Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
File: noBwLuah3L864lehmUFfWbgzjqQ.mft (raw, json)
Hash identifier: KCgG34cKJbwOinqR8Hn+gUfSw0E80nHE+uvGoMvFKCg=
Subject key identifier: CE:D2:BA:B5:37:D0:89:BB:5D:54:5D:F1:C8:4D:FF:B6:F4:97:FB:61
Authority key identifier: 9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
Certificate issuer: /CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Certificate serial: 01965E3ACD596E39D334383A6A4ED510B71D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
Manifest number: 1503
Signing time: Tue 22 Apr 2025 16:00:34 +0000
Manifest this update: Tue 22 Apr 2025 16:00:34 +0000
Manifest next update: Wed 23 Apr 2025 16:00:34 +0000
Files and hashes: 1: 4r39zvWrkYP2asO0kOUkjIaBE5M.roa (hash: v58EqYlL6LzlpEJ1F9DVvqr5mbMv8/9nhYAa/WADapg=)
2: noBwLuah3L864lehmUFfWbgzjqQ.crl (hash: yN2vV/Kxssm2IV2Jlv5ijgsEiSn4/GOHr5sIkqVL6qA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:3a:cd:59:6e:39:d3:34:38:3a:6a:4e:d5:10:b7:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Validity
Not Before: Apr 22 16:00:34 2025 GMT
Not After : Apr 23 16:00:34 2025 GMT
Subject: CN=ced2bab537d089bb5d545df1c84dffb6f497fb61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0f:85:cc:81:cf:e6:1d:ae:74:b9:04:b1:65:
fe:d8:bf:55:c2:01:82:bf:c9:cf:13:d6:7e:f2:c6:
94:ba:e5:e9:a2:30:7a:ac:ac:0b:99:7d:ee:37:74:
a0:16:73:10:30:24:4b:0c:42:91:33:f4:0e:cd:9f:
06:72:20:59:e9:fe:a7:ae:97:43:fb:83:08:d2:a6:
5d:7f:74:2d:f7:85:7f:49:56:a9:67:8b:8c:ce:0a:
36:28:22:f5:34:14:3f:7a:b6:cb:ae:34:d0:cc:3d:
a1:cc:9e:8b:1e:14:b2:40:51:1d:4b:19:7a:9a:77:
ee:f4:be:f4:16:e0:bc:2a:51:aa:87:4f:f8:7b:2f:
94:fe:03:e6:38:e8:34:94:3d:8a:42:06:c2:00:e9:
67:59:aa:d2:b2:c7:86:62:2e:6f:a9:df:ee:59:de:
12:7e:01:85:f9:ca:16:e3:e8:ed:87:62:2b:21:62:
59:c4:fe:5b:5c:ee:52:20:98:fd:b2:c1:66:7f:ba:
5f:c8:64:20:6e:97:62:a0:76:5e:fd:63:5e:fa:51:
42:8f:a8:a7:91:2c:01:72:7a:49:32:55:7c:4b:60:
14:cd:35:21:61:b7:26:b5:26:6f:6d:b8:90:a6:a9:
05:87:99:23:1a:54:3f:43:d0:70:78:c3:f8:bf:66:
a5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D2:BA:B5:37:D0:89:BB:5D:54:5D:F1:C8:4D:FF:B6:F4:97:FB:61
X509v3 Authority Key Identifier:
keyid:9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:38:78:b2:d5:3b:e2:39:71:58:5f:d3:4b:e1:a0:95:17:5a:
99:37:a9:31:f7:a6:e9:de:81:f7:bd:0f:b3:20:8e:14:33:79:
a0:2b:12:d2:01:b1:e7:ff:c6:95:1d:7c:20:c3:79:d4:80:5f:
76:ee:25:26:01:70:db:d4:cf:72:5c:d9:88:cd:a6:19:cd:2b:
a9:c4:0c:cd:cf:9f:e9:9f:39:78:94:d8:e4:61:97:17:43:37:
3e:94:06:a8:a4:5c:01:07:61:5d:8a:62:ae:8f:4e:79:33:71:
62:ae:ab:fb:da:60:be:d0:41:69:a7:ef:3d:1f:30:32:8d:b6:
fb:2c:56:a8:36:fd:c1:ed:bf:9b:be:f5:7b:96:33:bf:d4:e3:
86:5d:72:b8:c6:f7:62:f9:b3:3b:51:86:a2:70:fe:47:34:ab:
a8:30:bc:3d:e0:1a:fd:a3:73:cf:bb:e7:5b:72:75:4b:b5:27:
ac:fc:2b:ed:73:84:87:fc:36:c3:3d:72:9b:4a:7b:50:de:85:
61:b7:d3:df:e4:f2:0a:2a:9c:5e:cb:84:32:f3:de:be:5f:24:
62:aa:1a:34:ff:20:83:51:f7:da:95:8b:7c:21:4a:71:05:c8:
bc:6a:48:e4:7f:80:d8:b9:1e:f0:3d:cc:11:1f:c5:fd:46:32:
77:fc:15:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZeOs1ZbjnTNDg6ak7VELcdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllODA3MDJlZTZhMWRjYmYzYWUyNTdhMTk5NDE1ZjU5Yjgz
MzhlYTQwHhcNMjUwNDIyMTYwMDM0WhcNMjUwNDIzMTYwMDM0WjAzMTEwLwYDVQQD
EyhjZWQyYmFiNTM3ZDA4OWJiNWQ1NDVkZjFjODRkZmZiNmY0OTdmYjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAog+FzIHP5h2udLkEsWX+2L9VwgGC
v8nPE9Z+8saUuuXpojB6rKwLmX3uN3SgFnMQMCRLDEKRM/QOzZ8GciBZ6f6nrpdD
+4MI0qZdf3Qt94V/SVapZ4uMzgo2KCL1NBQ/erbLrjTQzD2hzJ6LHhSyQFEdSxl6
mnfu9L70FuC8KlGqh0/4ey+U/gPmOOg0lD2KQgbCAOlnWarSsseGYi5vqd/uWd4S
fgGF+coW4+jth2IrIWJZxP5bXO5SIJj9ssFmf7pfyGQgbpdioHZe/WNe+lFCj6in
kSwBcnpJMlV8S2AUzTUhYbcmtSZvbbiQpqkFh5kjGlQ/Q9BweMP4v2al8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM7SurU30Im7XVRd8chN/7b0l/thMB8GA1UdIwQY
MBaAFJ6AcC7mody/OuJXoZlBX1m4M46kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbm9Cd0x1YWgzTDg2NGxlaG1VRmZXYmd6anFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8xYmRlMzktYjZkNS00NmVjLWE4MTMt
MjZlZjk2NjQzZDg0LzEvbm9Cd0x1YWgzTDg2NGxlaG1VRmZXYmd6anFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi8xYmRlMzktYjZkNS00NmVjLWE4MTMtMjZlZjk2NjQzZDg0
LzEvbm9Cd0x1YWgzTDg2NGxlaG1VRmZXYmd6anFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcTh4stU7
4jlxWF/TS+GglRdamTepMfem6d6B970PsyCOFDN5oCsS0gGx5//GlR18IMN51IBf
du4lJgFw29TPclzZiM2mGc0rqcQMzc+f6Z85eJTY5GGXF0M3PpQGqKRcAQdhXYpi
ro9OeTNxYq6r+9pgvtBBaafvPR8wMo22+yxWqDb9we2/m771e5Yzv9Tjhl1yuMb3
YvmzO1GGonD+RzSrqDC8PeAa/aNzz7vnW3J1S7UnrPwr7XOEh/w2wz1ym0p7UN6F
YbfT3+TyCiqcXsuEMvPevl8kYqoaNP8gg1H32pWLfCFKcQXIvGpI5H+A2Lke8D3M
ER/F/UYyd/wV7g==
-----END CERTIFICATE-----
Generated at Tue Apr 22 18:18:40 2025 by rpki-client