Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
File: _XF_OrY5RaG-c5wrOiWJvqVd224.mft (raw, json)
Hash identifier: 8nEimvxgFWu1pT/s5mhkNNF7XitX91LrXle4gm9rpJA=
Subject key identifier: E0:5F:E1:A3:F2:6B:76:84:49:87:DD:A6:DE:9A:B1:FA:CB:36:34:2F
Authority key identifier: FD:71:7F:3A:B6:39:45:A1:BE:73:9C:2B:3A:25:89:BE:A5:5D:DB:6E
Certificate issuer: /CN=fd717f3ab63945a1be739c2b3a2589bea55ddb6e
Certificate serial: 0196545BFA97319F0D5DB12DF257177C070E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
Manifest number: 0AAF
Signing time: Sun 20 Apr 2025 18:00:36 +0000
Manifest this update: Sun 20 Apr 2025 18:00:36 +0000
Manifest next update: Mon 21 Apr 2025 18:00:36 +0000
Files and hashes: 1: _XF_OrY5RaG-c5wrOiWJvqVd224.crl (hash: GseHrV8B6WBcc/E3v9M8Kg2x2ZcfCg9gN/BYb9I5m6s=)
2: gzdyy5qInnSa0M6b956pVUzgC-k.roa (hash: 2Ow3V4pucXvBImXLn02gpmIFTSdf3VU+/V7SnyCKOjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5b:fa:97:31:9f:0d:5d:b1:2d:f2:57:17:7c:07:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd717f3ab63945a1be739c2b3a2589bea55ddb6e
Validity
Not Before: Apr 20 18:00:36 2025 GMT
Not After : Apr 21 18:00:36 2025 GMT
Subject: CN=e05fe1a3f26b76844987dda6de9ab1facb36342f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:73:bf:c4:eb:92:b3:54:49:08:49:a0:7b:f6:
0c:41:5c:74:46:9a:ce:5e:4e:cb:f7:2d:25:30:5c:
e5:7a:9d:d6:79:c6:7b:04:c4:27:c3:b7:97:48:81:
f6:86:73:e8:26:46:e3:43:c1:2b:f2:34:2c:1e:2e:
b0:df:58:94:36:78:5a:64:39:2f:ca:23:07:3d:b2:
65:0e:33:ff:fc:3a:76:d5:cf:8b:c1:7e:13:64:77:
84:4a:65:72:5a:39:9f:c6:95:54:56:59:84:da:b6:
0d:33:5b:e1:28:7f:0f:45:a5:0b:ec:b1:8a:3a:8a:
78:42:b6:b9:33:ee:0f:da:6e:e6:2a:d7:e0:bb:8a:
4e:57:87:ba:2b:c9:7a:f3:93:61:f4:f6:7f:8c:5e:
2c:cb:4b:75:c3:ef:3e:08:bd:86:b4:3b:5f:87:62:
63:90:32:6a:c2:0d:70:b2:b7:8c:de:79:4d:38:63:
33:25:74:70:90:4b:d4:46:cd:07:c4:1b:c6:c3:7a:
98:6b:78:97:3a:40:e9:b0:55:32:1d:d1:e3:2b:d7:
06:d8:31:9d:76:c7:46:5c:49:76:54:0f:f8:22:19:
4d:d9:07:81:d3:39:3f:34:87:29:29:fb:06:bc:6d:
7f:a4:b9:33:e5:3d:66:4e:38:03:43:ee:55:53:77:
bf:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:5F:E1:A3:F2:6B:76:84:49:87:DD:A6:DE:9A:B1:FA:CB:36:34:2F
X509v3 Authority Key Identifier:
keyid:FD:71:7F:3A:B6:39:45:A1:BE:73:9C:2B:3A:25:89:BE:A5:5D:DB:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:aa:da:cc:88:14:10:f8:eb:63:8c:5f:a6:dc:79:0c:07:22:
dd:9f:78:d5:0c:b0:85:00:f4:85:c9:6f:03:ad:ac:f8:91:6b:
b6:95:00:76:7a:ba:81:33:47:b5:92:b8:60:d5:a6:6f:5d:4f:
cb:ce:62:4c:23:ea:19:a9:57:12:0c:1b:9e:fc:ef:97:20:bb:
13:17:14:10:93:aa:73:b3:83:a1:9c:26:f9:85:75:43:69:bb:
aa:d9:d6:66:05:b2:c9:b4:6b:86:ac:33:03:36:e7:69:a5:ee:
cb:e6:1e:ec:f5:bf:35:3f:a7:27:fb:37:79:4c:7f:bb:ab:43:
93:c8:c2:a4:85:00:06:12:93:2f:c0:9b:79:b0:57:66:85:a8:
20:12:96:c9:79:16:ed:d5:a4:39:eb:11:b6:49:72:a6:41:91:
3d:f0:b8:5b:d6:bc:3b:d7:f2:0f:46:5b:ea:cc:5f:39:41:0f:
e1:25:39:46:d6:33:13:cf:08:08:1d:fa:ac:f7:51:37:e6:ca:
c8:03:42:76:39:0b:75:d1:ea:05:b3:b4:bb:f2:38:f7:e5:64:
df:b7:88:5d:7c:dc:84:83:1d:a5:f3:78:d6:4e:f2:3e:46:54:
73:18:93:98:1e:fb:c1:fe:67:5c:14:1a:00:26:f5:10:29:e9:
de:67:bc:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZUW/qXMZ8NXbEt8lcXfAcOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkNzE3ZjNhYjYzOTQ1YTFiZTczOWMyYjNhMjU4OWJlYTU1
ZGRiNmUwHhcNMjUwNDIwMTgwMDM2WhcNMjUwNDIxMTgwMDM2WjAzMTEwLwYDVQQD
EyhlMDVmZTFhM2YyNmI3Njg0NDk4N2RkYTZkZTlhYjFmYWNiMzYzNDJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXO/xOuSs1RJCEmge/YMQVx0RprO
Xk7L9y0lMFzlep3WecZ7BMQnw7eXSIH2hnPoJkbjQ8Er8jQsHi6w31iUNnhaZDkv
yiMHPbJlDjP//Dp21c+LwX4TZHeESmVyWjmfxpVUVlmE2rYNM1vhKH8PRaUL7LGK
Oop4Qra5M+4P2m7mKtfgu4pOV4e6K8l685Nh9PZ/jF4sy0t1w+8+CL2GtDtfh2Jj
kDJqwg1wsreM3nlNOGMzJXRwkEvURs0HxBvGw3qYa3iXOkDpsFUyHdHjK9cG2DGd
dsdGXEl2VA/4IhlN2QeB0zk/NIcpKfsGvG1/pLkz5T1mTjgDQ+5VU3e/ywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOBf4aPya3aESYfdpt6asfrLNjQvMB8GA1UdIwQY
MBaAFP1xfzq2OUWhvnOcKzolib6lXdtuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1hGX09yWTVSYUctYzV3ck9pV0p2cVZkMjI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8yZjBhNjYtMTYzNC00MGZiLTk5YjAt
OTMxNTA1ZmY0MWM1LzEvX1hGX09yWTVSYUctYzV3ck9pV0p2cVZkMjI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny8yZjBhNjYtMTYzNC00MGZiLTk5YjAtOTMxNTA1ZmY0MWM1
LzEvX1hGX09yWTVSYUctYzV3ck9pV0p2cVZkMjI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD6razIgU
EPjrY4xfptx5DAci3Z941QywhQD0hclvA62s+JFrtpUAdnq6gTNHtZK4YNWmb11P
y85iTCPqGalXEgwbnvzvlyC7ExcUEJOqc7ODoZwm+YV1Q2m7qtnWZgWyybRrhqwz
AzbnaaXuy+Ye7PW/NT+nJ/s3eUx/u6tDk8jCpIUABhKTL8CbebBXZoWoIBKWyXkW
7dWkOesRtklypkGRPfC4W9a8O9fyD0Zb6sxfOUEP4SU5RtYzE88ICB36rPdRN+bK
yANCdjkLddHqBbO0u/I49+Vk37eIXXzchIMdpfN41k7yPkZUcxiTmB77wf5nXBQa
ACb1ECnp3me8Gg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:10:39 2025 by rpki-client