Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
File: aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft (raw, json)
Hash identifier: uVthtZ3r8/AbD+LjI8PDP6Y+aQGHcRlKMA8fYuGK5nM=
Subject key identifier: 4F:7B:24:6D:27:E5:68:7F:18:47:8D:52:27:67:4C:6D:51:86:8E:50
Authority key identifier: 68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
Certificate issuer: /CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Certificate serial: 0196B5C7590D5DCDF0A7B630EB22CA7816D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
Manifest number: 14C3
Signing time: Fri 09 May 2025 16:01:02 +0000
Manifest this update: Fri 09 May 2025 16:01:02 +0000
Manifest next update: Sat 10 May 2025 16:01:02 +0000
Files and hashes: 1: aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl (hash: ecfpi900qqabN9t/EpKLHRL/ScWIrPUtci43liNGsrk=)
2: c3cfCpPele1fDi8UyS3_TO9IOZU.roa (hash: x4G7KBYVMCONibc2Rol9WiF29BGQsdbC/SUMmPlKdpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:c7:59:0d:5d:cd:f0:a7:b6:30:eb:22:ca:78:16:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Validity
Not Before: May 9 16:01:02 2025 GMT
Not After : May 10 16:01:02 2025 GMT
Subject: CN=4f7b246d27e5687f18478d5227674c6d51868e50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b0:a7:1f:7d:d7:2b:58:4d:05:4e:5f:c8:02:
5b:21:55:3e:a4:13:f5:16:1b:8c:93:aa:14:56:86:
e9:db:4d:0d:69:c6:5c:bf:0d:3a:d7:f8:d2:be:f0:
75:34:f5:26:a2:a0:65:da:dd:cc:9d:b6:e4:dd:b9:
f0:b6:75:3e:50:37:42:40:43:f8:b3:bc:71:a1:d8:
34:b0:49:36:ed:69:4a:1f:5e:d4:a9:8a:ac:0a:60:
b6:b6:45:1f:19:f6:f1:1f:63:50:89:3b:69:af:6a:
07:40:10:5f:90:9f:e1:20:fc:cb:c7:62:0d:ee:2a:
67:2d:e5:d3:c4:59:95:cf:85:82:3b:a8:b6:08:9a:
12:a9:4a:2c:f0:60:62:57:f8:8a:3d:ac:eb:4c:f8:
9c:da:96:30:3a:ae:fc:4b:ab:b1:c1:65:1a:6f:34:
9d:6e:d0:d2:19:bd:69:d7:ec:11:fe:dd:6c:12:87:
5e:76:cf:eb:55:2f:96:85:8d:d9:c8:17:09:f7:8c:
8b:1d:e9:d6:be:26:55:60:4f:5c:08:cc:c9:d7:ed:
8c:dc:30:0b:6c:62:8c:bf:c0:36:b6:59:11:08:d0:
1f:19:b3:12:9e:ca:03:90:19:95:9f:5b:02:d7:7d:
dc:58:72:3a:be:04:5f:26:e9:5b:73:47:d0:85:3a:
a2:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:7B:24:6D:27:E5:68:7F:18:47:8D:52:27:67:4C:6D:51:86:8E:50
X509v3 Authority Key Identifier:
keyid:68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:54:30:6b:00:7c:5e:02:86:63:14:2c:34:1c:e9:1b:90:5e:
64:55:42:1d:c8:9a:c1:88:af:96:69:20:56:9c:37:0a:64:44:
