Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json)
Hash identifier: L318iZrQwYpiQUbkVg/A+Sm1+X6QmKDbKDchGyY31bk=
Subject key identifier: 2D:72:62:F7:8F:A6:7A:EB:00:74:E2:81:04:D9:B2:47:0B:BC:10:5D
Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Certificate serial: 019654254208CCF1656F33D55C03B49565D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
Manifest number: 022E
Signing time: Sun 20 Apr 2025 17:00:49 +0000
Manifest this update: Sun 20 Apr 2025 17:00:49 +0000
Manifest next update: Mon 21 Apr 2025 17:00:49 +0000
Files and hashes: 1: kdQZ4QS0sUqXnywKZ8M79hUmfTA.roa (hash: xGG3G4XfdVhcDuFzw8EOPzLUi5vn/b3D8pkyEY9PSkc=)
2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: TKbFS6huXtMWbNM6n0+ewHmoTT9VzUdvvGL64pqGuXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:25:42:08:cc:f1:65:6f:33:d5:5c:03:b4:95:65:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Validity
Not Before: Apr 20 17:00:49 2025 GMT
Not After : Apr 21 17:00:49 2025 GMT
Subject: CN=2d7262f78fa67aeb0074e28104d9b2470bbc105d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0a:56:a4:78:aa:21:e4:58:09:2d:b5:7b:f7:
79:34:d3:c8:9c:5a:f0:4e:7e:12:74:ef:12:d9:cd:
bf:0c:b7:af:9d:59:42:a2:38:4f:75:65:5a:76:ca:
c9:46:7e:bb:66:38:a6:b6:78:a0:ee:6e:69:b3:39:
cb:f6:3c:2c:67:a1:d3:00:9c:3d:80:a5:40:79:d6:
bd:3d:4b:55:1d:c8:ba:10:75:67:57:07:e0:52:b4:
99:8a:9d:64:0e:3c:fb:f9:57:b6:4c:22:9f:d5:32:
b3:53:7d:a6:6b:d0:0e:60:b5:4c:0d:fa:a4:6e:36:
3c:47:0b:2d:13:40:4b:38:65:df:86:6f:09:99:7e:
5a:eb:24:b1:f5:44:b6:29:e0:05:5c:1a:ef:17:cc:
b2:40:84:83:ae:30:7c:c7:4d:3a:e0:42:57:c8:e1:
59:6c:b3:dc:d5:b8:7b:d4:f8:3e:af:3c:d7:2b:dc:
a9:89:45:4f:40:a1:6c:cb:e0:5c:a3:63:43:f7:1c:
3b:9f:a5:29:9f:0a:d8:90:c9:18:6d:89:54:c8:52:
8b:47:0d:1c:a3:22:0a:5b:92:76:9c:29:1d:80:e9:
6f:37:3d:cd:cd:d3:c4:e1:00:20:65:07:0e:e8:ce:
3b:6c:74:a3:89:ea:ab:bb:fd:a8:74:85:af:87:6b:
7d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:72:62:F7:8F:A6:7A:EB:00:74:E2:81:04:D9:B2:47:0B:BC:10:5D
X509v3 Authority Key Identifier:
keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:18:e3:7b:28:96:a4:d2:35:26:bb:bc:ba:31:ca:d9:c5:af:
97:12:7a:35:ed:0c:ab:f1:02:7e:12:ae:d3:5a:d3:70:73:7a:
e2:2d:c7:4d:9a:7c:8b:7e:21:f8:51:95:2c:06:de:3a:37:53:
e0:82:43:a9:1c:79:32:69:da:fd:40:5f:34:29:25:28:4a:bc:
76:7c:26:c2:d9:82:5e:84:30:8d:2d:ac:37:c2:2d:b3:49:d7:
b1:26:f1:61:25:bc:b5:de:54:cc:40:45:ea:66:4f:9e:41:01:
e7:d6:69:57:35:78:63:67:c4:64:98:f9:cd:77:56:3a:07:ea:
0e:b1:20:22:97:89:e1:29:cf:8b:ef:d4:ea:74:74:9a:18:d7:
90:56:7a:01:39:74:ef:df:5b:fe:13:78:39:88:d1:d2:fd:4d:
65:f7:9b:2a:91:89:8b:9c:4c:6c:7e:80:e9:57:6a:07:87:dc:
cb:c7:ae:6b:ef:67:96:93:a0:cf:1e:38:54:f0:8a:ba:65:ca:
81:6e:40:77:51:53:6f:34:f5:ea:49:c6:b2:3b:6a:47:f2:d8:
8c:e9:b7:05:fe:8d:97:f9:d6:b7:68:3e:7d:a2:b3:b9:15:a8:
2c:06:c2:7f:f1:ee:73:dc:e7:40:a9:b4:0a:18:39:99:a5:47:
5e:46:da:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZUJUIIzPFlbzPVXAO0lWXZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzZjMGYwZWM4YmJlZGYwZjYwODQ0ZGZlNGZlOTM5MzY5
YTRiNDAwHhcNMjUwNDIwMTcwMDQ5WhcNMjUwNDIxMTcwMDQ5WjAzMTEwLwYDVQQD
EygyZDcyNjJmNzhmYTY3YWViMDA3NGUyODEwNGQ5YjI0NzBiYmMxMDVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ApWpHiqIeRYCS21e/d5NNPInFrw
Tn4SdO8S2c2/DLevnVlCojhPdWVadsrJRn67Zjimtnig7m5psznL9jwsZ6HTAJw9
gKVAeda9PUtVHci6EHVnVwfgUrSZip1kDjz7+Ve2TCKf1TKzU32ma9AOYLVMDfqk
bjY8RwstE0BLOGXfhm8JmX5a6ySx9US2KeAFXBrvF8yyQISDrjB8x0064EJXyOFZ
bLPc1bh71Pg+rzzXK9ypiUVPQKFsy+Bco2ND9xw7n6UpnwrYkMkYbYlUyFKLRw0c
oyIKW5J2nCkdgOlvNz3NzdPE4QAgZQcO6M47bHSjieqru/2odIWvh2t9pQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC1yYvePpnrrAHTigQTZskcLvBBdMB8GA1UdIwQY
MBaAFLQ2wPDsi77fD2CETf5P6Tk2mktAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kYjY2YWItNzBhYy00MWFkLTk5NTgt
ZGQ4YjVhZmNlZTNiLzEvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9kYjY2YWItNzBhYy00MWFkLTk5NTgtZGQ4YjVhZmNlZTNi
LzEvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlRjjeyiW
pNI1Jru8ujHK2cWvlxJ6Ne0Mq/ECfhKu01rTcHN64i3HTZp8i34h+FGVLAbeOjdT
4IJDqRx5Mmna/UBfNCklKEq8dnwmwtmCXoQwjS2sN8Its0nXsSbxYSW8td5UzEBF
6mZPnkEB59ZpVzV4Y2fEZJj5zXdWOgfqDrEgIpeJ4SnPi+/U6nR0mhjXkFZ6ATl0
799b/hN4OYjR0v1NZfebKpGJi5xMbH6A6VdqB4fcy8eua+9nlpOgzx44VPCKumXK
gW5Ad1FTbzT16knGsjtqR/LYjOm3Bf6Nl/nWt2g+faKzuRWoLAbCf/Huc9znQKm0
Chg5maVHXkbaXg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:19:19 2025 by rpki-client