Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
File: aEZbnPs2jGnssOP-o7VCupxzAfQ.mft (raw, json)
Hash identifier: O69mamMBvuzJuglm8uWJmGsUdgb1SfzWQHoqLgZofXE=
Subject key identifier: AF:42:17:1E:D3:14:0E:FF:BE:C4:FC:9E:6B:2E:79:36:04:2D:05:C8
Authority key identifier: 68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
Certificate issuer: /CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Certificate serial: 0196BAECE92F86CD2A5EAF02AE6E5EBAC763
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
Manifest number: 124B
Signing time: Sat 10 May 2025 16:00:10 +0000
Manifest this update: Sat 10 May 2025 16:00:10 +0000
Manifest next update: Sun 11 May 2025 16:00:10 +0000
Files and hashes: 1: aEZbnPs2jGnssOP-o7VCupxzAfQ.crl (hash: lv5e8jRdbS2uhId4Y09nR7hRCx+iK1l5+Jj0CWRrcC0=)
2: s3MszUL2Sssrqjezj_btDkPTmQg.roa (hash: rgkSdfEiUESbKFQA8EcHOyD2UnXv2kAlPQ3EqnLhSNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:ec:e9:2f:86:cd:2a:5e:af:02:ae:6e:5e:ba:c7:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68465b9cfb368c69ecb0e3fea3b542ba9c7301f4
Validity
Not Before: May 10 16:00:10 2025 GMT
Not After : May 11 16:00:10 2025 GMT
Subject: CN=af42171ed3140effbec4fc9e6b2e7936042d05c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b6:12:fc:c6:a9:40:7a:3d:42:b8:3a:77:59:
e5:02:f1:b6:99:66:4f:cb:1a:8a:3f:de:8f:23:a2:
ad:a8:02:c4:9c:5e:c9:48:7d:7f:45:d5:e5:d3:ca:
eb:96:9a:1d:03:83:01:03:af:d9:2a:de:53:58:d0:
48:aa:c7:af:f2:04:f4:eb:d8:87:f7:08:8b:ac:2a:
96:b3:e7:a8:d1:48:81:e4:3f:fc:cb:50:75:26:c3:
7f:71:1b:a3:05:79:ae:e8:e7:8e:78:4d:df:ba:4c:
91:f9:27:2b:e6:f4:87:0e:a1:55:b7:f7:07:e8:12:
b8:f2:8e:aa:d0:6e:55:9e:81:4d:15:74:bd:4a:99:
3a:e7:4c:a8:f6:14:50:68:64:22:ac:d0:5d:7b:de:
3f:c4:ab:0f:5a:e2:d6:78:1a:d2:11:13:c3:21:5c:
ca:f0:2c:1b:06:a6:91:7f:fd:4b:cb:d8:39:ef:a7:
85:4c:cf:c8:83:0b:e6:03:2f:16:b2:93:9b:3e:d4:
8e:e0:b7:48:ca:3d:83:cd:8f:5e:e3:4b:88:57:88:
27:ec:36:90:08:67:1f:a1:ab:31:8b:c1:a1:28:c7:
53:e3:ad:f1:da:4c:cd:0d:93:1d:0d:d3:49:22:cb:
46:8e:1d:3f:0d:85:b5:32:aa:ac:c9:70:5a:f4:1e:
d6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:42:17:1E:D3:14:0E:FF:BE:C4:FC:9E:6B:2E:79:36:04:2D:05:C8
X509v3 Authority Key Identifier:
keyid:68:46:5B:9C:FB:36:8C:69:EC:B0:E3:FE:A3:B5:42:BA:9C:73:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aEZbnPs2jGnssOP-o7VCupxzAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/267f9e-cccc-443f-beac-1aea5be150fa/1/aEZbnPs2jGnssOP-o7VCupxzAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:ee:60:78:3f:d3:b7:36:e4:fa:1d:aa:e4:1d:61:1d:2d:f4:
66:3a:5c:bf:bc:9c:85:c1:8e:49:db:10:97:75:d5:99:da:56:
80:bf:b7:5c:73:a3:25:78:97:f6:96:5f:00:49:5e:e0:a1:28:
82:97:47:09:67:ea:86:c8:10:ed:26:ac:f8:76:d3:4e:12:d9:
a9:15:af:06:31:5c:4a:43:49:4a:79:31:5c:c8:f6:b3:53:7f:
b4:f4:b5:61:ef:80:60:a5:71:3c:6c:dc:20:c6:7c:3a:9b:09:
86:31:d2:b6:91:c9:d0:02:43:55:6f:7b:9e:70:f8:22:74:c9:
58:ac:9b:24:b8:5d:1c:95:86:9a:ea:61:5e:5f:53:d8:09:a4:
e7:4d:05:2d:a4:f5:11:a5:85:91:1a:df:c2:61:c7:e4:7b:31:
ad:52:b1:eb:8e:90:ac:0d:36:28:44:32:e6:61:48:5c:7d:0c:
d6:f5:93:0d:2b:00:fc:13:c3:00:6b:8b:b3:b3:24:25:5a:6d:
d8:14:70:03:a2:d7:65:5d:9c:7d:71:25:49:8f:40:cb:f1:a2:
49:ab:9b:ac:ba:1c:d5:8e:18:b8:1d:62:97:ed:23:10:ed:98:
85:a8:05:7e:59:3b:ea:3b:21:49:50:f3:25:72:1b:92:5c:c9:
45:fb:67:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa67Okvhs0qXq8Crm5eusdjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4NDY1YjljZmIzNjhjNjllY2IwZTNmZWEzYjU0MmJhOWM3
MzAxZjQwHhcNMjUwNTEwMTYwMDEwWhcNMjUwNTExMTYwMDEwWjAzMTEwLwYDVQQD
EyhhZjQyMTcxZWQzMTQwZWZmYmVjNGZjOWU2YjJlNzkzNjA0MmQwNWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLYS/MapQHo9Qrg6d1nlAvG2mWZP
yxqKP96PI6KtqALEnF7JSH1/RdXl08rrlpodA4MBA6/ZKt5TWNBIqsev8gT069iH
9wiLrCqWs+eo0UiB5D/8y1B1JsN/cRujBXmu6OeOeE3fukyR+Scr5vSHDqFVt/cH
6BK48o6q0G5VnoFNFXS9Spk650yo9hRQaGQirNBde94/xKsPWuLWeBrSERPDIVzK
8CwbBqaRf/1Ly9g576eFTM/IgwvmAy8WspObPtSO4LdIyj2DzY9e40uIV4gn7DaQ
CGcfoasxi8GhKMdT463x2kzNDZMdDdNJIstGjh0/DYW1MqqsyXBa9B7WJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK9CFx7TFA7/vsT8nmsueTYELQXIMB8GA1UdIwQY
MBaAFGhGW5z7Noxp7LDj/qO1QrqccwH0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYUVaYm5QczJqR25zc09QLW83VkN1cHh6QWZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC8yNjdmOWUtY2NjYy00NDNmLWJlYWMt
MWFlYTViZTE1MGZhLzEvYUVaYm5QczJqR25zc09QLW83VkN1cHh6QWZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC8yNjdmOWUtY2NjYy00NDNmLWJlYWMtMWFlYTViZTE1MGZh
LzEvYUVaYm5QczJqR25zc09QLW83VkN1cHh6QWZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqu5geD/T
tzbk+h2q5B1hHS30Zjpcv7ychcGOSdsQl3XVmdpWgL+3XHOjJXiX9pZfAEle4KEo
gpdHCWfqhsgQ7Sas+HbTThLZqRWvBjFcSkNJSnkxXMj2s1N/tPS1Ye+AYKVxPGzc
IMZ8OpsJhjHStpHJ0AJDVW97nnD4InTJWKybJLhdHJWGmuphXl9T2Amk500FLaT1
EaWFkRrfwmHH5HsxrVKx646QrA02KEQy5mFIXH0M1vWTDSsA/BPDAGuLs7MkJVpt
2BRwA6LXZV2cfXElSY9Ay/GiSaubrLoc1Y4YuB1il+0jEO2YhagFflk76jshSVDz
JXIbklzJRftnRA==
-----END CERTIFICATE-----
Generated at Sat May 10 22:01:27 2025 by rpki-client