Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json)
Hash identifier: uRnBe+aq6SxSwJrjyOH2bWVMJK2jbfkSwGS2oBedZfg=
Subject key identifier: 0C:08:47:44:C4:F8:2D:85:47:2D:C4:CE:13:F5:BC:7D:15:DE:B9:EA
Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Certificate serial: 0196A35300E93DC7A431BAC00A24551C4B84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
Manifest number: 0853
Signing time: Tue 06 May 2025 02:00:48 +0000
Manifest this update: Tue 06 May 2025 02:00:48 +0000
Manifest next update: Wed 07 May 2025 02:00:48 +0000
Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: D0bcqBslnyXatIHuYgSV3XghnxPYO1US5Vqoa88mklI=)
2: eTuN91J09OBNoZtxEtruVhH4DbY.roa (hash: F1iOkNAfZrkXFWgz/sdsk9Ul6Wkc9BDyHiaUC1recQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 02:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a3:53:00:e9:3d:c7:a4:31:ba:c0:0a:24:55:1c:4b:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Validity
Not Before: May 6 02:00:48 2025 GMT
Not After : May 7 02:00:48 2025 GMT
Subject: CN=0c084744c4f82d85472dc4ce13f5bc7d15deb9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:82:c4:ec:a2:1a:0a:01:25:0d:07:aa:0f:61:
22:61:e8:bd:4d:ad:11:6b:df:98:89:83:42:31:0e:
83:88:42:b7:54:fe:c8:06:13:27:cb:46:53:d2:30:
d5:a6:b8:33:3a:38:2d:1d:53:d1:72:19:0f:db:e7:
e6:13:71:59:55:55:4d:57:9d:5c:f3:1f:b9:ab:f9:
19:9f:10:5c:85:9c:7a:54:6d:7c:a2:32:ea:32:95:
ee:1f:cd:5c:95:33:62:8d:1f:68:c0:aa:ed:3e:81:
ff:2a:fc:8f:ae:64:8a:20:56:f6:7e:bf:0b:f2:22:
ef:ad:92:43:37:6c:ee:a7:bd:11:e0:e6:8b:d0:41:
e1:c3:f9:5e:95:7e:7a:77:7f:f1:0c:54:92:b1:17:
bd:fb:02:90:0b:13:03:05:ee:50:23:6b:6c:5c:83:
c7:d4:b3:51:a7:9e:9c:f9:92:1a:bc:9d:45:ed:d5:
df:49:1a:2a:31:ed:07:f6:1b:eb:c3:b3:38:89:ba:
aa:a4:31:71:6c:c5:93:e0:57:40:5a:81:d9:4b:86:
7c:a0:35:10:01:ea:81:1f:8f:99:aa:8f:d6:dc:fd:
71:3b:0e:5e:ae:3c:6b:08:a2:89:42:d0:5d:63:8d:
ca:9b:91:22:ac:7f:9d:4e:bd:6b:a0:d9:a9:7e:f1:
d0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:08:47:44:C4:F8:2D:85:47:2D:C4:CE:13:F5:BC:7D:15:DE:B9:EA
X509v3 Authority Key Identifier:
keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:b1:10:15:41:68:95:9d:53:82:f4:9e:b6:c7:64:7e:b5:d9:
84:1d:40:ec:71:b3:ae:67:c3:86:c6:a5:80:79:83:12:d5:02:
db:98:5e:84:cf:8a:70:a6:98:a0:80:4c:57:1a:94:eb:ac:8e:
