Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json)
Hash identifier: 6DFDHjEdKpUR2CP7t6YI0kFcYxTxmoLDkIjb/dDwZ9U=
Subject key identifier: 91:C1:37:2A:43:3A:63:FC:8C:A9:EB:6E:B1:5F:69:66:1F:2B:47:3F
Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d
Certificate serial: 0196C382A522D49385E2452D4D4BD736D403
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
Manifest number: 0710
Signing time: Mon 12 May 2025 08:00:41 +0000
Manifest this update: Mon 12 May 2025 08:00:41 +0000
Manifest next update: Tue 13 May 2025 08:00:41 +0000
Files and hashes: 1: aHJU3TtGM9M9L2c33hiqaeAD6-M.roa (hash: Jnk6c3GJ5E4y6b+inckEyRoPVADxMl1TsyYlid/Y0Y0=)
2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: d2ECed7hkKX2saqLVDO/SGy2szhAHmN2KFry1xdQ07M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 08:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:82:a5:22:d4:93:85:e2:45:2d:4d:4b:d7:36:d4:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d
Validity
Not Before: May 12 08:00:41 2025 GMT
Not After : May 13 08:00:41 2025 GMT
Subject: CN=91c1372a433a63fc8ca9eb6eb15f69661f2b473f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a0:87:f9:37:7c:8b:4f:75:28:75:3d:10:76:
94:8a:dd:d9:bd:a8:f2:4d:fd:95:7a:39:be:dd:e0:
f7:9d:aa:13:56:06:40:24:6f:f3:20:ce:61:7c:8e:
8f:a6:cb:b6:7c:80:7b:58:cb:96:e6:06:2c:5b:a9:
53:0d:51:f0:aa:92:71:ee:3f:79:d5:72:74:af:96:
e9:7e:ba:3b:ec:54:52:06:d4:41:92:75:0f:ab:22:
f2:78:c5:e9:7a:ae:b6:27:99:69:5a:6d:76:fc:c6:
ad:a1:e9:8b:8d:ed:97:cf:79:c3:58:68:11:b5:8a:
83:85:8d:18:30:f9:2c:fb:25:fc:8d:df:19:49:db:
93:c3:fd:ef:b0:03:88:4f:ef:db:75:44:1d:14:2a:
16:d9:c3:5e:32:6a:f2:09:26:e8:d3:b5:9b:b4:8e:
44:3b:7e:da:37:a1:24:3c:5f:a2:6b:41:e7:4a:f1:
8d:db:92:98:69:ff:54:21:ab:ad:6e:e5:46:05:1d:
9c:e9:41:73:8a:51:d6:a0:f9:c7:38:c3:79:69:ea:
b9:a3:8a:5a:c2:c1:18:0b:8d:e5:88:a2:ff:08:4d:
91:bf:5c:17:ef:e4:4d:92:8d:48:e7:bf:a9:fe:30:
e2:29:3a:8e:95:35:00:45:ba:6d:e7:cd:55:b1:ec:
65:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C1:37:2A:43:3A:63:FC:8C:A9:EB:6E:B1:5F:69:66:1F:2B:47:3F
X509v3 Authority Key Identifier:
keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:12:2a:fb:29:81:1e:f0:e2:51:aa:37:90:c4:80:e5:86:1b:
bd:90:41:85:48:e3:6c:4f:6a:5a:63:06:d5:19:e0:f2:7f:0d:
30:80:9f:23:b2:61:e5:9a:87:1a:2e:d1:6f:48:67:3f:52:b0:
2a:94:bd:fe:a0:2d:e9:ed:74:f6:ab:13:df:21:f1:3a:86:7f:
87:9d:13:18:eb:cb:99:82:c5:64:fc:d1:74:fe:62:41:b8:30:
d9:d1:11:89:04:03:35:a6:18:9a:f7:1c:22:82:0c:78:7e:de:
2f:88:60:1d:d9:0e:3c:67:4d:aa:84:30:c2:63:4e:3b:48:bc:
40:ed:a0:aa:9a:7d:c0:1c:16:05:c3:4d:6d:a7:c7:dc:ae:35:
0b:eb:dd:cb:f3:70:1c:6c:4b:7e:2c:31:ae:54:1f:a5:0f:2b:
92:99:b5:74:7e:29:2f:54:b6:85:e9:09:e5:fb:34:17:79:cc:
36:96:71:3b:d4:be:7e:0b:2d:b5:14:9a:0f:c2:02:b1:02:14:
8b:74:86:75:a8:e9:21:ba:ac:44:96:a0:bb:2a:e4:40:1b:50:
63:91:b0:f1:7b:30:cb:d8:be:4c:d5:cf:08:ca:b2:0c:fb:83:
64:e9:6d:34:6e:6b:62:70:20:7c:07:73:48:2b:c2:af:51:fc:
d1:4f:89:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbDgqUi1JOF4kUtTUvXNtQDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5NTI1YTM2MmU4NzcwNWExZWMwMjJkMTY1NjBmMjc2ZDU5
Y2VlMWQwHhcNMjUwNTEyMDgwMDQxWhcNMjUwNTEzMDgwMDQxWjAzMTEwLwYDVQQD
Eyg5MWMxMzcyYTQzM2E2M2ZjOGNhOWViNmViMTVmNjk2NjFmMmI0NzNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqCH+Td8i091KHU9EHaUit3Zvajy
Tf2Vejm+3eD3naoTVgZAJG/zIM5hfI6Ppsu2fIB7WMuW5gYsW6lTDVHwqpJx7j95
1XJ0r5bpfro77FRSBtRBknUPqyLyeMXpeq62J5lpWm12/MatoemLje2Xz3nDWGgR
tYqDhY0YMPks+yX8jd8ZSduTw/3vsAOIT+/bdUQdFCoW2cNeMmryCSbo07WbtI5E
O37aN6EkPF+ia0HnSvGN25KYaf9UIautbuVGBR2c6UFzilHWoPnHOMN5aeq5o4pa
wsEYC43liKL/CE2Rv1wX7+RNko1I57+p/jDiKTqOlTUARbpt581Vsexl7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJHBNypDOmP8jKnrbrFfaWYfK0c/MB8GA1UdIwQY
MBaAFGlSWjYuh3BaHsAi0WVg8nbVnO4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzkt
NjVkNmNhM2Y0OWQ4LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzktNjVkNmNhM2Y0OWQ4
LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuxIq+ymB
HvDiUao3kMSA5YYbvZBBhUjjbE9qWmMG1Rng8n8NMICfI7Jh5ZqHGi7Rb0hnP1Kw
KpS9/qAt6e109qsT3yHxOoZ/h50TGOvLmYLFZPzRdP5iQbgw2dERiQQDNaYYmvcc
IoIMeH7eL4hgHdkOPGdNqoQwwmNOO0i8QO2gqpp9wBwWBcNNbafH3K41C+vdy/Nw
HGxLfiwxrlQfpQ8rkpm1dH4pL1S2hekJ5fs0F3nMNpZxO9S+fgsttRSaD8ICsQIU
i3SGdajpIbqsRJaguyrkQBtQY5Gw8Xswy9i+TNXPCMqyDPuDZOltNG5rYnAgfAdz
SCvCr1H80U+JOQ==
-----END CERTIFICATE-----
Generated at Mon May 12 12:34:48 2025 by rpki-client