14:e1:e6:62:46:e9:32:b9:90:ff:8d:1b:4c:11:ea:50:36:2e:
c7:ac:f0:cf:fe:e4:20:dc:fa:f8:d7:f5:2c:b9:45:12:40:d6:
83:d8:69:e7:0d:84:68:3e:9b:10:bf:b1:82:95:2c:ea:91:8c:
c3:2b:c7:42:63:7a:6f:f3:12:8b:42:73:4a:51:58:14:5a:fd:
1c:d2:7b:cf:7b:f9:b2:b9:de:60:5b:71:e1:d8:ff:c8:b2:83:
81:00:0a:d9:b0:29:26:af:be:bc:af:61:61:03:c9:12:51:e5:
17:67:b6:24:50:cf:29:c1:a3:78:03:d6:b9:33:43:82:66:f7:
95:7b:9d:8c:75:43:26:fd:63:bd:9d:5c:21:dd:f9:07:60:e0:
fe:15:1d:47:ac:a4:a9:43:5b:05:59:47:30:42:14:d1:3c:ac:
06:80:83:31:65:4e:f2:73:1c:75:14:da:29:59:b7:e3:b1:14:
b0:fc:84:31:72:ff:72:60:eb:13:cf:0c:ef:44:3d:cc:f2:84:
af:af:f3:f9:a1:03:fa:5a:94:46:f6:7f:1f:c6:7b:05:0f:9c:
33:77:9d:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa1x1kNXc3wp7Yw6yLKeBbYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4OTZlNzYzZjg5YzcyMGU4N2NlNGQ3OWY4YzA5ZDA3ZjJm
YTYzOTIwHhcNMjUwNTA5MTYwMTAyWhcNMjUwNTEwMTYwMTAyWjAzMTEwLwYDVQQD
Eyg0ZjdiMjQ2ZDI3ZTU2ODdmMTg0NzhkNTIyNzY3NGM2ZDUxODY4ZTUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLCnH33XK1hNBU5fyAJbIVU+pBP1
FhuMk6oUVobp200NacZcvw061/jSvvB1NPUmoqBl2t3Mnbbk3bnwtnU+UDdCQEP4
s7xxodg0sEk27WlKH17UqYqsCmC2tkUfGfbxH2NQiTtpr2oHQBBfkJ/hIPzLx2IN
7ipnLeXTxFmVz4WCO6i2CJoSqUos8GBiV/iKPazrTPic2pYwOq78S6uxwWUabzSd
btDSGb1p1+wR/t1sEodeds/rVS+WhY3ZyBcJ94yLHenWviZVYE9cCMzJ1+2M3DAL
bGKMv8A2tlkRCNAfGbMSnsoDkBmVn1sC133cWHI6vgRfJulbc0fQhTqiCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE97JG0n5Wh/GEeNUidnTG1Rho5QMB8GA1UdIwQY
MBaAFGiW52P4nHIOh85NefjAnQfy+mOSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUpibllfaWNjZzZIemsxNS1NQ2RCX0w2WTVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9iNDA4ZDctMDEyYy00OGMzLWE3ZWEt
Yzg4NDBmYTg1MTQxLzEvYUpibllfaWNjZzZIemsxNS1NQ2RCX0w2WTVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9iNDA4ZDctMDEyYy00OGMzLWE3ZWEtYzg4NDBmYTg1MTQx
LzEvYUpibllfaWNjZzZIemsxNS1NQ2RCX0w2WTVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJlQwawB8
XgKGYxQsNBzpG5BeZFVCHciawYivlmkgVpw3CmREFOHmYkbpMrmQ/40bTBHqUDYu
x6zwz/7kINz6+Nf1LLlFEkDWg9hp5w2EaD6bEL+xgpUs6pGMwyvHQmN6b/MSi0Jz
SlFYFFr9HNJ7z3v5srneYFtx4dj/yLKDgQAK2bApJq++vK9hYQPJElHlF2e2JFDP
KcGjeAPWuTNDgmb3lXudjHVDJv1jvZ1cId35B2Dg/hUdR6ykqUNbBVlHMEIU0Tys
BoCDMWVO8nMcdRTaKVm347EUsPyEMXL/cmDrE88M70Q9zPKEr6/z+aED+lqURvZ/
H8Z7BQ+cM3edQg==
-----END CERTIFICATE-----
Generated at Fri May 9 18:57:48 2025 by rpki-client