Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
File: aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft (raw, json)
Hash identifier: JSSL93Rn+1fZ8UNP7ZbTG1q/crjI9pakGrBvk0KJERI=
Subject key identifier: A1:B6:00:F1:A4:CC:70:FC:48:5B:E1:5B:D7:56:BD:F7:21:86:1A:A1
Authority key identifier: 68:E0:78:B5:18:1B:E5:FB:E9:14:B4:12:A4:12:09:6B:C8:D7:15:49
Certificate issuer: /CN=68e078b5181be5fbe914b412a412096bc8d71549
Certificate serial: 01967E6A56AC1B8C29794896A988A8C32D98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
Manifest number: 1515
Signing time: Mon 28 Apr 2025 22:00:20 +0000
Manifest this update: Mon 28 Apr 2025 22:00:20 +0000
Manifest next update: Tue 29 Apr 2025 22:00:20 +0000
Files and hashes: 1: IXwdyS86SbDEc5r6DTqF-yyMhKo.roa (hash: MHPw/G9JdYVbN864pG/b/kFkrvcqi5VhnKr+4T0l/48=)
2: aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl (hash: JUctgppb/tSLik++oUv4mdPXyQK4Gm5MMNBrWty/pqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:6a:56:ac:1b:8c:29:79:48:96:a9:88:a8:c3:2d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e078b5181be5fbe914b412a412096bc8d71549
Validity
Not Before: Apr 28 22:00:20 2025 GMT
Not After : Apr 29 22:00:20 2025 GMT
Subject: CN=a1b600f1a4cc70fc485be15bd756bdf721861aa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:26:ed:68:22:13:a9:1b:04:c3:ca:65:5a:12:
38:59:81:24:63:a3:a4:5f:eb:a5:d9:03:a8:cc:e7:
d7:91:69:31:43:83:d0:65:13:5b:d1:be:08:a3:51:
74:9f:a5:4f:c2:4c:8d:7c:df:6e:69:c4:2c:94:c1:
03:84:82:7c:f7:92:0e:61:17:ee:2e:f6:b6:34:0e:
a8:e4:2f:eb:c2:5e:e2:eb:63:67:af:ce:48:95:a8:
d7:06:d8:ca:f1:33:e6:bf:eb:08:89:29:04:63:b7:
86:01:f1:47:07:2c:66:ff:cf:a6:c8:e3:40:de:e3:
61:03:e0:c6:09:0b:ec:92:de:7b:1b:0e:10:ec:85:
02:5d:27:4d:08:ff:ee:49:66:cc:cb:f4:67:31:fa:
2d:21:1b:7a:7f:34:a8:c9:f1:19:bc:18:8b:ec:2f:
64:7a:08:c2:2a:ce:ba:58:21:3b:33:7a:b3:a9:d7:
d5:89:3a:b9:65:d3:9f:2e:fe:aa:be:13:8e:58:47:
48:43:24:ed:83:61:c0:38:b1:5f:ec:75:db:77:5b:
09:ca:8c:45:ac:6a:3f:34:33:55:fb:6d:ba:a4:9a:
00:bc:d8:c1:d2:6f:65:fb:81:8d:75:6f:54:3b:f2:
50:24:21:40:f3:b0:55:58:08:f1:da:27:e5:c6:c9:
42:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B6:00:F1:A4:CC:70:FC:48:5B:E1:5B:D7:56:BD:F7:21:86:1A:A1
X509v3 Authority Key Identifier:
keyid:68:E0:78:B5:18:1B:E5:FB:E9:14:B4:12:A4:12:09:6B:C8:D7:15:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOB4tRgb5fvpFLQSpBIJa8jXFUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/313988-6f21-453e-8ef4-e671d94b0a20/1/aOB4tRgb5fvpFLQSpBIJa8jXFUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:ef:9f:0a:9e:6b:82:1f:8b:b5:64:ec:5e:e3:57:b0:e7:ca:
3d:3c:d8:e2:00:03:2e:a6:50:4f:7a:30:33:b0:e3:4a:21:90:
f3:0f:f6:ff:ca:de:54:23:24:66:e3:68:dd:4a:4a:d0:a5:2e:
59:58:73:9c:d2:16:a2:de:1b:91:c1:db:14:d4:4a:ea:bd:5d:
df:f1:45:9f:c7:08:77:5a:4a:9c:c0:3f:50:90:53:9f:04:c6:
50:9d:26:1d:f9:e6:db:b2:28:c9:9f:7e:da:42:35:3f:2a:61:
17:6d:94:fe:9c:16:87:43:2b:25:93:d9:9e:6a:9d:c1:0b:d3:
be:94:0d:a8:61:0e:47:5a:cc:0b:a3:5a:00:b9:78:7f:23:53:
a2:19:c2:02:b9:3e:0f:19:50:42:98:85:c9:57:f4:68:04:4a:
03:3f:e0:39:a9:8a:a2:32:a1:3c:61:65:28:0f:51:67:e7:6b:
c3:2b:e8:f0:70:1a:6b:3b:be:53:59:8a:75:94:ff:2a:15:f3:
f6:7a:46:31:dd:92:5c:36:5e:79:6b:01:1a:26:55:44:f2:56:
a2:bc:63:e6:72:7a:88:f0:c0:8f:71:12:f1:4c:2b:4d:bc:67:
75:0d:f3:ca:84:eb:de:23:af:e0:82:ee:26:fe:68:c8:00:ca:
c3:bf:b3:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ+alasG4wpeUiWqYiowy2YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZTA3OGI1MTgxYmU1ZmJlOTE0YjQxMmE0MTIwOTZiYzhk
NzE1NDkwHhcNMjUwNDI4MjIwMDIwWhcNMjUwNDI5MjIwMDIwWjAzMTEwLwYDVQQD
EyhhMWI2MDBmMWE0Y2M3MGZjNDg1YmUxNWJkNzU2YmRmNzIxODYxYWExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzibtaCITqRsEw8plWhI4WYEkY6Ok
X+ul2QOozOfXkWkxQ4PQZRNb0b4Io1F0n6VPwkyNfN9uacQslMEDhIJ895IOYRfu
Lva2NA6o5C/rwl7i62Nnr85IlajXBtjK8TPmv+sIiSkEY7eGAfFHByxm/8+myONA
3uNhA+DGCQvskt57Gw4Q7IUCXSdNCP/uSWbMy/RnMfotIRt6fzSoyfEZvBiL7C9k
egjCKs66WCE7M3qzqdfViTq5ZdOfLv6qvhOOWEdIQyTtg2HAOLFf7HXbd1sJyoxF
rGo/NDNV+226pJoAvNjB0m9l+4GNdW9UO/JQJCFA87BVWAjx2iflxslCywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKG2APGkzHD8SFvhW9dWvfchhhqhMB8GA1UdIwQY
MBaAFGjgeLUYG+X76RS0EqQSCWvI1xVJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU9CNHRSZ2I1ZnZwRkxRU3BCSUphOGpYRlVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8zMTM5ODgtNmYyMS00NTNlLThlZjQt
ZTY3MWQ5NGIwYTIwLzEvYU9CNHRSZ2I1ZnZwRkxRU3BCSUphOGpYRlVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny8zMTM5ODgtNmYyMS00NTNlLThlZjQtZTY3MWQ5NGIwYTIw
LzEvYU9CNHRSZ2I1ZnZwRkxRU3BCSUphOGpYRlVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX++fCp5r
gh+LtWTsXuNXsOfKPTzY4gADLqZQT3owM7DjSiGQ8w/2/8reVCMkZuNo3UpK0KUu
WVhznNIWot4bkcHbFNRK6r1d3/FFn8cId1pKnMA/UJBTnwTGUJ0mHfnm27IoyZ9+
2kI1PyphF22U/pwWh0MrJZPZnmqdwQvTvpQNqGEOR1rMC6NaALl4fyNTohnCArk+
DxlQQpiFyVf0aARKAz/gOamKojKhPGFlKA9RZ+drwyvo8HAaazu+U1mKdZT/KhXz
9npGMd2SXDZeeWsBGiZVRPJWorxj5nJ6iPDAj3ES8UwrTbxndQ3zyoTr3iOv4ILu
Jv5oyADKw7+zZg==
-----END CERTIFICATE-----
Generated at Tue Apr 29 04:10:10 2025 by rpki-client