Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
File: aEZbnPs2jGnssOP-o7VCupxzAfQ.mft (raw, json)
Hash identifier: sfL2kgeea3dWBQ9IZkTLpfevlXAkTttBMpi0tJ9FltQ=
Subject key identifier: B0:EB:12:76:15:12:AB:9E:3B:F9:EC:BB:63:A3:88:6F:16:5F:7A:F4
Authority key identifier: 68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
Certificate issuer: /CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Certificate serial: 01967D21034570747251E5C537F16DC29F05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
Manifest number: 122B
Signing time: Mon 28 Apr 2025 16:00:37 +0000
Manifest this update: Mon 28 Apr 2025 16:00:37 +0000
Manifest next update: Tue 29 Apr 2025 16:00:37 +0000
Files and hashes: 1: aEZbnPs2jGnssOP-o7VCupxzAfQ.crl (hash: 6caaXiwu3+3hteVRebGBZaaOYyxkr19rJ7i5EwIDu1E=)
2: s3MszUL2Sssrqjezj_btDkPTmQg.roa (hash: rgkSdfEiUESbKFQA8EcHOyD2UnXv2kAlPQ3EqnLhSNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:21:03:45:70:74:72:51:e5:c5:37:f1:6d:c2:9f:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Validity
Not Before: Apr 28 16:00:37 2025 GMT
Not After : Apr 29 16:00:37 2025 GMT
Subject: CN=b0eb12761512ab9e3bf9ecbb63a3886f165f7af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b7:64:6c:34:fd:3a:93:aa:2c:80:8f:41:17:
13:af:8d:99:dd:ae:6c:58:38:77:fd:37:5d:0a:c5:
77:95:76:e8:b9:22:60:0a:61:ff:3a:ed:75:06:b9:
2a:54:fb:d9:19:50:4a:11:c2:b4:9a:06:80:83:72:
36:86:a2:9a:da:21:f1:61:24:f2:0b:73:d9:a9:11:
3b:29:98:2b:3c:e6:d4:51:0f:d2:7c:4a:57:19:8c:
7f:19:72:06:33:52:f6:6d:d9:7d:4a:e4:58:29:03:
90:09:86:79:37:ca:4b:41:6d:c0:13:9f:0d:fb:1e:
8a:12:fe:fb:cf:c6:7f:bd:b7:38:ed:09:b9:f0:1a:
06:a7:5f:10:b5:34:8b:2c:fa:7a:37:06:39:47:58:
4f:bb:f2:aa:83:ba:2b:b5:23:c8:00:e7:ac:d4:53:
78:7f:29:3b:44:d6:6a:ad:66:47:37:84:63:a2:80:
5f:e0:ac:0f:7f:02:03:45:ea:cd:12:63:2f:4d:83:
b6:a3:80:e2:24:f5:16:b9:5b:d6:ba:34:d2:c3:9d:
7d:1a:f7:a2:7b:14:f3:4d:cc:6e:33:93:68:89:b5:
44:d4:c9:05:de:c2:ed:0d:3f:6b:66:b1:02:b8:95:
cf:79:44:79:b8:b7:f6:a1:d7:4f:86:2e:8c:ff:fb:
3c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:EB:12:76:15:12:AB:9E:3B:F9:EC:BB:63:A3:88:6F:16:5F:7A:F4
X509v3 Authority Key Identifier:
keyid:68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:6b:ec:12:85:16:e4:70:97:4e:80:42:fc:44:ca:94:6f:fa:
54:16:8c:3c:cc:ca:e3:b7:2e:a5:7e:7c:18:2c:51:5e:cb:e5:
04:48:9e:7a:a6:36:75:20:d1:00:c9:c6:18:fc:8c:27:78:f3:
63:e2:e3:75:81:3a:e1:47:6d:0a:5f:21:50:31:84:73:8f:41:
6f:59:b5:90:7f:64:82:0f:01:3c:8c:80:fd:6b:11:2f:1a:d5:
92:19:56:bf:e5:52:7d:21:7b:fa:89:ea:01:6d:11:39:63:fb:
0f:5e:55:55:57:ca:f5:77:d2:d7:7b:d4:a3:e7:d2:c3:69:16:
3e:86:95:9f:c5:24:07:23:60:93:20:68:e7:1a:07:2e:fb:26:
49:7d:68:e4:68:69:7c:8f:7c:51:e3:9f:55:b2:7f:96:8a:69:
29:25:56:1e:22:a5:1a:67:0b:70:8e:78:a7:a8:e3:50:02:3b:
77:8b:c0:56:dd:48:c5:cf:2d:19:94:dd:f9:25:e9:9f:21:f5:
83:ac:8a:b7:cd:43:5b:ee:20:b4:c3:c6:b4:06:fe:68:18:88:
7e:69:45:2c:83:26:27:c2:a7:6f:53:91:ea:ad:f2:c6:0a:be:
62:b7:19:e0:fb:5e:1b:92:79:47:0c:25:30:66:9e:ee:cb:8c:
59:82:f2:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ9IQNFcHRyUeXFN/Ftwp8FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4NDY1YjljZmIzNjhjNjllY2IwZTNmZWEzYjU0MmJhOWM3
MzAxZjQwHhcNMjUwNDI4MTYwMDM3WhcNMjUwNDI5MTYwMDM3WjAzMTEwLwYDVQQD
EyhiMGViMTI3NjE1MTJhYjllM2JmOWVjYmI2M2EzODg2ZjE2NWY3YWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAordkbDT9OpOqLICPQRcTr42Z3a5s
WDh3/TddCsV3lXbouSJgCmH/Ou11BrkqVPvZGVBKEcK0mgaAg3I2hqKa2iHxYSTy
C3PZqRE7KZgrPObUUQ/SfEpXGYx/GXIGM1L2bdl9SuRYKQOQCYZ5N8pLQW3AE58N
+x6KEv77z8Z/vbc47Qm58BoGp18QtTSLLPp6NwY5R1hPu/Kqg7ortSPIAOes1FN4
fyk7RNZqrWZHN4RjooBf4KwPfwIDRerNEmMvTYO2o4DiJPUWuVvWujTSw519Gvei
exTzTcxuM5NoibVE1MkF3sLtDT9rZrECuJXPeUR5uLf2oddPhi6M//s8RwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLDrEnYVEqueO/nsu2OjiG8WX3r0MB8GA1UdIwQY
MBaAFGhGW5z7Noxp7LDj/qO1QrqccwH0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUVaYm5QczJqR25zc09QLW83VkN1cHh6QWZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC8yNjdmOWUtY2NjYy00NDNmLWJlYWMt
MWFlYTViZTE1MGZhLzEvYUVaYm5QczJqR25zc09QLW83VkN1cHh6QWZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC8yNjdmOWUtY2NjYy00NDNmLWJlYWMtMWFlYTViZTE1MGZh
LzEvYUVaYm5QczJqR25zc09QLW83VkN1cHh6QWZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdmvsEoUW
5HCXToBC/ETKlG/6VBaMPMzK47cupX58GCxRXsvlBEieeqY2dSDRAMnGGPyMJ3jz
Y+LjdYE64UdtCl8hUDGEc49Bb1m1kH9kgg8BPIyA/WsRLxrVkhlWv+VSfSF7+onq
AW0ROWP7D15VVVfK9XfS13vUo+fSw2kWPoaVn8UkByNgkyBo5xoHLvsmSX1o5Ghp
fI98UeOfVbJ/loppKSVWHiKlGmcLcI54p6jjUAI7d4vAVt1Ixc8tGZTd+SXpnyH1
g6yKt81DW+4gtMPGtAb+aBiIfmlFLIMmJ8Knb1OR6q3yxgq+YrcZ4PteG5J5Rwwl
MGae7suMWYLyzg==
-----END CERTIFICATE-----
Generated at Mon Apr 28 21:07:52 2025 by rpki-client