Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
File: AyHqOVCODhemUf6SrCnqOIMtC_8.mft (raw, json)
Hash identifier: SXRSTadG7c+93wMmfU4s5axNf2PFT7+TBKgqv3muDV8=
Subject key identifier: 66:20:EF:10:A7:B6:A8:73:22:A4:94:0C:B2:60:C8:F4:98:64:44:9D
Authority key identifier: 03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
Certificate issuer: /CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Certificate serial: 0196748B58BBD0CD87028FF6CDD6E69BAB49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
Manifest number: 13AC
Signing time: Sun 27 Apr 2025 00:00:11 +0000
Manifest this update: Sun 27 Apr 2025 00:00:11 +0000
Manifest next update: Mon 28 Apr 2025 00:00:11 +0000
Files and hashes: 1: AyHqOVCODhemUf6SrCnqOIMtC_8.crl (hash: mxEjrq8QpNq8AJ+kQgtfYXGPBD9pC45NxhgkOAEYscY=)
2: bOONrlZHdROoIahZ7NmIjgIdExM.roa (hash: 1aT2l6/v3aO2MOldiF+P6gsdMx47ItIcMI7fEC/C0L0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 00:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:8b:58:bb:d0:cd:87:02:8f:f6:cd:d6:e6:9b:ab:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321ea39508e0e17a651fe92ac29ea38832d0bff
Validity
Not Before: Apr 27 00:00:11 2025 GMT
Not After : Apr 28 00:00:11 2025 GMT
Subject: CN=6620ef10a7b6a87322a4940cb260c8f49864449d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0c:84:a7:a4:57:7b:bc:50:1a:06:75:4e:28:
d1:3d:06:63:59:47:fb:af:e5:fc:20:c3:1d:61:e5:
c9:f8:51:6f:e4:72:9c:5c:ba:c0:38:38:7d:de:7a:
04:68:38:0a:61:6a:68:6a:6a:49:63:9a:86:cf:d6:
34:47:f2:79:9b:05:87:75:2f:41:c1:25:70:06:c3:
ea:2d:28:8d:1f:a0:b8:83:04:27:0b:95:41:02:9f:
c2:85:76:3a:fb:9c:05:70:7f:a6:db:d8:c6:ad:08:
84:38:26:e6:c3:bf:cf:9d:18:9f:c1:1b:2e:f8:75:
ff:0c:d3:40:c9:ef:24:87:d0:4f:3e:05:5f:a6:52:
d7:c8:15:f7:6f:39:1e:5a:4d:3b:7c:89:d5:ed:1c:
52:f8:d3:35:08:0d:54:01:5f:83:b6:d8:ed:ac:1d:
6f:f9:7c:56:09:47:e1:b1:e1:f3:8f:ad:d3:84:fd:
9f:1a:b8:8f:69:97:3e:7c:27:8b:24:b2:9b:b1:b1:
d9:8d:80:3c:3b:8d:8a:ad:0b:68:f6:8d:f3:1e:96:
b9:6a:5b:ba:48:da:71:72:15:75:44:fc:5e:cb:c6:
ec:9f:ed:28:da:9d:23:b2:28:d8:7b:17:33:04:86:
81:25:72:c6:51:cf:f5:e3:88:5d:0b:c5:7c:64:88:
53:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:20:EF:10:A7:B6:A8:73:22:A4:94:0C:B2:60:C8:F4:98:64:44:9D
X509v3 Authority Key Identifier:
keyid:03:21:EA:39:50:8E:0E:17:A6:51:FE:92:AC:29:EA:38:83:2D:0B:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyHqOVCODhemUf6SrCnqOIMtC_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c4817e-8281-42f7-9f4d-8cf805511002/1/AyHqOVCODhemUf6SrCnqOIMtC_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:85:c7:60:a7:ca:a5:2d:f1:23:e2:1f:cf:73:f1:cd:c2:38:
0f:a1:66:a6:90:86:be:04:29:ea:cb:a7:84:e7:8f:f6:d3:28:
01:a1:41:89:dc:5f:19:e7:f9:ee:3a:14:e7:17:34:e3:02:5e:
5e:72:ec:37:0c:a1:16:15:81:a3:de:da:68:b5:c0:35:62:42:
81:45:4c:96:ef:2e:e7:f2:92:0a:4d:65:aa:11:3d:d1:0c:dd:
c2:3a:19:b1:4e:e5:3e:eb:30:08:85:80:19:dc:9a:f4:c0:5a:
4a:b0:a5:ab:29:ac:4c:be:27:7b:91:5c:20:5c:f0:5a:56:3f:
9c:28:d7:b3:bf:ca:10:e6:bf:72:bb:78:db:c0:f0:ec:37:af:
31:ad:62:75:ca:57:78:0f:6c:20:64:ba:af:1b:00:f9:1a:0f:
29:92:85:70:32:02:5b:53:81:c9:fc:c5:31:00:93:7c:a8:a7:
ed:49:d7:4d:3a:27:51:b4:99:41:0b:c0:63:6d:69:ff:92:9f:
41:2b:42:6e:93:8b:26:7d:ea:44:81:e8:4f:66:0c:42:26:4e:
49:42:87:49:68:c9:55:9f:28:21:42:59:9c:10:84:83:3d:d4:
74:db:bb:e9:20:5b:51:c6:27:3c:32:bb:89:6f:ab:ee:ee:cd:
19:77:b5:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ0i1i70M2HAo/2zdbmm6tJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzMjFlYTM5NTA4ZTBlMTdhNjUxZmU5MmFjMjllYTM4ODMy
ZDBiZmYwHhcNMjUwNDI3MDAwMDExWhcNMjUwNDI4MDAwMDExWjAzMTEwLwYDVQQD
Eyg2NjIwZWYxMGE3YjZhODczMjJhNDk0MGNiMjYwYzhmNDk4NjQ0NDlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywyEp6RXe7xQGgZ1TijRPQZjWUf7
r+X8IMMdYeXJ+FFv5HKcXLrAODh93noEaDgKYWpoampJY5qGz9Y0R/J5mwWHdS9B
wSVwBsPqLSiNH6C4gwQnC5VBAp/ChXY6+5wFcH+m29jGrQiEOCbmw7/PnRifwRsu
+HX/DNNAye8kh9BPPgVfplLXyBX3bzkeWk07fInV7RxS+NM1CA1UAV+DttjtrB1v
+XxWCUfhseHzj63ThP2fGriPaZc+fCeLJLKbsbHZjYA8O42KrQto9o3zHpa5alu6
SNpxchV1RPxey8bsn+0o2p0jsijYexczBIaBJXLGUc/144hdC8V8ZIhTsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGYg7xCntqhzIqSUDLJgyPSYZESdMB8GA1UdIwQY
MBaAFAMh6jlQjg4XplH+kqwp6jiDLQv/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXlIcU9WQ09EaGVtVWY2U3JDbnFPSU10Q184LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9jNDgxN2UtODI4MS00MmY3LTlmNGQt
OGNmODA1NTExMDAyLzEvQXlIcU9WQ09EaGVtVWY2U3JDbnFPSU10Q184Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9jNDgxN2UtODI4MS00MmY3LTlmNGQtOGNmODA1NTExMDAy
LzEvQXlIcU9WQ09EaGVtVWY2U3JDbnFPSU10Q184LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKIXHYKfK
pS3xI+Ifz3PxzcI4D6FmppCGvgQp6sunhOeP9tMoAaFBidxfGef57joU5xc04wJe
XnLsNwyhFhWBo97aaLXANWJCgUVMlu8u5/KSCk1lqhE90QzdwjoZsU7lPuswCIWA
Gdya9MBaSrClqymsTL4ne5FcIFzwWlY/nCjXs7/KEOa/crt428Dw7DevMa1idcpX
eA9sIGS6rxsA+RoPKZKFcDICW1OByfzFMQCTfKin7UnXTTonUbSZQQvAY21p/5Kf
QStCbpOLJn3qRIHoT2YMQiZOSUKHSWjJVZ8oIUJZnBCEgz3UdNu76SBbUcYnPDK7
iW+r7u7NGXe1pw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 09:16:42 2025 by rpki-client