Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft
File: xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft (raw, json)
Hash identifier: 4GBEQRJ9hApAjsXZBLgA84m+OAuYJJsVXVYIuKCban8=
Subject key identifier: D1:F2:11:A2:82:28:C4:4F:40:F0:52:91:44:BD:A0:EF:39:09:24:7B
Authority key identifier: C4:A0:F3:11:09:84:CC:FB:F5:29:98:0B:6D:41:6D:DD:4E:1A:88:25
Certificate issuer: /CN=c4a0f3110984ccfbf529980b6d416ddd4e1a8825
Certificate serial: 0196564A0C8C198962074393960D320223E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xKDzEQmEzPv1KZgLbUFt3U4aiCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft
Manifest number: 02E7
Signing time: Mon 21 Apr 2025 03:00:15 +0000
Manifest this update: Mon 21 Apr 2025 03:00:15 +0000
Manifest next update: Tue 22 Apr 2025 03:00:15 +0000
Files and hashes: 1: SGkYily7UQPusAexDOf3Pto8qlU.roa (hash: suweJqoDq78riZx1pHsROfmVS4S86mc1JzDxd3RsgQs=)
2: xKDzEQmEzPv1KZgLbUFt3U4aiCU.crl (hash: YW9Rk+MyLoPz0oDM3Y541akf8P+LeD8il89D+6sj4Rw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xKDzEQmEzPv1KZgLbUFt3U4aiCU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:4a:0c:8c:19:89:62:07:43:93:96:0d:32:02:23:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4a0f3110984ccfbf529980b6d416ddd4e1a8825
Validity
Not Before: Apr 21 03:00:15 2025 GMT
Not After : Apr 22 03:00:15 2025 GMT
Subject: CN=d1f211a28228c44f40f0529144bda0ef3909247b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2f:c2:b6:90:77:b2:17:8d:e2:ea:50:58:64:
6f:4c:cb:e0:0a:a7:03:82:0f:8b:04:f5:8c:13:9a:
08:c0:f5:5c:95:db:fb:5a:d9:96:dd:d5:e9:a3:a2:
a7:bd:05:7b:a0:09:ac:33:ad:86:b1:e8:9e:bf:e8:
4c:fc:5a:e7:c0:36:b8:15:bc:c8:00:84:db:fe:37:
25:f0:72:fb:e0:22:7b:d1:55:db:80:00:09:9d:c1:
63:28:90:ff:c6:02:23:b0:5a:2c:f5:9b:f1:d9:51:
ae:8c:44:5a:c1:49:d8:06:e8:b9:a2:d8:f9:23:30:
25:c8:e7:dc:51:0c:33:f2:48:06:ab:13:5c:8d:8d:
1f:f4:8e:21:2a:38:6d:2a:b7:d9:23:8d:31:b0:2b:
63:39:d5:71:c3:50:c9:a7:9a:6b:81:7d:e3:cc:99:
bd:ed:1d:69:c3:a0:db:c3:e9:24:4b:ac:45:16:be:
dd:42:7a:a3:c8:6d:00:f0:f4:8f:78:ac:a4:10:a3:
d6:b5:12:bc:83:da:6b:b5:a3:e9:86:23:30:b2:70:
6c:c0:f7:d2:24:21:da:a0:77:95:82:6f:88:6f:fb:
9e:59:e5:e3:7c:c8:20:5e:3e:75:92:5e:73:4e:b5:
7b:82:44:a2:28:2e:03:51:ef:d1:cf:55:8c:16:fa:
6c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F2:11:A2:82:28:C4:4F:40:F0:52:91:44:BD:A0:EF:39:09:24:7B
X509v3 Authority Key Identifier:
keyid:C4:A0:F3:11:09:84:CC:FB:F5:29:98:0B:6D:41:6D:DD:4E:1A:88:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xKDzEQmEzPv1KZgLbUFt3U4aiCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a6c5f6-604f-4399-9443-d12a90bf502e/1/xKDzEQmEzPv1KZgLbUFt3U4aiCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:59:42:c7:96:15:54:4d:53:94:30:40:25:44:77:1e:1b:d1:
8e:bb:d1:df:bd:34:ed:64:41:16:99:65:6e:63:81:2c:ec:b1:
dd:83:9d:7f:05:88:fb:a2:e7:8c:4f:23:28:ac:97:c0:ed:74:
d2:f1:99:3e:b8:ba:7e:f5:fc:c9:bb:b5:e1:67:2f:f0:28:d4:
85:f5:54:0a:92:6c:d8:b1:83:a9:39:5d:95:80:23:78:f7:92:
70:64:58:cb:4f:75:32:d3:ed:84:37:7a:11:37:6a:c2:12:b1:
b0:de:7d:98:24:79:a7:77:8d:54:e2:46:fe:da:d0:96:71:d2:
3f:38:e0:26:3f:83:92:0d:4d:cb:9b:e9:77:e3:dd:67:2e:74:
cb:ae:de:32:8e:30:db:55:17:22:30:12:c6:97:6f:f0:22:9b:
27:d9:62:1b:de:29:fc:53:b2:ce:2f:a3:a6:bc:76:7a:20:14:
dd:9b:13:43:52:48:aa:1c:60:4e:85:42:36:8e:d7:7b:85:74:
f7:ca:21:d7:37:35:d0:7c:ec:93:7f:d2:f7:df:57:a7:f9:32:
f5:19:28:c0:49:03:17:1d:84:8b:ae:0d:94:1f:47:13:95:cf:
79:fb:6b:ea:1e:04:e3:29:54:c6:83:f2:78:0b:82:9e:89:df:
bf:a1:a2:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZWSgyMGYliB0OTlg0yAiPkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0YTBmMzExMDk4NGNjZmJmNTI5OTgwYjZkNDE2ZGRkNGUx
YTg4MjUwHhcNMjUwNDIxMDMwMDE1WhcNMjUwNDIyMDMwMDE1WjAzMTEwLwYDVQQD
EyhkMWYyMTFhMjgyMjhjNDRmNDBmMDUyOTE0NGJkYTBlZjM5MDkyNDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAty/CtpB3sheN4upQWGRvTMvgCqcD
gg+LBPWME5oIwPVcldv7WtmW3dXpo6KnvQV7oAmsM62Gseiev+hM/FrnwDa4FbzI
AITb/jcl8HL74CJ70VXbgAAJncFjKJD/xgIjsFos9Zvx2VGujERawUnYBui5otj5
IzAlyOfcUQwz8kgGqxNcjY0f9I4hKjhtKrfZI40xsCtjOdVxw1DJp5prgX3jzJm9
7R1pw6Dbw+kkS6xFFr7dQnqjyG0A8PSPeKykEKPWtRK8g9prtaPphiMwsnBswPfS
JCHaoHeVgm+Ib/ueWeXjfMggXj51kl5zTrV7gkSiKC4DUe/Rz1WMFvpseQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNHyEaKCKMRPQPBSkUS9oO85CSR7MB8GA1UdIwQY
MBaAFMSg8xEJhMz79SmYC21Bbd1OGoglMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEtEekVRbUV6UHYxS1pnTGJVRnQzVTRhaUNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hNmM1ZjYtNjA0Zi00Mzk5LTk0NDMt
ZDEyYTkwYmY1MDJlLzEveEtEekVRbUV6UHYxS1pnTGJVRnQzVTRhaUNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9hNmM1ZjYtNjA0Zi00Mzk5LTk0NDMtZDEyYTkwYmY1MDJl
LzEveEtEekVRbUV6UHYxS1pnTGJVRnQzVTRhaUNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFllCx5YV
VE1TlDBAJUR3HhvRjrvR37007WRBFpllbmOBLOyx3YOdfwWI+6LnjE8jKKyXwO10
0vGZPri6fvX8ybu14Wcv8CjUhfVUCpJs2LGDqTldlYAjePeScGRYy091MtPthDd6
ETdqwhKxsN59mCR5p3eNVOJG/trQlnHSPzjgJj+Dkg1Ny5vpd+PdZy50y67eMo4w
21UXIjASxpdv8CKbJ9liG94p/FOyzi+jprx2eiAU3ZsTQ1JIqhxgToVCNo7Xe4V0
98oh1zc10Hzsk3/S999Xp/ky9RkowEkDFx2Ei64NlB9HE5XPeftr6h4E4ylUxoPy
eAuCnonfv6Gi6A==
-----END CERTIFICATE-----
Generated at Mon Apr 21 10:50:17 2025 by rpki-client