Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
File: 5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json)
Hash identifier: Abg5ZJkIGpVnwfnMuKElYr3cjyJcNsvBf/49qlGsuaY=
Subject key identifier: A7:4F:CC:2E:C7:A5:91:8A:B0:0E:1F:B4:A8:DA:51:1D:00:FA:EA:D5
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Certificate issuer: /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial: 01965CF10640A3D5ACAAE966F373E38C8552
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
Manifest number: 1502
Signing time: Tue 22 Apr 2025 10:00:21 +0000
Manifest this update: Tue 22 Apr 2025 10:00:21 +0000
Manifest next update: Wed 23 Apr 2025 10:00:21 +0000
Files and hashes: 1: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: HVvRvyJZuXmRezcNE9Xt7QQxANP/4UlpTiNZfKdr3QQ=)
2: DwTC30oaWKwssRCXrBoUlk9Q5bw.roa (hash: ijzA7vHvds3BxvrPMvxvhrjeIw/3n+d/qJzXMvHrD7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 10:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:f1:06:40:a3:d5:ac:aa:e9:66:f3:73:e3:8c:85:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Validity
Not Before: Apr 22 10:00:21 2025 GMT
Not After : Apr 23 10:00:21 2025 GMT
Subject: CN=a74fcc2ec7a5918ab00e1fb4a8da511d00faead5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:38:0c:49:c4:1b:e4:9b:88:bb:5f:73:36:6a:
89:48:57:bd:24:e0:cf:0c:dd:23:4c:45:8e:9b:c1:
cc:9a:e4:99:31:71:dd:2a:e9:ef:c2:03:e0:e3:34:
82:4d:44:2d:16:02:7c:63:f2:e1:41:49:e5:f3:f8:
a6:cc:56:bf:f7:40:c7:3d:ab:d8:61:19:85:19:fb:
3b:0d:35:21:da:9a:1e:e2:20:46:f7:82:76:3b:b8:
38:00:38:3e:75:5d:84:43:12:35:3b:d5:88:71:b0:
32:e1:24:ae:8f:06:22:c8:1e:cb:5e:9b:d2:2e:2b:
80:71:28:9d:eb:72:0c:6a:25:18:8e:50:ce:cd:12:
db:26:73:70:b7:d7:6b:cf:6f:a5:3f:ec:55:de:c2:
c4:13:a6:7e:e2:be:08:4a:6f:7f:6c:20:0f:cd:73:
82:3b:8a:d3:c0:c9:9d:84:74:bf:2f:30:68:cd:84:
9b:33:ad:57:d9:57:e3:1f:64:a5:d4:a0:9d:34:2f:
ef:6a:94:18:e4:0e:6f:03:80:e7:2c:03:cd:8b:0b:
bb:a9:5c:80:3e:64:ec:b5:1c:36:28:c8:7b:5d:90:
9b:7d:34:63:64:1f:f9:b7:24:0e:e5:aa:8f:2e:57:
17:cd:ec:18:cc:1b:3d:f2:7f:f6:97:ac:e9:37:2d:
c7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:4F:CC:2E:C7:A5:91:8A:B0:0E:1F:B4:A8:DA:51:1D:00:FA:EA:D5
X509v3 Authority Key Identifier:
keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:96:70:7d:cf:cc:17:77:4a:2e:82:44:7b:93:7b:de:fc:bf:
cb:b7:fb:56:00:50:df:4d:d2:0c:5f:6b:c8:08:f6:a3:84:41:
9b:f8:01:ee:1f:b8:0b:e5:fb:61:3e:ab:cc:d9:5d:9a:ab:06:
bc:6f:9b:9a:d5:00:09:ee:a8:04:56:78:96:4a:be:46:b5:79:
60:87:ec:a1:a5:ee:85:8d:c4:87:3a:9f:59:7b:4c:34:80:73:
2e:41:ad:90:4f:4f:d4:3a:21:80:27:05:43:a2:42:2c:e5:b5:
2a:72:6b:15:6d:da:dc:6d:d2:b0:a1:09:b6:06:70:58:65:c0:
c9:d2:64:22:fd:a4:93:a0:c9:93:ee:b3:67:e8:f4:ff:c5:1b:
fe:b7:4c:ce:e6:51:20:1b:6a:b4:42:55:4c:d4:9d:46:cd:2a:
cf:1e:a5:4e:f0:a7:32:f4:0b:ea:87:6d:31:27:8c:55:ec:60:
17:f6:ea:5e:d1:cc:96:a7:30:19:d7:13:23:7d:98:fd:d4:09:
32:0f:75:f2:48:50:47:a8:5d:49:4b:ec:d0:f5:89:3f:1c:a3:
50:43:49:32:2f:0f:8c:77:37:a9:92:c8:4f:d2:e4:0d:81:2d:
0b:c0:0f:77:1f:d1:65:9e:c4:35:e5:f9:f6:e2:11:d3:33:d7:
6e:6b:fc:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZc8QZAo9Wsqulm83PjjIVSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ZjJhODY2MjAyZjRiOGNiYzMzMzgyZDZlODJkODFkODk2
NGM4MGUwHhcNMjUwNDIyMTAwMDIxWhcNMjUwNDIzMTAwMDIxWjAzMTEwLwYDVQQD
EyhhNzRmY2MyZWM3YTU5MThhYjAwZTFmYjRhOGRhNTExZDAwZmFlYWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqjgMScQb5JuIu19zNmqJSFe9JODP
DN0jTEWOm8HMmuSZMXHdKunvwgPg4zSCTUQtFgJ8Y/LhQUnl8/imzFa/90DHPavY
YRmFGfs7DTUh2poe4iBG94J2O7g4ADg+dV2EQxI1O9WIcbAy4SSujwYiyB7LXpvS
LiuAcSid63IMaiUYjlDOzRLbJnNwt9drz2+lP+xV3sLEE6Z+4r4ISm9/bCAPzXOC
O4rTwMmdhHS/LzBozYSbM61X2VfjH2Sl1KCdNC/vapQY5A5vA4DnLAPNiwu7qVyA
PmTstRw2KMh7XZCbfTRjZB/5tyQO5aqPLlcXzewYzBs98n/2l6zpNy3HNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKdPzC7HpZGKsA4ftKjaUR0A+urVMB8GA1UdIwQY
MBaAFOTyqGYgL0uMvDM4LW6C2B2JZMgOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVBLb1ppQXZTNHk4TXpndGJvTFlIWWxreUE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy84NzkxYTEtZTY3OS00NjYzLWEyZGEt
MWE1MTNkZjA2OWZjLzEvNVBLb1ppQXZTNHk4TXpndGJvTFlIWWxreUE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy84NzkxYTEtZTY3OS00NjYzLWEyZGEtMWE1MTNkZjA2OWZj
LzEvNVBLb1ppQXZTNHk4TXpndGJvTFlIWWxreUE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN5Zwfc/M
F3dKLoJEe5N73vy/y7f7VgBQ303SDF9ryAj2o4RBm/gB7h+4C+X7YT6rzNldmqsG
vG+bmtUACe6oBFZ4lkq+RrV5YIfsoaXuhY3EhzqfWXtMNIBzLkGtkE9P1DohgCcF
Q6JCLOW1KnJrFW3a3G3SsKEJtgZwWGXAydJkIv2kk6DJk+6zZ+j0/8Ub/rdMzuZR
IBtqtEJVTNSdRs0qzx6lTvCnMvQL6odtMSeMVexgF/bqXtHMlqcwGdcTI32Y/dQJ
Mg918khQR6hdSUvs0PWJPxyjUENJMi8PjHc3qZLIT9LkDYEtC8APdx/RZZ7ENeX5
9uIR0zPXbmv8lw==
-----END CERTIFICATE-----
Generated at Tue Apr 22 19:39:26 2025 by rpki-client