBMtTlZHYwKcYS0QYDAYOJonHDEj5jSwfPaZ7blk90n/qBFMm+ud49eHN2L70n
KFpybxLgCzftMDzoe5CakxfX4WMUKfKSMlOBQzLApj6kSH9zIlRykCMXj4IalP0G
1Wo9wsyXESPN6A==
-----END CERTIFICATE-----
Generated at Wed Apr 30 20:11:30 2025 by rpki-client