Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
File: U8kSoEEbsBdFBwktDKNaka15kFw.mft (raw, json)
Hash identifier: nAE5QhDeEkw9RmnRadr5NBuR37CWuEn5nzWNfIJJr5I=
Subject key identifier: 08:58:76:78:31:00:A4:67:A6:39:88:F1:01:D3:72:4A:C1:3D:1E:54
Authority key identifier: 53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
Certificate issuer: /CN=53c912a0411bb0174507092d0ca35a91ad79905c
Certificate serial: 01963F1D5F696B654B3B2CA4DFE75AA4D737
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
Manifest number: 14F9
Signing time: Wed 16 Apr 2025 15:00:11 +0000
Manifest this update: Wed 16 Apr 2025 15:00:11 +0000
Manifest next update: Thu 17 Apr 2025 15:00:11 +0000
Files and hashes: 1: 4bEGcfHd_w1hv-Zgrf8mtzNQOF8.roa (hash: Yz5lhUK8jG4fxty/HMD7XY7daqUIEiCINpgWbEB+eSk=)
2: U8kSoEEbsBdFBwktDKNaka15kFw.crl (hash: f9YNuLa7bAo1kWcxhMt1JgommLbmaUztjxRAyUyk95E=)
3: V2UHD8Ezb4do1e1amF_9bhIjwm0.roa (hash: y2BL9g++y9jPkFQqtQIhZUhynDTSuho7DqIRo/6vN6o=)
4: Xx5AoKMFPro34EMu91UFlynTj2s.roa (hash: NlxbkxLq2MDyD2nlPITsFETHKzu5cELRgwcKIcBnH7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:1d:5f:69:6b:65:4b:3b:2c:a4:df:e7:5a:a4:d7:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c912a0411bb0174507092d0ca35a91ad79905c
Validity
Not Before: Apr 16 15:00:11 2025 GMT
Not After : Apr 17 15:00:11 2025 GMT
Subject: CN=085876783100a467a63988f101d3724ac13d1e54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ad:07:6e:01:73:eb:b5:08:bd:19:39:02:1b:
a1:e5:ab:cc:01:0f:0c:c0:12:37:fb:c9:8f:ca:ec:
f1:70:20:46:5c:ea:c7:fe:ec:ed:ba:0e:ca:d4:31:
4c:1e:10:65:2f:b9:e1:32:1f:b9:cb:ac:29:8e:21:
38:68:ff:9c:13:90:49:f7:31:e7:9a:9e:04:51:0b:
84:88:b0:6c:87:1e:39:c9:0b:a1:29:1f:19:4f:58:
09:cc:95:cf:44:72:3c:73:a9:ac:a5:5e:6b:da:69:
c5:21:86:4a:8e:72:f9:28:0e:eb:e9:c2:3b:fe:65:
db:19:69:ac:b1:e9:9c:db:2d:a0:74:d9:fe:d2:5c:
69:e2:cf:d3:99:ca:78:a9:be:33:48:c9:9c:1e:80:
9c:6c:ea:bc:01:67:13:45:2e:16:80:f6:f8:2e:08:
b4:40:f1:a9:9d:90:04:6a:20:ea:a9:fb:f8:37:6b:
0f:ed:49:b2:92:db:99:13:b9:a7:09:1a:ce:a8:6b:
8f:3a:a2:dc:ad:56:82:4a:95:8b:40:a5:83:eb:25:
65:c5:ef:cc:df:9a:f1:00:9d:38:f9:3f:19:3d:a0:
4e:53:f3:3e:36:80:71:61:ba:80:ff:53:89:77:b4:
b2:32:fa:77:eb:4c:d7:87:f5:bd:46:a0:77:e9:6d:
da:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:58:76:78:31:00:A4:67:A6:39:88:F1:01:D3:72:4A:C1:3D:1E:54
X509v3 Authority Key Identifier:
