Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
File: aOlYF0Bglex8tceyhrETM0l7lFE.mft (raw, json)
Hash identifier: 9THqFsV/nWpKmy9N6ec5bvyiSy+Plf0niaCKVgnN+jc=
Subject key identifier: 5E:13:4F:57:E0:3B:F7:A8:06:A6:BC:69:9B:83:AD:F4:5F:E3:77:0E
Authority key identifier: 68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
Certificate issuer: /CN=68e95817406095ec7cb5c7b286b11333497b9451
Certificate serial: 0196CE3CC8B82B9698F4189B846481974F80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
Manifest number: 0748
Signing time: Wed 14 May 2025 10:00:12 +0000
Manifest this update: Wed 14 May 2025 10:00:12 +0000
Manifest next update: Thu 15 May 2025 10:00:12 +0000
Files and hashes: 1: ExEAGmrTaGZYkgcoaaGfFiacDZM.roa (hash: vfQhBpcBjSjG95UQaSsBC3edgr1xXnN4hhJBHCKa+Vc=)
2: aOlYF0Bglex8tceyhrETM0l7lFE.crl (hash: WBf/FwVmvRz4SZzxJBgOWdgkFjC3F52Br/EMP4pYGzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 10:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:3c:c8:b8:2b:96:98:f4:18:9b:84:64:81:97:4f:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e95817406095ec7cb5c7b286b11333497b9451
Validity
Not Before: May 14 10:00:12 2025 GMT
Not After : May 15 10:00:12 2025 GMT
Subject: CN=5e134f57e03bf7a806a6bc699b83adf45fe3770e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:30:a6:27:d8:0c:7d:7a:59:15:08:9a:31:00:
f5:ed:24:aa:04:91:53:76:15:29:7a:27:20:bc:34:
5e:c9:e4:4d:4c:12:64:a6:98:e7:bb:aa:de:ca:b0:
c5:ae:e4:cf:80:ce:c3:b3:b3:b5:41:cd:81:67:8a:
f5:5e:ba:27:9b:fb:82:4a:54:1f:ca:93:46:aa:ce:
6c:62:b1:34:2f:aa:c7:56:30:82:c4:5f:62:2b:b0:
88:64:6c:40:cc:7c:9c:bf:cf:7f:e2:41:03:76:97:
d1:3a:ec:ca:64:99:7b:77:af:ec:28:76:26:b1:a1:
79:62:fa:65:8d:52:e2:8c:eb:38:d8:87:0f:be:80:
94:72:86:b5:77:bc:46:ba:45:8f:a4:87:3c:01:85:
dd:aa:2d:60:a4:35:c8:6c:d2:ec:e5:f1:97:ec:4d:
c5:9e:36:57:ea:90:3d:90:f8:09:08:f8:af:5c:75:
33:94:30:31:54:82:c5:d8:d2:32:a5:93:9c:8b:84:
7f:b6:bd:5f:2f:ca:e4:e7:ac:dd:49:83:64:5a:f4:
15:9f:4d:e0:29:64:ec:aa:1a:ef:5e:aa:7e:69:2d:
fd:17:da:b2:1c:b0:8d:b6:c1:40:e1:cd:9c:e5:cf:
a7:08:7b:73:4e:29:00:f5:b6:81:3c:c6:1b:be:29:
9b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:13:4F:57:E0:3B:F7:A8:06:A6:BC:69:9B:83:AD:F4:5F:E3:77:0E
X509v3 Authority Key Identifier:
keyid:68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:1e:43:4d:3a:92:57:f7:45:50:81:dd:75:9d:32:84:1b:eb:
