Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
File: aKUCPY4CESaZfXkmpHcBYIqs48c.mft (raw, json)
Hash identifier: tSwEdOFErg3Abi5vOfirIT4NB11zBMGgwIPYDcJpYyo=
Subject key identifier: B1:DA:FF:A3:32:84:EA:AF:22:BB:BD:F2:B8:D6:74:70:BD:C2:FC:6A
Authority key identifier: 68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
Certificate issuer: /CN=68a5023d8e021126997d7926a47701608aace3c7
Certificate serial: 01969F07DAF2D8B81CC27DAF8ED5A5511CE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
Manifest number: 0695
Signing time: Mon 05 May 2025 06:00:14 +0000
Manifest this update: Mon 05 May 2025 06:00:14 +0000
Manifest next update: Tue 06 May 2025 06:00:14 +0000
Files and hashes: 1: aKUCPY4CESaZfXkmpHcBYIqs48c.crl (hash: h+1yCVtlPW/KRUcJJyT3aW/rt06xbdWj6DLIr2FwjOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:07:da:f2:d8:b8:1c:c2:7d:af:8e:d5:a5:51:1c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a5023d8e021126997d7926a47701608aace3c7
Validity
Not Before: May 5 06:00:14 2025 GMT
Not After : May 6 06:00:14 2025 GMT
Subject: CN=b1daffa33284eaaf22bbbdf2b8d67470bdc2fc6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:02:b8:21:e3:fd:f7:22:af:63:40:ad:fc:3a:
91:48:bf:d6:b3:da:fd:6a:7d:9e:6b:ed:3f:dd:fd:
a8:33:1a:f6:41:f4:d2:ce:02:ee:ac:b0:42:80:7a:
d6:a6:c7:6d:1b:95:87:4f:08:2c:7b:c9:4b:1e:2a:
af:b5:b2:a5:0d:9b:7d:a5:33:57:ba:2b:4c:bb:ec:
53:2c:4f:54:9e:5d:42:b9:e7:35:da:d3:06:92:8f:
33:2d:fd:be:3e:6e:d2:66:7a:d4:ba:39:ad:cd:d8:
33:ec:70:68:94:b5:ed:86:8a:7d:82:fd:0c:4b:fd:
c6:40:c2:03:a4:52:9c:68:58:61:8a:b4:62:56:35:
61:8e:d3:f3:16:5b:49:04:3c:a3:43:6e:db:6a:72:
bb:35:74:15:cf:ff:11:67:d6:fe:2e:5a:41:58:84:
cd:f1:d8:0f:3e:50:41:8a:10:6c:e1:fc:24:bf:1f:
19:0b:03:73:f4:48:47:fc:f7:17:e5:74:a0:b0:ca:
9d:33:bb:b2:2a:be:33:9a:3a:aa:3d:31:36:e5:e3:
6f:11:a2:2a:46:16:c2:93:59:14:36:1c:eb:d0:60:
34:23:e6:25:c8:ae:9c:49:62:d6:05:ba:61:b9:43:
56:af:77:3a:47:98:6d:20:ce:a6:f5:21:90:dc:b2:
21:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:DA:FF:A3:32:84:EA:AF:22:BB:BD:F2:B8:D6:74:70:BD:C2:FC:6A
X509v3 Authority Key Identifier:
keyid:68:A5:02:3D:8E:02:11:26:99:7D:79:26:A4:77:01:60:8A:AC:E3:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKUCPY4CESaZfXkmpHcBYIqs48c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/860beb-2edb-4ce0-a55e-8481e6c33e3c/1/aKUCPY4CESaZfXkmpHcBYIqs48c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:d7:94:4b:47:cf:d1:78:57:d2:40:93:8c:fd:90:01:1f:21:
