Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
File: aTHX56mXSaOF6usn-FCridqPLuA.mft (raw, json)
Hash identifier: KdG7sfPuxm5hJpVzpHQvV5yRAjdekmT0UwTxPAnZt6k=
Subject key identifier: 95:F0:33:C1:31:B7:38:9B:96:7A:3E:FD:D6:3C:F3:84:44:6C:A2:F7
Authority key identifier: 69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0
Certificate issuer: /CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0
Certificate serial: 0196BFDD46E4C4BE776DB9C804DA7E18FCF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
Manifest number: 0472
Signing time: Sun 11 May 2025 15:01:11 +0000
Manifest this update: Sun 11 May 2025 15:01:11 +0000
Manifest next update: Mon 12 May 2025 15:01:11 +0000
Files and hashes: 1: NluQuRsgOiFaIXTWt3y3rez6Bh4.roa (hash: JKkT06F430W2THw9Cv6TXAFRcJ7i7LHFoCLoKhmOqSc=)
2: aTHX56mXSaOF6usn-FCridqPLuA.crl (hash: bCB2OWDshfE5ineC1hplPu5B8t80g99zNm3h6owOc3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 15:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:dd:46:e4:c4:be:77:6d:b9:c8:04:da:7e:18:fc:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0
Validity
Not Before: May 11 15:01:11 2025 GMT
Not After : May 12 15:01:11 2025 GMT
Subject: CN=95f033c131b7389b967a3efdd63cf384446ca2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e4:dd:b0:0e:0b:1a:2c:04:ca:99:e4:86:a6:
59:18:01:1d:53:62:7a:63:a1:cc:ec:60:17:10:58:
b8:c5:a3:75:d8:d4:21:f2:7c:c2:bc:a5:d2:c0:d7:
22:15:b9:70:53:85:81:c2:c9:0f:5b:77:23:bc:62:
2f:ce:78:f5:a6:75:5d:ec:b1:3d:3e:87:5b:0d:ef:
29:0d:8e:14:e9:24:fb:12:0a:0b:61:44:93:cf:5d:
c0:f0:f4:0e:59:3d:1b:d4:33:50:f3:7e:69:9a:6e:
2f:76:94:57:7b:1c:2f:06:50:a3:c2:26:b9:fa:6e:
d7:42:1f:5a:b0:0a:2a:48:2b:c9:1e:be:e7:c1:c0:
db:75:52:ac:25:d7:dc:65:05:a8:61:66:47:ab:b9:
6a:f2:9d:59:1f:33:3c:f9:ad:50:8b:a8:5f:e3:7c:
dd:38:28:48:6c:75:79:cd:6b:ae:b2:45:0b:ca:e5:
c9:49:24:4b:71:c3:1c:d8:5f:18:8f:a8:83:88:35:
e3:8c:4f:68:91:d2:30:42:dc:39:0f:4f:ee:0f:37:
9d:33:a0:1c:2a:2d:15:a8:35:4b:7a:75:8e:28:f5:
a2:d8:33:ed:b7:f6:25:05:b9:9a:6e:2a:af:14:5b:
a5:33:d7:69:05:d6:7a:48:ff:99:c1:36:9a:b0:9f:
b0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:F0:33:C1:31:B7:38:9B:96:7A:3E:FD:D6:3C:F3:84:44:6C:A2:F7
X509v3 Authority Key Identifier:
keyid:69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:1d:35:b9:89:1f:2a:b6:47:ba:4e:10:4a:1e:35:59:58:4e:
14:de:d6:c0:67:75:c8:0e:95:b3:08:27:43:39:b6:db:f3:2c:
9a:99:b5:96:73:d1:58:01:49:63:66:0c:f5:ce:1f:9b:d4:70:
7d:13:1b:78:19:08:4b:1e:c7:c5:8b:c6:c6:44:9c:4b:a3:3d:
3e:e5:94:86:70:d5:8c:b7:2b:6e:d2:c3:1b:4c:68:31:14:5b:
4c:36:d0:8a:3f:d5:0a:c0:ce:42:d0:11:4a:12:d5:d1:f8:ce:
29:05:22:ef:0b:73:21:9c:20:fe:41:f2:18:64:90:15:3c:81:
40:6d:8d:d8:92:07:dd:7b:7a:1c:d0:3e:d1:93:42:a6:cf:79:
10:9a:63:6c:78:de:f9:47:49:79:a4:7b:ac:a1:1c:3c:c7:41:
13:9f:f5:d8:24:74:12:42:d6:fc:30:92:07:26:95:26:c5:a6:
f6:5d:2a:2f:12:dd:33:30:f7:65:6d:b7:69:8a:0b:5b:49:11:
de:a0:c1:ec:dd:96:3b:ed:36:b6:25:10:9a:a7:21:3b:42:50:
e3:c7:cb:14:6e:cc:2b:9b:01:a6:95:b3:70:c9:75:0d:21:fa:
32:09:5f:43:e4:a9:61:3e:59:41:00:0a:b2:94:2a:ac:00:78:
e8:29:61:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa/3UbkxL53bbnIBNp+GPz5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MzFkN2U3YTk5NzQ5YTM4NWVhZWIyN2Y4NTBhYjg5ZGE4
ZjJlZTAwHhcNMjUwNTExMTUwMTExWhcNMjUwNTEyMTUwMTExWjAzMTEwLwYDVQQD
Eyg5NWYwMzNjMTMxYjczODliOTY3YTNlZmRkNjNjZjM4NDQ0NmNhMmY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreTdsA4LGiwEypnkhqZZGAEdU2J6
Y6HM7GAXEFi4xaN12NQh8nzCvKXSwNciFblwU4WBwskPW3cjvGIvznj1pnVd7LE9
PodbDe8pDY4U6ST7EgoLYUSTz13A8PQOWT0b1DNQ835pmm4vdpRXexwvBlCjwia5
+m7XQh9asAoqSCvJHr7nwcDbdVKsJdfcZQWoYWZHq7lq8p1ZHzM8+a1Qi6hf43zd
OChIbHV5zWuuskULyuXJSSRLccMc2F8Yj6iDiDXjjE9okdIwQtw5D0/uDzedM6Ac
Ki0VqDVLenWOKPWi2DPtt/YlBbmabiqvFFulM9dpBdZ6SP+ZwTaasJ+wkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJXwM8Extziblno+/dY884REbKL3MB8GA1UdIwQY
MBaAFGkx1+epl0mjherrJ/hQq4najy7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVRIWDU2bVhTYU9GNnVzbi1GQ3JpZHFQTHVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC84Y2ZkNzMtMTI1Ny00ZGZhLThjNTkt
NzZhZTQyMzU2Y2U1LzEvYVRIWDU2bVhTYU9GNnVzbi1GQ3JpZHFQTHVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC84Y2ZkNzMtMTI1Ny00ZGZhLThjNTktNzZhZTQyMzU2Y2U1
LzEvYVRIWDU2bVhTYU9GNnVzbi1GQ3JpZHFQTHVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYh01uYkf
KrZHuk4QSh41WVhOFN7WwGd1yA6VswgnQzm22/Msmpm1lnPRWAFJY2YM9c4fm9Rw
fRMbeBkISx7HxYvGxkScS6M9PuWUhnDVjLcrbtLDG0xoMRRbTDbQij/VCsDOQtAR
ShLV0fjOKQUi7wtzIZwg/kHyGGSQFTyBQG2N2JIH3Xt6HNA+0ZNCps95EJpjbHje
+UdJeaR7rKEcPMdBE5/12CR0EkLW/DCSByaVJsWm9l0qLxLdMzD3ZW23aYoLW0kR
3qDB7N2WO+02tiUQmqchO0JQ48fLFG7MK5sBppWzcMl1DSH6MglfQ+SpYT5ZQQAK
spQqrAB46Clhlw==
-----END CERTIFICATE-----
Generated at Sun May 11 21:13:53 2025 by rpki-client