33:bc:a7:ce:d8:e3:fe:eb:a9:d8:fc:6a:a8:05:1c:c2:a7:84:
06:41:a0:1f:1b:46:40:ed:ea:32:f2:31:01:c5:fc:f1:c5:94:
c5:34:3d:4f:9c:0d:ab:c1:9b:6d:5a:c4:13:0e:83:db:d7:dc:
1d:a2:07:94:07:1f:96:82:11:c4:f5:bf:1b:56:ea:d2:e7:bc:
d0:a1:81:ee:2f:97:39:2c:c7:0c:bf:c7:4e:8b:bd:f3:ac:81:
ff:9f:60:32:e9:af:f9:f8:cc:1d:69:ad:8a:ab:f1:6c:c0:a3:
ad:6e:6d:5c:72:83:ff:66:4f:8b:67:20:37:70:83:92:64:26:
d6:49:51:cb:28:14:c8:78:fa:d3:7a:37:22:4d:c6:ac:98:52:
46:f9:ec:78:d0:f1:64:00:29:1f:ee:52:76:29:7c:a7:b8:a5:
08:90:8a:23:1e:4d:4c:0e:76:cb:5b:25:af:f2:36:14:a9:ea:
7a:e4:99:8f:05:1b:26:24:01:a3:4a:e0:09:83:be:89:42:39:
93:98:ea:7b:78:f9:54:0c:d6:e5:ec:84:90:89:e4:4c:8a:88:
ad:38:d5:d8:8f:9b:fd:22:f3:77:bf:6e:f4:59:09:c4:5e:e2:
d6:3e:b9:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbOPMi4K5aY9BibhGSBl0+AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZTk1ODE3NDA2MDk1ZWM3Y2I1YzdiMjg2YjExMzMzNDk3
Yjk0NTEwHhcNMjUwNTE0MTAwMDEyWhcNMjUwNTE1MTAwMDEyWjAzMTEwLwYDVQQD
Eyg1ZTEzNGY1N2UwM2JmN2E4MDZhNmJjNjk5YjgzYWRmNDVmZTM3NzBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvjCmJ9gMfXpZFQiaMQD17SSqBJFT
dhUpeicgvDReyeRNTBJkppjnu6reyrDFruTPgM7Ds7O1Qc2BZ4r1Xronm/uCSlQf
ypNGqs5sYrE0L6rHVjCCxF9iK7CIZGxAzHycv89/4kEDdpfROuzKZJl7d6/sKHYm
saF5YvpljVLijOs42IcPvoCUcoa1d7xGukWPpIc8AYXdqi1gpDXIbNLs5fGX7E3F
njZX6pA9kPgJCPivXHUzlDAxVILF2NIypZOci4R/tr1fL8rk56zdSYNkWvQVn03g
KWTsqhrvXqp+aS39F9qyHLCNtsFA4c2c5c+nCHtzTikA9baBPMYbvimbSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF4TT1fgO/eoBqa8aZuDrfRf43cOMB8GA1UdIwQY
MBaAFGjpWBdAYJXsfLXHsoaxEzNJe5RRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU9sWUYwQmdsZXg4dGNleWhyRVRNMGw3bEZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy80YTVkNzEtZTExZC00ZDMyLWI1OTct
MDE5ZWM5ZDlhNzU4LzEvYU9sWUYwQmdsZXg4dGNleWhyRVRNMGw3bEZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy80YTVkNzEtZTExZC00ZDMyLWI1OTctMDE5ZWM5ZDlhNzU4
LzEvYU9sWUYwQmdsZXg4dGNleWhyRVRNMGw3bEZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaB5DTTqS
V/dFUIHddZ0yhBvrM7ynztjj/uup2PxqqAUcwqeEBkGgHxtGQO3qMvIxAcX88cWU
xTQ9T5wNq8GbbVrEEw6D29fcHaIHlAcfloIRxPW/G1bq0ue80KGB7i+XOSzHDL/H
Tou986yB/59gMumv+fjMHWmtiqvxbMCjrW5tXHKD/2ZPi2cgN3CDkmQm1klRyygU
yHj603o3Ik3GrJhSRvnseNDxZAApH+5Sdil8p7ilCJCKIx5NTA52y1slr/I2FKnq
euSZjwUbJiQBo0rgCYO+iUI5k5jqe3j5VAzW5eyEkInkTIqIrTjV2I+b/SLzd79u
9FkJxF7i1j65qQ==
-----END CERTIFICATE-----
Generated at Wed May 14 20:46:27 2025 by rpki-client