Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
File: 5zfJpEKotKTJEvEbwrbTzxAK30I.mft (raw, json)
Hash identifier: Pm+94dKhVhYhXtr6CEyEn98h7PcoSzESxGeu1JTe7x4=
Subject key identifier: 69:BC:9F:BF:76:1E:DB:54:51:24:6D:A8:11:BF:5B:A8:43:46:87:C3
Authority key identifier: E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
Certificate issuer: /CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Certificate serial: 019644B26311C1C4F6E806A5049D7FE547C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
Manifest number: 14F7
Signing time: Thu 17 Apr 2025 17:01:03 +0000
Manifest this update: Thu 17 Apr 2025 17:01:03 +0000
Manifest next update: Fri 18 Apr 2025 17:01:03 +0000
Files and hashes: 1: 5zfJpEKotKTJEvEbwrbTzxAK30I.crl (hash: oct2ERsXF1Fu1gANXuTi2QF+JleVx2S8KQQMdA7m32s=)
2: 9Gaptu7OegDOTWgwtAQ4TQ0AHTI.roa (hash: rkESQzEqL5Foo1j28OK1lOudeGd3GtI+57JqeG8POXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:b2:63:11:c1:c4:f6:e8:06:a5:04:9d:7f:e5:47:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Validity
Not Before: Apr 17 17:01:03 2025 GMT
Not After : Apr 18 17:01:03 2025 GMT
Subject: CN=69bc9fbf761edb5451246da811bf5ba8434687c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ed:78:0d:d7:b7:43:80:ec:ab:d2:78:7c:4a:
34:74:06:70:74:38:a6:65:01:0c:65:37:d7:cc:5d:
20:53:8e:57:24:0a:9d:58:94:9b:66:51:82:cb:31:
9f:41:c8:eb:c7:f3:d9:1e:4b:36:b9:d0:24:c9:14:
ef:1b:08:f0:e0:b1:71:47:1d:f7:83:92:cd:b0:55:
e7:40:d6:1e:5b:09:bd:33:a7:7b:c7:82:00:79:08:
60:34:73:81:da:12:ed:9d:ee:3b:4c:ae:be:c0:0c:
51:d0:62:96:c6:45:12:36:ff:96:b3:f0:30:48:79:
8b:cd:8e:29:39:5f:1d:91:b3:be:bf:ce:1b:63:21:
dc:ae:23:1c:f4:a9:80:d1:fd:7e:0c:d2:e4:74:bf:
17:d2:89:b9:a1:7c:2c:7c:8f:6d:24:cf:43:31:f1:
42:c0:fa:0e:80:f0:21:13:79:1e:7a:94:25:18:bb:
49:dd:37:de:79:f6:a2:e1:99:00:64:aa:22:af:1e:
d4:33:3e:3e:57:51:98:45:9d:79:57:14:c8:ec:67:
6c:9c:3a:bb:69:f8:c4:e6:32:5e:54:a8:ce:57:73:
0e:75:56:27:ce:a0:5a:2f:ab:f7:5f:8a:e9:82:34:
60:05:2b:d1:fb:61:54:65:bf:5d:0b:2c:ed:9b:ce:
b5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:BC:9F:BF:76:1E:DB:54:51:24:6D:A8:11:BF:5B:A8:43:46:87:C3
X509v3 Authority Key Identifier:
keyid:E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:fa:b7:ea:94:57:1e:34:8f:fa:92:34:97:28:6e:db:0b:fb:
49:3b:db:69:2c:50:c8:e2:90:1d:6b:73:5e:ed:a2:7a:2f:3e:
80:04:df:fa:96:53:9c:1b:91:0d:8e:40:be:e2:1c:89:e2:ec:
d7:2d:e4:02:2e:65:04:a1:a7:d7:75:33:98:25:4e:cb:70:e7:
36:bb:8f:90:e9:c8:bd:6c:48:7a:ca:9b:f3:b3:10:28:0e:cd:
c6:d7:d0:fe:b1:75:c4:b4:a3:d9:11:47:83:dc:ad:8d:81:06:
fd:49:42:62:35:ce:e8:eb:9d:12:b8:3b:b2:49:f1:d4:ca:de:
d8:f1:53:a3:12:d8:a3:ad:13:10:92:40:41:50:b5:05:f9:a0:
45:75:af:a1:ea:35:f8:ba:9e:34:5c:9e:d6:97:7e:46:21:4a:
26:92:d8:d7:03:5f:94:0e:ee:9b:eb:06:9f:c0:ed:c3:2e:d4:
60:f5:14:12:32:c8:f3:e0:ff:89:b1:8a:6e:a5:e5:2b:de:05:
40:d7:be:5c:0f:10:1c:a4:e5:78:90:f9:b2:6c:8e:de:6e:45:
ed:d8:d3:81:9b:15:53:3e:17:cb:b4:9d:53:40:b8:af:86:23:
00:98:b9:b8:5c:2b:6c:49:9e:6f:72:2c:f3:31:ef:bf:cf:da:
dc:b9:eb:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZEsmMRwcT26AalBJ1/5UfJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3MzdjOWE0NDJhOGI0YTRjOTEyZjExYmMyYjZkM2NmMTAw
YWRmNDIwHhcNMjUwNDE3MTcwMTAzWhcNMjUwNDE4MTcwMTAzWjAzMTEwLwYDVQQD
Eyg2OWJjOWZiZjc2MWVkYjU0NTEyNDZkYTgxMWJmNWJhODQzNDY4N2MzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApO14Dde3Q4Dsq9J4fEo0dAZwdDim
ZQEMZTfXzF0gU45XJAqdWJSbZlGCyzGfQcjrx/PZHks2udAkyRTvGwjw4LFxRx33
g5LNsFXnQNYeWwm9M6d7x4IAeQhgNHOB2hLtne47TK6+wAxR0GKWxkUSNv+Ws/Aw
SHmLzY4pOV8dkbO+v84bYyHcriMc9KmA0f1+DNLkdL8X0om5oXwsfI9tJM9DMfFC
wPoOgPAhE3keepQlGLtJ3Tfeefai4ZkAZKoirx7UMz4+V1GYRZ15VxTI7GdsnDq7
afjE5jJeVKjOV3MOdVYnzqBaL6v3X4rpgjRgBSvR+2FUZb9dCyztm8614wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGm8n792HttUUSRtqBG/W6hDRofDMB8GA1UdIwQY
MBaAFOc3yaRCqLSkyRLxG8K2088QCt9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXpmSnBFS290S1RKRXZFYndyYlR6eEFLMzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xNzY2N2UtMDIxOS00MjFlLTg0MTIt
MzFmNjAzNzNhMDkyLzEvNXpmSnBFS290S1RKRXZFYndyYlR6eEFLMzBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8xNzY2N2UtMDIxOS00MjFlLTg0MTItMzFmNjAzNzNhMDky
LzEvNXpmSnBFS290S1RKRXZFYndyYlR6eEFLMzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJfq36pRX
HjSP+pI0lyhu2wv7STvbaSxQyOKQHWtzXu2iei8+gATf+pZTnBuRDY5AvuIcieLs
1y3kAi5lBKGn13UzmCVOy3DnNruPkOnIvWxIesqb87MQKA7NxtfQ/rF1xLSj2RFH
g9ytjYEG/UlCYjXO6OudErg7sknx1Mre2PFToxLYo60TEJJAQVC1BfmgRXWvoeo1
+LqeNFye1pd+RiFKJpLY1wNflA7um+sGn8Dtwy7UYPUUEjLI8+D/ibGKbqXlK94F
QNe+XA8QHKTleJD5smyO3m5F7djTgZsVUz4Xy7SdU0C4r4YjAJi5uFwrbEmeb3Is
8zHvv8/a3Lnr2Q==
-----END CERTIFICATE-----
Generated at Fri Apr 18 02:54:54 2025 by rpki-client