4f:94:e3:f7:a1:3e:0e:39:b5:b0:40:30:56:d9:a0:c1:fb:fc:
4f:0a:24:ed:3b:91:51:c0:6c:d8:ad:7e:2a:e5:e8:13:00:d4:
c1:93:bf:2e:bd:9b:ed:5d:42:b9:28:b0:e9:bd:e8:5f:c7:d6:
64:5f:00:14:2f:7b:8a:63:a6:15:1b:dc:46:81:de:d5:78:3b:
ba:0d:ae:66:8d:3f:ce:8c:0f:f6:bb:24:d1:8f:56:2d:d8:48:
79:bd:98:62:f7:dc:52:a9:68:25:b7:eb:c7:80:49:8b:8c:ec:
7c:04:69:dd:53:f5:7d:2f:b0:56:9d:8d:ed:85:79:a5:4a:00:
83:ef:29:2b:14:c3:2d:34:f2:35:1c:b2:bc:e3:67:86:8f:74:
5b:9d:0b:cf:a0:e6:33:1e:44:a4:02:a3:0e:e3:6e:30:30:60:
1a:3e:d8:01:52:14:b2:0a:d5:d8:44:9d:06:86:24:4b:7a:91:
71:e0:e3:3b:2d:81:07:a8:ad:81:5f:4a:28:6c:ed:71:f4:27:
8b:70:42:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZajUwDpPcekMbrACiRVHEuEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhNzAyMDJjMzEyZGQyYzdhNmZmYzMxN2FhODZlNGUyMDY5
MjQ5YTYwHhcNMjUwNTA2MDIwMDQ4WhcNMjUwNTA3MDIwMDQ4WjAzMTEwLwYDVQQD
EygwYzA4NDc0NGM0ZjgyZDg1NDcyZGM0Y2UxM2Y1YmM3ZDE1ZGViOWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYLE7KIaCgElDQeqD2EiYei9Ta0R
a9+YiYNCMQ6DiEK3VP7IBhMny0ZT0jDVprgzOjgtHVPRchkP2+fmE3FZVVVNV51c
8x+5q/kZnxBchZx6VG18ojLqMpXuH81clTNijR9owKrtPoH/KvyPrmSKIFb2fr8L
8iLvrZJDN2zup70R4OaL0EHhw/lelX56d3/xDFSSsRe9+wKQCxMDBe5QI2tsXIPH
1LNRp56c+ZIavJ1F7dXfSRoqMe0H9hvrw7M4ibqqpDFxbMWT4FdAWoHZS4Z8oDUQ
AeqBH4+Zqo/W3P1xOw5erjxrCKKJQtBdY43Km5EirH+dTr1roNmpfvHQAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAwIR0TE+C2FRy3EzhP1vH0V3rnqMB8GA1UdIwQY
MBaAFApwICwxLdLHpv/DF6qG5OIGkkmmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ25BZ0xERXQwc2VtXzhNWHFvYms0Z2FTU2FZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS84ZmY2OTctNTdmYy00MGZmLThhNTMt
NjhjODQ5Mjc3ZDczLzEvQ25BZ0xERXQwc2VtXzhNWHFvYms0Z2FTU2FZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS84ZmY2OTctNTdmYy00MGZmLThhNTMtNjhjODQ5Mjc3ZDcz
LzEvQ25BZ0xERXQwc2VtXzhNWHFvYms0Z2FTU2FZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnLEQFUFo
lZ1TgvSetsdkfrXZhB1A7HGzrmfDhsalgHmDEtUC25hehM+KcKaYoIBMVxqU66yO
T5Tj96E+Djm1sEAwVtmgwfv8Twok7TuRUcBs2K1+KuXoEwDUwZO/Lr2b7V1CuSiw
6b3oX8fWZF8AFC97imOmFRvcRoHe1Xg7ug2uZo0/zowP9rsk0Y9WLdhIeb2YYvfc
UqloJbfrx4BJi4zsfARp3VP1fS+wVp2N7YV5pUoAg+8pKxTDLTTyNRyyvONnho90
W50Lz6DmMx5EpAKjDuNuMDBgGj7YAVIUsgrV2ESdBoYkS3qRceDjOy2BB6itgV9K
KGztcfQni3BC8A==
-----END CERTIFICATE-----
Generated at Tue May 6 07:13:28 2025 by rpki-client