Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/e3050e-9994-4b96-bc79-766ead7e6513/1/d2ijHlyKWogiWYmhuu9KOBM4YBo.mft
File: d2ijHlyKWogiWYmhuu9KOBM4YBo.mft (raw, json)
Hash identifier: YQquDzKUiW+4yyQPs2AHWKH9JtY3bBrQKwjrpA1MJDE=
Subject key identifier: D7:A7:2C:FC:68:C8:AE:D8:46:1F:2C:BE:0E:4D:4D:14:5A:B0:BB:0D
Authority key identifier: 77:68:A3:1E:5C:8A:5A:88:22:59:89:A1:BA:EF:4A:38:13:38:60:1A
Certificate issuer: /CN=7768a31e5c8a5a88225989a1baef4a381338601a
Certificate serial: 01965801D913A7AC139DC89C543AC9B4CBBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2ijHlyKWogiWYmhuu9KOBM4YBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/e3050e-9994-4b96-bc79-766ead7e6513/1/d2ijHlyKWogiWYmhuu9KOBM4YBo.mft
Manifest number: 1500
Signing time: Mon 21 Apr 2025 11:00:37 +0000
Manifest this update: Mon 21 Apr 2025 11:00:37 +0000
Manifest next update: Tue 22 Apr 2025 11:00:37 +0000
Files and hashes: 1: 1-Q1JJEM-283CkQsyWnWZizkRRH0.roa (hash: pMkrNzbMgj6JidKdCAH0olpZAepxai3+rIJ34FZ4TEQ=)
2: d2ijHlyKWogiWYmhuu9KOBM4YBo.crl (hash: qHRjAvrlYVM8fvOemw+okw4cxWzTPes/A9mKXf+uopg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/e3050e-9994-4b96-bc79-766ead7e6513/1/d2ijHlyKWogiWYmhuu9KOBM4YBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/e3050e-9994-4b96-bc79-766ead7e6513/1/d2ijHlyKWogiWYmhuu9KOBM4YBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/d2ijHlyKWogiWYmhuu9KOBM4YBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:01:d9:13:a7:ac:13:9d:c8:9c:54:3a:c9:b4:cb:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7768a31e5c8a5a88225989a1baef4a381338601a
Validity
Not Before: Apr 21 11:00:37 2025 GMT
Not After : Apr 22 11:00:37 2025 GMT
Subject: CN=d7a72cfc68c8aed8461f2cbe0e4d4d145ab0bb0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7e:21:2a:94:5a:8d:ee:e6:76:1f:11:ae:80:
31:20:c2:d8:c1:97:8e:7c:ea:f4:f5:5b:b8:c4:a0:
9c:0b:8b:73:9a:10:b6:d5:15:b1:08:69:38:4b:16:
08:06:b6:8d:be:4d:77:35:d8:55:7d:59:85:4a:a3:
35:68:a9:9b:7c:bb:13:8c:46:93:3d:e3:fe:81:a9:
3f:a4:59:8c:69:74:04:56:5f:11:34:e7:37:14:6a:
e1:26:b4:0d:92:6c:e2:31:5d:66:f5:c2:76:7e:78:
bf:22:0e:f1:99:8b:b0:e3:94:53:85:ad:aa:2e:ee:
9b:79:e0:9a:3a:4e:7a:b7:13:19:4c:99:a5:2f:58:
49:55:3d:af:6f:b7:50:9a:1f:36:15:c9:29:84:9d:
a7:ee:f8:5b:9d:92:1b:32:b4:43:3b:5a:61:fb:a7:
3e:e0:d5:eb:1a:29:84:da:c8:99:df:f2:53:18:cc:
d8:eb:f3:be:21:1a:6a:e2:28:d6:db:91:c8:5b:24:
84:f9:a9:80:3d:95:52:5d:5f:89:ee:11:81:37:ce:
c1:ad:a9:bb:da:53:5c:83:f1:70:fc:71:81:cb:4a:
26:66:1f:31:f2:19:cf:a9:a3:65:8c:bc:87:bb:79:
33:0d:52:52:30:86:81:50:f9:52:ee:6e:1e:ba:8e:
1f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A7:2C:FC:68:C8:AE:D8:46:1F:2C:BE:0E:4D:4D:14:5A:B0:BB:0D
X509v3 Authority Key Identifier:
