Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
File: 2okNBdXIi33m9bqkwdCF_nMB9dU.mft (raw, json)
Hash identifier: vUzlDDcm/YjpQbIY1TLtiIxyegpwPRC8Az9JBwcGSM4=
Subject key identifier: 7E:5F:55:96:3F:29:E1:88:74:A4:0D:69:9C:6B:2F:BE:11:5E:35:99
Authority key identifier: DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
Certificate issuer: /CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Certificate serial: 01965EA87828F101A13833984EE552EDCC22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
Manifest number: 095A
Signing time: Tue 22 Apr 2025 18:00:21 +0000
Manifest this update: Tue 22 Apr 2025 18:00:21 +0000
Manifest next update: Wed 23 Apr 2025 18:00:21 +0000
Files and hashes: 1: 2okNBdXIi33m9bqkwdCF_nMB9dU.crl (hash: E8ZEIaWzwUB46WbDd1HuP+nZi9QbuPEsgpbeFDEv2HQ=)
2: empYwKrx4ABahFY0k2CZXZft5Pg.roa (hash: lQyRrUFjZRPH9Yib0Mwz+z/3ALSf5u0tcJRbBn2hjqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:a8:78:28:f1:01:a1:38:33:98:4e:e5:52:ed:cc:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da890d05d5c88b7de6f5baa4c1d085fe7301f5d5
Validity
Not Before: Apr 22 18:00:21 2025 GMT
Not After : Apr 23 18:00:21 2025 GMT
Subject: CN=7e5f55963f29e18874a40d699c6b2fbe115e3599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:01:8c:50:5a:b1:85:80:da:79:b7:69:07:52:
62:a1:ef:1e:87:a4:48:84:6b:39:ba:4f:f0:24:77:
08:83:3a:b9:61:ad:c8:14:8e:82:bd:19:c4:63:c8:
86:56:98:b1:4d:fb:25:6e:41:8f:9a:05:1f:76:da:
e6:05:05:18:6b:1a:15:f0:52:2e:30:45:b1:8d:12:
eb:59:82:dc:cb:9b:91:a8:45:cd:97:be:34:a8:95:
fb:49:02:b0:87:12:f7:8a:37:ed:fe:aa:f0:04:16:
bb:ed:91:79:46:7c:91:0a:29:71:c2:72:9d:41:ac:
4c:3c:a8:91:9a:75:d9:bc:3a:a8:cd:32:99:86:75:
4c:b3:52:c4:71:93:3d:1a:7b:bb:24:2b:cf:f7:83:
a2:e0:b2:3c:25:98:df:95:62:29:63:17:fb:2f:db:
c3:2b:be:2b:2c:44:29:c6:8d:fe:4f:ca:9b:96:c6:
3e:0d:bd:7f:10:6c:d3:1d:13:e6:c3:35:fb:43:ad:
3d:75:67:1b:26:a5:00:69:60:0b:ee:d0:74:f3:bb:
e1:4d:ec:a6:05:3d:82:51:95:a4:6c:87:0d:50:8c:
ce:d5:1f:04:50:f2:37:13:4d:43:bd:c3:58:6c:fa:
2a:0c:9c:13:4c:c1:d7:98:65:42:bd:1b:c9:8f:83:
ae:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:5F:55:96:3F:29:E1:88:74:A4:0D:69:9C:6B:2F:BE:11:5E:35:99
X509v3 Authority Key Identifier:
keyid:DA:89:0D:05:D5:C8:8B:7D:E6:F5:BA:A4:C1:D0:85:FE:73:01:F5:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2okNBdXIi33m9bqkwdCF_nMB9dU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a67420-b1b5-4495-9176-b4836bc164a1/1/2okNBdXIi33m9bqkwdCF_nMB9dU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:ee:21:18:dd:62:f7:53:44:c4:80:33:4b:21:21:24:1e:ec:
