Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: DWoVnPTtkqUVozRGxXJPuT01oUauKTrSZjA6xID/UCc=
Subject key identifier: E7:2F:D5:F0:C0:F0:3E:DD:AA:16:3C:D4:B6:5B:55:6A:7E:7B:D9:C3
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 01969604F654691E7E68DA18CCE624E250CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 0691
Signing time: Sat 03 May 2025 12:00:29 +0000
Manifest this update: Sat 03 May 2025 12:00:29 +0000
Manifest next update: Sun 04 May 2025 12:00:29 +0000
Files and hashes: 1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=)
2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: I29euhNwTrDF82qoCM2XJbrSjkbr2K81Z+bbL9Y9Kfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:96:04:f6:54:69:1e:7e:68:da:18:cc:e6:24:e2:50:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: May 3 12:00:29 2025 GMT
Not After : May 4 12:00:29 2025 GMT
Subject: CN=e72fd5f0c0f03eddaa163cd4b65b556a7e7bd9c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ad:29:d0:3f:ea:90:da:c1:6b:d6:19:f0:b8:
71:84:d3:9e:12:a6:b2:d4:37:ac:3e:f3:0f:35:39:
0b:1a:29:2c:8e:a1:7c:45:07:24:4c:cb:8b:22:1f:
28:d5:99:d1:2a:ea:fe:94:e8:32:13:25:a4:57:b8:
ee:c4:46:ba:27:70:d8:d3:8d:78:cd:bf:e1:67:ae:
b2:07:51:90:2e:42:48:4e:c2:d3:ea:69:9c:ed:41:
93:9b:00:60:36:59:9e:ab:b0:09:6c:68:b9:af:1d:
7b:dc:03:09:0d:f6:ef:00:fa:4d:93:bb:d5:e5:40:
55:98:c0:81:98:29:83:7b:b2:c8:74:2e:59:7a:7b:
e6:95:0b:fe:e9:7c:69:b9:ef:c4:13:b8:32:43:90:
09:c9:ab:ed:2d:26:b8:b3:d7:6f:c2:7e:a9:5d:5d:
6e:0e:73:f6:09:8c:c1:dd:e8:87:b5:36:1b:a9:ec:
b4:ee:04:4c:de:54:41:a3:e6:95:d3:0a:c3:aa:c5:
c4:8e:2b:47:87:d7:d0:78:60:48:c3:17:6a:e2:72:
22:6f:68:67:9a:f4:83:f6:3e:38:21:ff:40:81:8b:
f7:58:b4:37:79:26:1d:09:ef:cc:94:81:c1:84:3f:
d9:26:fc:35:ba:46:48:9e:9d:08:20:c1:7c:58:38:
f5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2F:D5:F0:C0:F0:3E:DD:AA:16:3C:D4:B6:5B:55:6A:7E:7B:D9:C3
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:43:f4:96:aa:ac:42:ec:a6:62:e7:94:c4:60:f7:51:b9:48:
15:2c:f8:25:df:39:14:dc:7c:be:f0:51:71:0e:05:35:b8:01:
46:df:04:af:00:ac:e8:05:c5:e8:f8:8b:57:cf:28:ba:6d:2f:
b8:a3:b6:53:38:55:f9:6a:e2:40:ac:ca:2e:be:84:d1:60:e9:
1d:b9:30:cf:c1:16:38:1f:d7:ef:2e:71:ff:3f:b7:71:b2:35:
98:5c:83:c4:0a:f3:32:85:2c:aa:99:c6:4d:86:b4:d5:34:41:
a0:aa:ac:5f:ab:51:5d:d0:bd:c1:75:d3:cf:bb:74:fd:61:ae:
cb:19:4b:4b:ab:bd:c0:1b:f4:09:23:f8:86:71:8b:58:01:dd:
39:9f:7f:7c:ff:06:03:57:1a:96:57:0a:b0:37:84:f5:bc:9e:
f2:12:86:95:1f:0f:0b:90:46:9a:1a:37:da:b4:4a:b1:11:13:
2a:ed:be:e4:6b:48:ff:18:fe:55:77:ba:b6:a2:b7:62:04:61:
91:13:c6:96:38:c1:cb:17:77:66:92:e7:98:db:b6:bf:1a:aa:
18:d2:60:bd:1f:e1:82:e8:03:c4:2d:cf:e9:d3:e1:c7:bb:a9:
f7:c9:f6:a1:22:03:3b:74:e9:bb:4a:0d:87:20:22:bd:5d:c1:
fd:92:dd:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaWBPZUaR5+aNoYzOYk4lDLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzZWE1MDhhODViYzczYTlhYWEyMDNhOGE3YmFmOWMxNjJl
NmYzNmMwHhcNMjUwNTAzMTIwMDI5WhcNMjUwNTA0MTIwMDI5WjAzMTEwLwYDVQQD
EyhlNzJmZDVmMGMwZjAzZWRkYWExNjNjZDRiNjViNTU2YTdlN2JkOWMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArK0p0D/qkNrBa9YZ8LhxhNOeEqay
1DesPvMPNTkLGiksjqF8RQckTMuLIh8o1ZnRKur+lOgyEyWkV7juxEa6J3DY0414
zb/hZ66yB1GQLkJITsLT6mmc7UGTmwBgNlmeq7AJbGi5rx173AMJDfbvAPpNk7vV
5UBVmMCBmCmDe7LIdC5ZenvmlQv+6Xxpue/EE7gyQ5AJyavtLSa4s9dvwn6pXV1u
DnP2CYzB3eiHtTYbqey07gRM3lRBo+aV0wrDqsXEjitHh9fQeGBIwxdq4nIib2hn
mvSD9j44If9AgYv3WLQ3eSYdCe/MlIHBhD/ZJvw1ukZInp0IIMF8WDj1xQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOcv1fDA8D7dqhY81LZbVWp+e9nDMB8GA1UdIwQY
MBaAFAPqUIqFvHOpqqIDqKe6+cFi5vNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAt
ZDcyNzA5MDVlOTIzLzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAtZDcyNzA5MDVlOTIz
LzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALUP0lqqs
QuymYueUxGD3UblIFSz4Jd85FNx8vvBRcQ4FNbgBRt8ErwCs6AXF6PiLV88oum0v
uKO2UzhV+WriQKzKLr6E0WDpHbkwz8EWOB/X7y5x/z+3cbI1mFyDxArzMoUsqpnG
TYa01TRBoKqsX6tRXdC9wXXTz7t0/WGuyxlLS6u9wBv0CSP4hnGLWAHdOZ9/fP8G
A1callcKsDeE9bye8hKGlR8PC5BGmho32rRKsRETKu2+5GtI/xj+VXe6tqK3YgRh
kRPGljjByxd3ZpLnmNu2vxqqGNJgvR/hgugDxC3P6dPhx7up98n2oSIDO3Tpu0oN
hyAivV3B/ZLd0A==
-----END CERTIFICATE-----
Generated at Sat May 3 14:17:09 2025 by rpki-client