keyid:77:68:A3:1E:5C:8A:5A:88:22:59:89:A1:BA:EF:4A:38:13:38:60:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2ijHlyKWogiWYmhuu9KOBM4YBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/e3050e-9994-4b96-bc79-766ead7e6513/1/d2ijHlyKWogiWYmhuu9KOBM4YBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/e3050e-9994-4b96-bc79-766ead7e6513/1/d2ijHlyKWogiWYmhuu9KOBM4YBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:d0:2e:65:76:3b:fa:52:bd:b6:20:09:be:5f:ce:a9:a1:36:
f5:8a:73:8f:07:b7:19:d1:ee:cc:ca:f2:96:c9:b3:70:e3:61:
03:13:fc:e3:a3:1d:e2:2c:1b:98:01:6e:56:26:07:88:41:e9:
a5:f6:b8:f7:f8:38:ec:2d:5f:27:64:07:f2:28:46:e4:c0:9b:
d1:03:e6:ee:09:65:cb:e0:19:e7:6d:dd:d7:0e:79:7e:1e:3f:
c1:38:9c:5f:44:8f:15:5c:0d:95:01:f9:3b:ad:37:4b:c0:f0:
00:92:aa:15:22:a4:4f:ea:e0:c0:a2:c7:a6:53:23:67:a7:88:
41:4d:4f:67:59:11:5d:aa:48:33:48:0c:a8:cd:47:22:be:a7:
8f:30:c7:3b:53:21:0d:80:46:95:f3:1d:3e:c0:68:19:17:2f:
6b:cd:0c:c2:8f:0b:5b:b8:1f:5d:12:a8:0b:4c:4b:8d:1b:48:
60:c0:02:7c:7c:ab:c1:30:e4:07:92:e0:f6:56:ad:eb:30:a3:
6a:30:27:09:e9:b3:8f:5a:2e:77:61:e3:2f:5b:1c:d1:f4:35:
86:ce:f5:92:cd:43:89:e5:69:0f:62:b2:b7:85:e2:02:2d:69:
8e:2c:b0:c8:a1:69:ed:f7:94:d6:03:0d:1b:47:79:62:df:00:
70:7c:da:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZYAdkTp6wTncicVDrJtMu7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3NjhhMzFlNWM4YTVhODgyMjU5ODlhMWJhZWY0YTM4MTMz
ODYwMWEwHhcNMjUwNDIxMTEwMDM3WhcNMjUwNDIyMTEwMDM3WjAzMTEwLwYDVQQD
EyhkN2E3MmNmYzY4YzhhZWQ4NDYxZjJjYmUwZTRkNGQxNDVhYjBiYjBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxn4hKpRaje7mdh8RroAxIMLYwZeO
fOr09Vu4xKCcC4tzmhC21RWxCGk4SxYIBraNvk13NdhVfVmFSqM1aKmbfLsTjEaT
PeP+gak/pFmMaXQEVl8RNOc3FGrhJrQNkmziMV1m9cJ2fni/Ig7xmYuw45RTha2q
Lu6beeCaOk56txMZTJmlL1hJVT2vb7dQmh82FckphJ2n7vhbnZIbMrRDO1ph+6c+
4NXrGimE2siZ3/JTGMzY6/O+IRpq4ijW25HIWySE+amAPZVSXV+J7hGBN87Bram7
2lNcg/Fw/HGBy0omZh8x8hnPqaNljLyHu3kzDVJSMIaBUPlS7m4euo4fyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNenLPxoyK7YRh8svg5NTRRasLsNMB8GA1UdIwQY
MBaAFHdoox5cilqIIlmJobrvSjgTOGAaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDJpakhseUtXb2dpV1ltaHV1OUtPQk00WUJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9lMzA1MGUtOTk5NC00Yjk2LWJjNzkt
NzY2ZWFkN2U2NTEzLzEvZDJpakhseUtXb2dpV1ltaHV1OUtPQk00WUJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9lMzA1MGUtOTk5NC00Yjk2LWJjNzktNzY2ZWFkN2U2NTEz
LzEvZDJpakhseUtXb2dpV1ltaHV1OUtPQk00WUJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEActAuZXY7
+lK9tiAJvl/OqaE29Ypzjwe3GdHuzMrylsmzcONhAxP846Md4iwbmAFuViYHiEHp
pfa49/g47C1fJ2QH8ihG5MCb0QPm7glly+AZ523d1w55fh4/wTicX0SPFVwNlQH5
O603S8DwAJKqFSKkT+rgwKLHplMjZ6eIQU1PZ1kRXapIM0gMqM1HIr6njzDHO1Mh
DYBGlfMdPsBoGRcva80Mwo8LW7gfXRKoC0xLjRtIYMACfHyrwTDkB5Lg9lat6zCj
ajAnCemzj1oud2HjL1sc0fQ1hs71ks1DieVpD2Kyt4XiAi1pjiywyKFp7feU1gMN
G0d5Yt8AcHzawg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:05:02 2025 by rpki-client