17:ff:74:2c:20:2e:88:45:e2:27:90:47:b5:a3:bc:33:71:bb:
46:af:38:5a:84:87:bb:26:87:25:7e:9f:05:ae:22:ab:06:f8:
bd:1c:53:d1:a6:99:e6:37:a6:f0:c2:08:7c:97:38:3b:6a:a7:
c9:25:dc:f4:96:d4:a8:99:ae:c4:ed:e8:9c:01:0b:48:bc:2f:
2b:ba:be:ff:ad:e8:42:ff:25:e0:e3:d9:a5:09:9e:60:c6:d2:
3a:73:40:ea:d3:6b:8f:c0:3a:a4:5b:f8:32:9b:a0:c0:95:5b:
48:39:a3:49:c2:dc:4c:85:ce:a6:ce:66:96:13:15:b6:b0:1e:
57:bc:11:e5:3b:02:1f:44:71:b3:99:5d:7b:d7:0a:b6:0d:85:
04:6d:ef:3f:95:1a:dc:1f:52:21:9a:38:e5:6d:4e:75:0f:ba:
a6:c4:b8:be:83:05:45:97:b0:b5:1f:a2:76:b7:2a:a0:6d:9c:
22:71:ce:bc:63:c4:70:9e:80:b5:bd:f6:1a:67:76:c7:f4:cc:
ab:3d:44:e8:ed:95:42:89:03:c9:98:0c:02:97:c7:3b:7d:cd:
0e:bb:5e:7c:f0:5b:0c:95:ee:6a:54:ee:08:95:a5:f8:c7:fe:
5a:40:e6:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZeqHgo8QGhODOYTuVS7cwiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhODkwZDA1ZDVjODhiN2RlNmY1YmFhNGMxZDA4NWZlNzMw
MWY1ZDUwHhcNMjUwNDIyMTgwMDIxWhcNMjUwNDIzMTgwMDIxWjAzMTEwLwYDVQQD
Eyg3ZTVmNTU5NjNmMjllMTg4NzRhNDBkNjk5YzZiMmZiZTExNWUzNTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgGMUFqxhYDaebdpB1Jioe8eh6RI
hGs5uk/wJHcIgzq5Ya3IFI6CvRnEY8iGVpixTfslbkGPmgUfdtrmBQUYaxoV8FIu
MEWxjRLrWYLcy5uRqEXNl740qJX7SQKwhxL3ijft/qrwBBa77ZF5RnyRCilxwnKd
QaxMPKiRmnXZvDqozTKZhnVMs1LEcZM9Gnu7JCvP94Oi4LI8JZjflWIpYxf7L9vD
K74rLEQpxo3+T8qblsY+Db1/EGzTHRPmwzX7Q609dWcbJqUAaWAL7tB087vhTeym
BT2CUZWkbIcNUIzO1R8EUPI3E01DvcNYbPoqDJwTTMHXmGVCvRvJj4Ou4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH5fVZY/KeGIdKQNaZxrL74RXjWZMB8GA1UdIwQY
MBaAFNqJDQXVyIt95vW6pMHQhf5zAfXVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMm9rTkJkWElpMzNtOWJxa3dkQ0Zfbk1COWRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9hNjc0MjAtYjFiNS00NDk1LTkxNzYt
YjQ4MzZiYzE2NGExLzEvMm9rTkJkWElpMzNtOWJxa3dkQ0Zfbk1COWRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS9hNjc0MjAtYjFiNS00NDk1LTkxNzYtYjQ4MzZiYzE2NGEx
LzEvMm9rTkJkWElpMzNtOWJxa3dkQ0Zfbk1COWRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXu4hGN1i
91NExIAzSyEhJB7sF/90LCAuiEXiJ5BHtaO8M3G7Rq84WoSHuyaHJX6fBa4iqwb4
vRxT0aaZ5jem8MIIfJc4O2qnySXc9JbUqJmuxO3onAELSLwvK7q+/63oQv8l4OPZ
pQmeYMbSOnNA6tNrj8A6pFv4MpugwJVbSDmjScLcTIXOps5mlhMVtrAeV7wR5TsC
H0Rxs5lde9cKtg2FBG3vP5Ua3B9SIZo45W1OdQ+6psS4voMFRZewtR+idrcqoG2c
InHOvGPEcJ6Atb32Gmd2x/TMqz1E6O2VQokDyZgMApfHO33NDrtefPBbDJXualTu
CJWl+Mf+WkDmPQ==
-----END CERTIFICATE-----
Generated at Tue Apr 22 23:06:42 2025 by rpki-client