Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/00476a-8ac7-456c-b93d-3dc14170d62a/1/d1szbD5Il6UrOcOtquzOxr9wzn0.mft
File: d1szbD5Il6UrOcOtquzOxr9wzn0.mft (raw, json)
Hash identifier: gwGg14rsU+C3fhSqJNjERg59j5x/Wyo1NQT3MeSl1T8=
Subject key identifier: 85:F5:98:A7:AD:1F:DC:60:4E:90:FA:1A:C2:41:DB:9A:26:0C:6A:9B
Authority key identifier: 77:5B:33:6C:3E:48:97:A5:2B:39:C3:AD:AA:EC:CE:C6:BF:70:CE:7D
Certificate issuer: /CN=775b336c3e4897a52b39c3adaaeccec6bf70ce7d
Certificate serial: 0196447B5040A0740A6F8FD9B9D8064CA157
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d1szbD5Il6UrOcOtquzOxr9wzn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/00476a-8ac7-456c-b93d-3dc14170d62a/1/d1szbD5Il6UrOcOtquzOxr9wzn0.mft
Manifest number: 1419
Signing time: Thu 17 Apr 2025 16:00:54 +0000
Manifest this update: Thu 17 Apr 2025 16:00:54 +0000
Manifest next update: Fri 18 Apr 2025 16:00:54 +0000
Files and hashes: 1: 1-jRnyFGmEx1CVoLDNNDO26bccvY.roa (hash: 23QvIcsUor9KhcMI2prwonWuUHDRgDZgiqunE4RPe6c=)
2: d1szbD5Il6UrOcOtquzOxr9wzn0.crl (hash: TGgNEovioMxqBIeI+tO/wlL92ib0W3BtBQiSFTgEdhk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/00476a-8ac7-456c-b93d-3dc14170d62a/1/d1szbD5Il6UrOcOtquzOxr9wzn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/00476a-8ac7-456c-b93d-3dc14170d62a/1/d1szbD5Il6UrOcOtquzOxr9wzn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/d1szbD5Il6UrOcOtquzOxr9wzn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:7b:50:40:a0:74:0a:6f:8f:d9:b9:d8:06:4c:a1:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=775b336c3e4897a52b39c3adaaeccec6bf70ce7d
Validity
Not Before: Apr 17 16:00:54 2025 GMT
Not After : Apr 18 16:00:54 2025 GMT
Subject: CN=85f598a7ad1fdc604e90fa1ac241db9a260c6a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8e:7f:05:5d:db:4d:78:40:44:61:de:16:9c:
9e:f5:bf:de:89:aa:45:d3:e0:63:bf:03:74:5a:ee:
54:31:ad:6a:ec:a4:52:5d:aa:86:80:ac:f1:a7:b7:
ea:9a:ef:dd:9f:b6:c6:74:aa:b2:d3:4d:e7:85:78:
17:3e:b4:47:92:cc:c5:bb:7e:1c:00:a9:be:79:af:
99:51:dd:27:a6:b9:d2:a3:cf:c2:6c:96:f9:c9:1c:
e2:ee:49:4f:09:b3:b4:2e:a4:f8:ca:e3:10:5e:34:
83:63:3b:86:56:e0:be:90:4a:e5:47:2c:ee:fa:54:
b2:9a:d1:66:68:a3:5d:18:59:cc:bd:43:d3:a2:24:
21:8b:79:fb:cb:09:a6:ff:56:e2:09:92:c9:3c:ed:
22:f2:fd:1c:e4:97:3a:de:49:75:a2:5c:e1:64:35:
57:f0:81:41:c6:39:59:b9:49:18:5e:5c:b0:49:30:
67:f1:e1:9a:e2:88:6d:66:1b:72:d7:40:06:09:2a:
8c:49:3f:48:7f:6f:a1:f9:95:46:5e:c2:a9:67:c7:
c1:a2:0b:c3:99:31:ee:6d:5d:d2:da:47:84:ab:c8:
a6:a4:40:a8:17:c8:c2:19:79:34:ad:f5:47:00:1f:
10:cd:2a:8d:9a:63:12:75:10:3a:c9:80:72:28:8f:
88:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F5:98:A7:AD:1F:DC:60:4E:90:FA:1A:C2:41:DB:9A:26:0C:6A:9B
X509v3 Authority Key Identifier:
