Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
File: 28lQCYQ2KBzuVCoedFRlUeHlUoM.mft (raw, json)
Hash identifier: yiRV/3VZ/FQ+pHV7H0pnJdh4X/mIKqnvw8+OZWYUOjI=
Subject key identifier: 2A:2C:E4:F5:87:35:E9:7E:F7:1A:45:BF:D1:D8:65:2E:70:A3:A1:56
Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
Certificate issuer: /CN=dbc950098436281cee542a1e74546551e1e55283
Certificate serial: 01963F5478AC0A7E744712564D256C397264
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
Manifest number: 14F5
Signing time: Wed 16 Apr 2025 16:00:22 +0000
Manifest this update: Wed 16 Apr 2025 16:00:22 +0000
Manifest next update: Thu 17 Apr 2025 16:00:22 +0000
Files and hashes: 1: 28lQCYQ2KBzuVCoedFRlUeHlUoM.crl (hash: f3BvYlo0jjaGMyUmFCW2UpIVicQE1B04mXFW2igyGZw=)
2: 5OG6iGTbUMv4yreuCzltBDVdDTU.roa (hash: B8Cg7jxvmm1JBGJPeKqbsREjncwII7bdGdlW3Ml3/PA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:54:78:ac:0a:7e:74:47:12:56:4d:25:6c:39:72:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbc950098436281cee542a1e74546551e1e55283
Validity
Not Before: Apr 16 16:00:22 2025 GMT
Not After : Apr 17 16:00:22 2025 GMT
Subject: CN=2a2ce4f58735e97ef71a45bfd1d8652e70a3a156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7a:6d:50:5b:16:81:ce:21:66:f7:54:19:3e:
43:1f:31:f9:71:07:15:5d:66:2d:d9:81:da:14:7b:
b2:90:83:b1:34:a2:40:46:e4:ea:e5:bf:33:c6:59:
74:0e:ec:59:09:c8:b3:96:aa:9b:66:0d:75:1d:96:
03:4d:b9:b1:52:6d:83:41:89:09:41:7b:9b:07:ae:
5c:5d:48:69:94:90:8b:3b:76:eb:52:b3:2b:60:c0:
18:54:2f:41:9a:1d:92:ca:84:c2:8f:13:92:fc:f9:
16:25:69:12:eb:29:8c:59:8b:ef:e1:ff:60:ae:1f:
01:e9:de:fd:0d:5b:e6:92:f8:b3:44:61:22:ff:c5:
a3:cb:13:08:56:06:1e:a5:66:29:47:ec:f8:fd:34:
bd:e7:7c:f0:59:0e:4c:7e:d6:f2:9f:a5:34:18:45:
c6:26:21:27:6a:17:8d:40:30:4f:d6:6d:cb:cf:f2:
e7:49:ea:3e:5d:1a:99:74:ed:f5:57:cb:0c:58:d3:
99:1c:e1:01:54:18:08:cb:65:32:f9:22:7a:9e:59:
c9:76:02:83:69:83:b4:aa:7c:45:cd:b6:84:a3:5c:
04:72:ae:de:85:05:7c:ac:a6:f8:c4:1b:bc:ff:ac:
7a:1a:93:56:e6:d4:28:2b:2e:f4:5b:61:4b:24:c3:
13:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:2C:E4:F5:87:35:E9:7E:F7:1A:45:BF:D1:D8:65:2E:70:A3:A1:56
X509v3 Authority Key Identifier:
keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:5c:35:72:9c:5d:5e:6f:f5:cb:67:57:21:e5:f8:7c:29:98:
fc:c6:86:be:75:32:36:05:ea:d7:9a:87:f9:e1:ab:e9:94:de:
e6:af:54:e2:1b:03:6a:16:5a:a4:9a:74:42:74:c2:37:e1:05:
fc:e8:31:96:be:f3:4e:e9:2c:a5:c8:d6:2e:40:7e:e9:3c:48:
82:6f:6e:a4:3c:b1:df:ed:f0:6e:76:ea:6a:78:48:55:d7:42:
6a:47:65:e7:2f:ba:dc:9b:f4:31:29:d4:88:f5:65:b9:6a:3f:
69:23:bc:aa:f3:b1:93:af:eb:4a:64:26:6a:66:c6:01:65:e2:
4a:f1:b6:c4:de:bb:25:4d:90:90:36:ea:46:83:c2:62:61:a6:
af:64:07:59:8d:1c:07:b5:c4:3a:03:19:49:1d:66:dd:ea:a4:
e0:ff:8e:bc:86:ae:b0:ad:7a:7b:7d:65:9f:7d:10:30:f3:a7:
0f:b6:fd:da:03:d2:5e:18:ee:3b:83:fc:50:c4:cc:b2:8d:e3:
9e:b7:13:8c:e8:26:09:bc:03:8c:d1:35:ca:04:62:cf:4d:2c:
da:ba:b3:89:07:55:bf:0e:de:31:a0:9a:6b:e7:bf:4a:89:b4:
49:ac:f4:a2:69:8b:b3:e0:83:ae:8d:15:ec:1d:08:cf:51:a2:
be:4a:99:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY/VHisCn50RxJWTSVsOXJkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiYzk1MDA5ODQzNjI4MWNlZTU0MmExZTc0NTQ2NTUxZTFl
NTUyODMwHhcNMjUwNDE2MTYwMDIyWhcNMjUwNDE3MTYwMDIyWjAzMTEwLwYDVQQD
EygyYTJjZTRmNTg3MzVlOTdlZjcxYTQ1YmZkMWQ4NjUyZTcwYTNhMTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2HptUFsWgc4hZvdUGT5DHzH5cQcV
XWYt2YHaFHuykIOxNKJARuTq5b8zxll0DuxZCcizlqqbZg11HZYDTbmxUm2DQYkJ
QXubB65cXUhplJCLO3brUrMrYMAYVC9Bmh2SyoTCjxOS/PkWJWkS6ymMWYvv4f9g
rh8B6d79DVvmkvizRGEi/8WjyxMIVgYepWYpR+z4/TS953zwWQ5Mftbyn6U0GEXG
JiEnaheNQDBP1m3Lz/LnSeo+XRqZdO31V8sMWNOZHOEBVBgIy2Uy+SJ6nlnJdgKD
aYO0qnxFzbaEo1wEcq7ehQV8rKb4xBu8/6x6GpNW5tQoKy70W2FLJMMT8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCos5PWHNel+9xpFv9HYZS5wo6FWMB8GA1UdIwQY
MBaAFNvJUAmENigc7lQqHnRUZVHh5VKDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDkt
ZjQ3ZTE2OTI2NmMyLzEvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDktZjQ3ZTE2OTI2NmMy
LzEvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATFw1cpxd
Xm/1y2dXIeX4fCmY/MaGvnUyNgXq15qH+eGr6ZTe5q9U4hsDahZapJp0QnTCN+EF
/Ogxlr7zTukspcjWLkB+6TxIgm9upDyx3+3wbnbqanhIVddCakdl5y+63Jv0MSnU
iPVluWo/aSO8qvOxk6/rSmQmambGAWXiSvG2xN67JU2QkDbqRoPCYmGmr2QHWY0c
B7XEOgMZSR1m3eqk4P+OvIausK16e31ln30QMPOnD7b92gPSXhjuO4P8UMTMso3j
nrcTjOgmCbwDjNE1ygRiz00s2rqziQdVvw7eMaCaa+e/Som0Saz0ommLs+CDro0V
7B0Iz1GivkqZUg==
-----END CERTIFICATE-----
Generated at Wed Apr 16 22:02:14 2025 by rpki-client