keyid:53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:12:4d:ee:21:65:63:8d:bd:78:fd:8a:36:20:39:08:88:29:
64:5d:c9:05:75:ff:12:e5:45:cd:21:9b:b2:c4:e5:83:46:53:
31:fd:06:b1:18:cc:24:e6:c1:89:e5:fb:c9:e4:b0:95:60:e3:
da:96:df:54:55:60:02:28:ac:10:1b:74:e7:c8:2a:99:dd:35:
9e:dc:62:b1:0f:a2:1b:52:14:47:25:1a:33:d5:b6:2f:48:fe:
f4:1f:7d:de:0f:c8:62:04:97:22:2e:ec:20:bb:62:eb:7f:2e:
15:59:7a:cd:9c:f2:66:25:1c:dc:71:ec:01:4a:21:3b:97:fa:
4c:78:40:c8:96:a3:72:be:78:a1:47:ae:ee:9c:e2:13:b2:52:
83:8b:2b:ae:c4:f1:03:59:79:dc:fa:df:e4:d0:7b:39:c4:02:
ba:f1:76:cb:ee:8d:dd:06:01:df:4d:88:e0:3e:7a:b9:f8:5f:
72:b7:11:44:1e:84:25:52:03:0a:87:d4:95:ee:e6:c1:fd:e2:
30:6b:83:0c:4f:0b:44:00:2b:1f:4a:c6:f9:d6:2b:70:af:a7:
a4:35:ed:8c:26:7e:81:86:42:f5:ed:94:e6:31:fd:0f:0f:df:
c9:89:47:52:15:c2:11:2d:14:38:97:4e:5e:ce:9e:eb:1f:e3:
a5:17:94:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY/HV9pa2VLOyyk3+dapNc3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYzkxMmEwNDExYmIwMTc0NTA3MDkyZDBjYTM1YTkxYWQ3
OTkwNWMwHhcNMjUwNDE2MTUwMDExWhcNMjUwNDE3MTUwMDExWjAzMTEwLwYDVQQD
EygwODU4NzY3ODMxMDBhNDY3YTYzOTg4ZjEwMWQzNzI0YWMxM2QxZTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAma0HbgFz67UIvRk5Ahuh5avMAQ8M
wBI3+8mPyuzxcCBGXOrH/uztug7K1DFMHhBlL7nhMh+5y6wpjiE4aP+cE5BJ9zHn
mp4EUQuEiLBshx45yQuhKR8ZT1gJzJXPRHI8c6mspV5r2mnFIYZKjnL5KA7r6cI7
/mXbGWmssemc2y2gdNn+0lxp4s/Tmcp4qb4zSMmcHoCcbOq8AWcTRS4WgPb4Lgi0
QPGpnZAEaiDqqfv4N2sP7UmyktuZE7mnCRrOqGuPOqLcrVaCSpWLQKWD6yVlxe/M
35rxAJ04+T8ZPaBOU/M+NoBxYbqA/1OJd7SyMvp360zXh/W9RqB36W3a5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAhYdngxAKRnpjmI8QHTckrBPR5UMB8GA1UdIwQY
MBaAFFPJEqBBG7AXRQcJLQyjWpGteZBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9kNzdlNjAtODkxNi00Zjk2LThlZDAt
ZTIxYzQzNmI2MmVmLzEvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi9kNzdlNjAtODkxNi00Zjk2LThlZDAtZTIxYzQzNmI2MmVm
LzEvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVxJN7iFl
Y429eP2KNiA5CIgpZF3JBXX/EuVFzSGbssTlg0ZTMf0GsRjMJObBieX7yeSwlWDj
2pbfVFVgAiisEBt058gqmd01ntxisQ+iG1IURyUaM9W2L0j+9B993g/IYgSXIi7s
ILti638uFVl6zZzyZiUc3HHsAUohO5f6THhAyJajcr54oUeu7pziE7JSg4srrsTx
A1l53Prf5NB7OcQCuvF2y+6N3QYB302I4D56ufhfcrcRRB6EJVIDCofUle7mwf3i
MGuDDE8LRAArH0rG+dYrcK+npDXtjCZ+gYZC9e2U5jH9Dw/fyYlHUhXCES0UOJdO
Xs6e6x/jpReUEw==
-----END CERTIFICATE-----
Generated at Thu Apr 17 10:01:22 2025 by rpki-client