keyid:77:5B:33:6C:3E:48:97:A5:2B:39:C3:AD:AA:EC:CE:C6:BF:70:CE:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1szbD5Il6UrOcOtquzOxr9wzn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/00476a-8ac7-456c-b93d-3dc14170d62a/1/d1szbD5Il6UrOcOtquzOxr9wzn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/00476a-8ac7-456c-b93d-3dc14170d62a/1/d1szbD5Il6UrOcOtquzOxr9wzn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:16:7b:8d:cb:8b:d2:96:f1:7c:ed:5a:3d:c1:2c:39:6f:13:
73:fe:14:80:22:20:a1:86:bd:5c:8e:b5:05:eb:23:73:5f:72:
e5:89:2f:4c:00:b1:7b:15:f9:9e:2c:13:4b:cc:57:71:95:40:
3f:3b:bb:fc:bd:f1:6d:28:7b:cc:f5:29:2a:26:6f:98:b0:27:
cd:25:c6:54:4d:78:75:e9:45:99:e1:d2:1a:33:f9:5c:33:d9:
ea:e0:55:0a:b3:aa:fc:a4:19:7e:43:48:e2:c7:36:ec:5b:db:
e3:3e:96:42:4e:16:2d:29:b7:95:eb:04:b4:27:f6:4d:c8:ab:
53:35:57:48:81:86:05:08:09:cc:25:8d:09:0b:84:f7:31:ac:
be:03:67:3b:aa:62:2b:8b:c3:3e:02:78:89:08:7e:f2:cf:1d:
74:44:55:55:a4:c5:80:8b:b2:d2:95:0f:3b:a7:24:6a:1f:5f:
ab:86:57:2b:61:f6:de:6b:51:42:0e:98:ad:85:bc:df:c0:a7:
b9:7a:72:f7:2f:17:50:6f:3d:c8:37:5d:ed:b5:53:1b:5d:0c:
1d:eb:e5:3b:9c:43:3e:61:81:81:e2:34:41:54:22:be:37:af:
a1:3a:82:63:19:89:57:ce:65:2e:a1:10:68:5e:e1:72:ae:b0:
7b:61:73:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZEe1BAoHQKb4/ZudgGTKFXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3NWIzMzZjM2U0ODk3YTUyYjM5YzNhZGFhZWNjZWM2YmY3
MGNlN2QwHhcNMjUwNDE3MTYwMDU0WhcNMjUwNDE4MTYwMDU0WjAzMTEwLwYDVQQD
Eyg4NWY1OThhN2FkMWZkYzYwNGU5MGZhMWFjMjQxZGI5YTI2MGM2YTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA045/BV3bTXhARGHeFpye9b/eiapF
0+BjvwN0Wu5UMa1q7KRSXaqGgKzxp7fqmu/dn7bGdKqy003nhXgXPrRHkszFu34c
AKm+ea+ZUd0nprnSo8/CbJb5yRzi7klPCbO0LqT4yuMQXjSDYzuGVuC+kErlRyzu
+lSymtFmaKNdGFnMvUPToiQhi3n7ywmm/1biCZLJPO0i8v0c5Jc63kl1olzhZDVX
8IFBxjlZuUkYXlywSTBn8eGa4ohtZhty10AGCSqMST9If2+h+ZVGXsKpZ8fBogvD
mTHubV3S2keEq8impECoF8jCGXk0rfVHAB8QzSqNmmMSdRA6yYByKI+I/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIX1mKetH9xgTpD6GsJB25omDGqbMB8GA1UdIwQY
MBaAFHdbM2w+SJelKznDrarszsa/cM59MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDFzemJENUlsNlVyT2NPdHF1ek94cjl3em4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8wMDQ3NmEtOGFjNy00NTZjLWI5M2Qt
M2RjMTQxNzBkNjJhLzEvZDFzemJENUlsNlVyT2NPdHF1ek94cjl3em4wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS8wMDQ3NmEtOGFjNy00NTZjLWI5M2QtM2RjMTQxNzBkNjJh
LzEvZDFzemJENUlsNlVyT2NPdHF1ek94cjl3em4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWhZ7jcuL
0pbxfO1aPcEsOW8Tc/4UgCIgoYa9XI61Besjc19y5YkvTACxexX5niwTS8xXcZVA
Pzu7/L3xbSh7zPUpKiZvmLAnzSXGVE14delFmeHSGjP5XDPZ6uBVCrOq/KQZfkNI
4sc27Fvb4z6WQk4WLSm3lesEtCf2TcirUzVXSIGGBQgJzCWNCQuE9zGsvgNnO6pi
K4vDPgJ4iQh+8s8ddERVVaTFgIuy0pUPO6ckah9fq4ZXK2H23mtRQg6YrYW838Cn
uXpy9y8XUG89yDdd7bVTG10MHevlO5xDPmGBgeI0QVQivjevoTqCYxmJV85lLqEQ
aF7hcq6we2FzJw==
-----END CERTIFICATE-----
Generated at Fri Apr 18 00:03:08 2025 by rpki-client