Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
File: aDjbfmmRJ9pMHFpek_RPMCtihjs.mft (raw, json)
Hash identifier: NrJFX2+la5nE1zgYLWV3idhVHlKv75uzIuni02IawnU=
Subject key identifier: 40:9B:8B:91:E0:50:89:F0:65:80:8E:39:A4:45:81:D6:D8:E4:C2:9A
Authority key identifier: 68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B
Certificate issuer: /CN=6838db7e699127da4c1c5a5e93f44f302b62863b
Certificate serial: 0196A4D356405CEEBE5A33848B7C71942EA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
Manifest number: 1526
Signing time: Tue 06 May 2025 09:00:35 +0000
Manifest this update: Tue 06 May 2025 09:00:35 +0000
Manifest next update: Wed 07 May 2025 09:00:35 +0000
Files and hashes: 1: aDjbfmmRJ9pMHFpek_RPMCtihjs.crl (hash: WijLWp2yk5gKwhsB6rOn5VBSBu/XUcTXgxX2Z/S1nWg=)
2: ndozZxXsqqvoYlnvn2R8eG6q9WM.roa (hash: J/bxB2F1VD9ABMhf1I4cZo/1cjeHrt4Cto7ZdYkPM28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:d3:56:40:5c:ee:be:5a:33:84:8b:7c:71:94:2e:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6838db7e699127da4c1c5a5e93f44f302b62863b
Validity
Not Before: May 6 09:00:35 2025 GMT
Not After : May 7 09:00:35 2025 GMT
Subject: CN=409b8b91e05089f065808e39a44581d6d8e4c29a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d1:b9:ab:57:7f:08:6a:59:1e:5d:7a:46:23:
41:70:a5:4e:b2:c3:86:6a:21:53:90:9c:f8:34:db:
4f:7e:ea:fe:e6:f6:f1:10:ce:4a:c5:92:41:86:54:
7c:dd:0a:ab:95:bc:16:17:12:3f:65:65:58:d5:3b:
a7:4d:d2:cb:e9:8b:23:25:10:56:96:fe:dd:7c:1e:
4e:d5:eb:25:fc:fc:15:7d:cb:94:9e:f2:09:b9:9c:
c5:d8:55:42:75:f8:00:91:68:51:ee:6b:32:4e:91:
bc:79:2a:de:73:79:21:38:03:f2:37:3a:7f:d8:55:
cf:f0:91:0f:e5:ec:2d:61:bf:25:0c:6e:d1:03:e5:
81:11:2c:ff:19:35:0f:a5:1e:4f:90:8c:da:e0:ff:
8f:67:34:0e:b8:b9:fd:14:62:46:31:a1:d0:37:2c:
30:8a:59:35:c2:78:52:84:47:c8:8c:e7:72:f3:40:
57:b2:97:f6:1a:ad:40:e4:6c:84:e9:86:25:f4:ba:
bb:5b:b4:14:4f:85:13:7e:3c:dd:e3:65:bf:5f:1d:
59:6e:2e:46:ef:86:70:4d:8c:c3:9b:1f:d5:b9:d2:
16:1f:5d:bd:dd:72:35:b9:7a:0e:15:35:ff:74:02:
c8:97:6c:61:00:21:04:3a:48:52:bf:65:2d:fd:7a:
df:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:9B:8B:91:E0:50:89:F0:65:80:8E:39:A4:45:81:D6:D8:E4:C2:9A
X509v3 Authority Key Identifier:
keyid:68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:e5:28:84:b8:78:35:05:ba:99:32:7a:ee:64:cc:f9:91:0b:
14:2c:3a:dc:d0:5f:32:29:26:3d:7c:ba:61:dc:30:06:c7:b1:
81:88:e0:01:b0:6c:a0:7c:99:c0:24:e3:08:10:06:38:77:8b:
db:79:6e:81:9c:00:cc:7c:ed:82:94:9d:d7:a4:da:56:17:a1:
34:bb:2a:a9:16:f7:0e:ab:2f:1d:a6:ac:9f:d0:77:91:78:52:
bc:79:86:b1:4c:be:d0:89:4a:fb:b8:8c:25:24:6c:9e:cd:bb:
a8:17:a1:ee:b7:b9:20:0b:f7:07:ce:96:c8:01:2d:86:02:48:
c9:b3:5f:67:99:55:5a:11:2d:a6:f7:40:56:1c:3c:60:27:37:
40:6a:74:f5:4b:84:ea:58:bf:eb:c6:7f:4f:48:ca:91:86:7a:
e1:9a:89:f7:d2:fe:08:09:74:eb:fb:04:77:bd:8c:53:ba:c7:
98:2a:6c:4a:ac:c8:51:76:da:88:2c:2b:d5:b1:7f:2f:ed:b2:
3f:9f:88:a4:f8:53:0c:e9:4b:b8:c6:12:2a:79:f0:9c:73:be:
0e:e9:81:cb:78:4a:ea:53:4c:2e:09:5a:8f:c1:a8:e3:b8:23:
0e:17:68:0a:18:cd:1b:d2:f1:52:ab:13:ce:36:81:3b:28:da:
26:fc:e4:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZak01ZAXO6+WjOEi3xxlC6gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzhkYjdlNjk5MTI3ZGE0YzFjNWE1ZTkzZjQ0ZjMwMmI2
Mjg2M2IwHhcNMjUwNTA2MDkwMDM1WhcNMjUwNTA3MDkwMDM1WjAzMTEwLwYDVQQD
Eyg0MDliOGI5MWUwNTA4OWYwNjU4MDhlMzlhNDQ1ODFkNmQ4ZTRjMjlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5NG5q1d/CGpZHl16RiNBcKVOssOG
aiFTkJz4NNtPfur+5vbxEM5KxZJBhlR83QqrlbwWFxI/ZWVY1TunTdLL6YsjJRBW
lv7dfB5O1esl/PwVfcuUnvIJuZzF2FVCdfgAkWhR7msyTpG8eSrec3khOAPyNzp/
2FXP8JEP5ewtYb8lDG7RA+WBESz/GTUPpR5PkIza4P+PZzQOuLn9FGJGMaHQNyww
ilk1wnhShEfIjOdy80BXspf2Gq1A5GyE6YYl9Lq7W7QUT4UTfjzd42W/Xx1Zbi5G
74ZwTYzDmx/VudIWH1293XI1uXoOFTX/dALIl2xhACEEOkhSv2Ut/XrfdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFECbi5HgUInwZYCOOaRFgdbY5MKaMB8GA1UdIwQY
MBaAFGg4235pkSfaTBxaXpP0TzArYoY7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9iMjQ3MWMtYmViYy00NDEyLWE2YTQt
MmY5Y2FjNzAwZmE1LzEvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85My9iMjQ3MWMtYmViYy00NDEyLWE2YTQtMmY5Y2FjNzAwZmE1
LzEvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGeUohLh4
NQW6mTJ67mTM+ZELFCw63NBfMikmPXy6YdwwBsexgYjgAbBsoHyZwCTjCBAGOHeL
23lugZwAzHztgpSd16TaVhehNLsqqRb3DqsvHaasn9B3kXhSvHmGsUy+0IlK+7iM
JSRsns27qBeh7re5IAv3B86WyAEthgJIybNfZ5lVWhEtpvdAVhw8YCc3QGp09UuE
6li/68Z/T0jKkYZ64ZqJ99L+CAl06/sEd72MU7rHmCpsSqzIUXbaiCwr1bF/L+2y
P5+IpPhTDOlLuMYSKnnwnHO+DumBy3hK6lNMLglaj8Go47gjDhdoChjNG9LxUqsT
zjaBOyjaJvzkDw==
-----END CERTIFICATE-----
Generated at Tue May 6 11:20:06 2025 by rpki-client