e1:8f:9e:a5:48:5a:41:88:dc:e6:ef:28:57:93:d3:60:cd:c4:
e5:bc:b3:ea:91:ca:9d:f6:3c:71:79:0b:5e:d9:f5:c4:9c:80:
e1:38:24:ba:f9:b1:de:7b:29:28:17:83:9e:26:a5:d7:17:cb:
1c:e8:fb:72:ff:42:55:9d:d0:68:34:63:1d:69:c7:e9:53:57:
09:5f:bc:79:66:82:30:7f:ee:bb:d0:06:19:40:7b:18:89:3b:
e5:9e:fe:73:6a:e7:d2:a2:a7:05:98:5f:b0:c3:4e:b5:aa:3a:
80:d2:f2:61:d7:96:c0:fe:76:17:6a:c0:df:b9:b9:bc:42:af:
ce:0b:80:5e:53:26:ba:00:24:ef:00:8d:4b:3f:91:04:97:29:
78:5e:d3:43:4f:3d:5e:e4:00:e1:0a:00:15:b0:d6:fa:02:2e:
bf:bc:fb:8b:71:5f:20:d7:15:96:f1:f8:fb:9c:3b:91:29:1b:
aa:0a:16:d5:46:1e:f5:fd:04:ab:cd:0f:e6:cb:58:1c:9c:20:
9b:7a:d4:e1:e4:29:25:1a:b4:2f:ab:6e:bf:26:ae:ac:e6:70:
d0:b1:a0:d2:a1:25:e6:b6:d5:87:87:ae:f9:de:46:f0:f2:1b:
0f:87:e0:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZafB9ry2Lgcwn2vjtWlURznMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4YTUwMjNkOGUwMjExMjY5OTdkNzkyNmE0NzcwMTYwOGFh
Y2UzYzcwHhcNMjUwNTA1MDYwMDE0WhcNMjUwNTA2MDYwMDE0WjAzMTEwLwYDVQQD
EyhiMWRhZmZhMzMyODRlYWFmMjJiYmJkZjJiOGQ2NzQ3MGJkYzJmYzZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAugK4IeP99yKvY0Ct/DqRSL/Ws9r9
an2ea+0/3f2oMxr2QfTSzgLurLBCgHrWpsdtG5WHTwgse8lLHiqvtbKlDZt9pTNX
uitMu+xTLE9Unl1Cuec12tMGko8zLf2+Pm7SZnrUujmtzdgz7HBolLXthop9gv0M
S/3GQMIDpFKcaFhhirRiVjVhjtPzFltJBDyjQ27banK7NXQVz/8RZ9b+LlpBWITN
8dgPPlBBihBs4fwkvx8ZCwNz9EhH/PcX5XSgsMqdM7uyKr4zmjqqPTE25eNvEaIq
RhbCk1kUNhzr0GA0I+YlyK6cSWLWBbphuUNWr3c6R5htIM6m9SGQ3LIhawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLHa/6MyhOqvIru98rjWdHC9wvxqMB8GA1UdIwQY
MBaAFGilAj2OAhEmmX15JqR3AWCKrOPHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUtVQ1BZNENFU2FaZlhrbXBIY0JZSXFzNDhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84NjBiZWItMmVkYi00Y2UwLWE1NWUt
ODQ4MWU2YzMzZTNjLzEvYUtVQ1BZNENFU2FaZlhrbXBIY0JZSXFzNDhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84NjBiZWItMmVkYi00Y2UwLWE1NWUtODQ4MWU2YzMzZTNj
LzEvYUtVQ1BZNENFU2FaZlhrbXBIY0JZSXFzNDhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOteUS0fP
0XhX0kCTjP2QAR8h4Y+epUhaQYjc5u8oV5PTYM3E5byz6pHKnfY8cXkLXtn1xJyA
4Tgkuvmx3nspKBeDnial1xfLHOj7cv9CVZ3QaDRjHWnH6VNXCV+8eWaCMH/uu9AG
GUB7GIk75Z7+c2rn0qKnBZhfsMNOtao6gNLyYdeWwP52F2rA37m5vEKvzguAXlMm
ugAk7wCNSz+RBJcpeF7TQ089XuQA4QoAFbDW+gIuv7z7i3FfINcVlvH4+5w7kSkb
qgoW1UYe9f0Eq80P5stYHJwgm3rU4eQpJRq0L6tuvyaurOZw0LGg0qEl5rbVh4eu
+d5G8PIbD4fgqA==
-----END CERTIFICATE-----
Generated at Mon May 5 11:17:17 2025 by rpki-client