Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: v47eB7Y+jUewt6aJw/uWjVM1qUClO3aIZ+RBIDKAlQQ=
Subject key identifier: DD:11:E0:18:82:84:C0:0A:BB:82:DB:48:40:00:39:3A:5F:65:E0:0D
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 01964B8FDC1B15A414383677ED3B0D9D89D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 1008
Signing time: Sat 19 Apr 2025 01:00:41 +0000
Manifest this update: Sat 19 Apr 2025 01:00:41 +0000
Manifest next update: Sun 20 Apr 2025 01:00:41 +0000
Files and hashes: 1: QGKSiFavp9LMElSoLZBhqzLqFMM.roa (hash: ip/2uYmlI+BKnaF8k1mqNHwsPmNtHEQrk8aTeSCdMUA=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: yjzUOWC+5ck7rMl3J6Ub+xy0/daSngDPS5twbEoJGSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 01:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:8f:dc:1b:15:a4:14:38:36:77:ed:3b:0d:9d:89:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Apr 19 01:00:41 2025 GMT
Not After : Apr 20 01:00:41 2025 GMT
Subject: CN=dd11e0188284c00abb82db484000393a5f65e00d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:92:a3:98:b3:ce:59:b4:3a:4a:78:19:a5:a8:
65:75:5b:56:5d:39:07:bc:b3:02:be:aa:1d:22:c9:
99:94:26:1c:8c:ed:f9:35:91:ac:0e:a7:44:e4:7c:
f1:58:01:0c:00:97:b7:c4:5b:0a:c0:85:9b:86:a2:
b3:35:bd:86:47:aa:5e:a8:ad:73:0a:06:db:cf:80:
cd:14:b2:18:fa:01:58:63:f1:dc:90:53:0b:ed:83:
99:66:4e:ad:17:20:dc:97:b7:ed:43:58:b5:22:83:
0e:f1:f8:94:95:db:40:64:54:23:e1:8e:13:47:2c:
d4:65:2e:5b:3f:76:e3:58:a2:ac:51:12:8e:e4:b3:
49:ff:98:50:37:ec:78:34:76:a4:32:3a:dd:ed:29:
17:b1:87:e5:65:9e:51:e5:82:18:8c:cc:d6:39:c2:
6f:46:68:fc:87:9a:29:4b:6f:30:11:55:69:69:8b:
c9:9d:41:e9:5f:0f:cc:f9:c3:b3:99:39:73:a3:51:
5f:37:a3:aa:10:d6:a0:f3:2f:7e:8a:78:a6:5b:78:
e2:54:b0:45:ee:03:34:64:08:10:2b:ef:ab:4d:a3:
97:23:26:10:a6:d1:e9:1f:5e:c9:c4:a6:0c:51:d5:
18:3c:70:ea:42:72:b3:62:84:77:1c:2c:53:1c:2c:
16:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:11:E0:18:82:84:C0:0A:BB:82:DB:48:40:00:39:3A:5F:65:E0:0D
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:b9:5c:62:b0:d4:c9:73:6c:2d:07:8c:98:64:3b:c5:fa:fd:
d9:e8:6f:eb:d9:29:07:26:47:38:29:5d:e5:8e:15:85:ee:dc:
4b:b2:51:50:ee:c6:05:1f:10:35:74:c6:3f:0e:b5:00:1c:b5:
35:e6:3e:8d:91:4d:94:0c:d7:82:0a:55:7c:7a:08:10:c4:67:
82:eb:3b:ec:60:cd:2c:93:4f:d4:72:d7:ca:9a:32:97:8d:55:
61:88:47:9c:58:56:ce:f6:61:80:00:23:d5:b8:7c:27:13:3c:
f2:c5:3b:e6:f9:83:f8:d7:06:0a:c8:2e:6c:8b:96:07:82:a6:
cb:13:51:66:04:30:5d:88:dd:94:60:d2:6a:f5:9b:91:4a:f8:
56:16:52:04:6f:c2:3a:4c:15:d9:91:99:71:5b:58:e9:d7:c4:
08:45:0c:8e:ce:ab:b4:a8:5b:95:58:a2:5f:b2:25:a4:c0:fe:
92:b4:7d:0c:ff:05:43:24:7f:f2:c8:e9:a3:de:c2:c6:03:2c:
5f:c7:2c:c3:3b:04:f4:ee:8b:72:bd:3c:1e:8e:5e:e1:38:04:
0b:dd:2e:8b:ab:14:1c:c0:d5:08:72:e3:44:3c:6b:5d:63:6b:
f0:ef:95:0f:9e:2a:3f:8d:3b:0c:67:74:2d:71:1a:aa:ac:03:
5b:eb:95:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZLj9wbFaQUODZ37TsNnYnUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlNzc0NDY3ZTIxODQ5NTI0OTQzZDJiZDQ1OTAxMDcyMGYz
ZTIwZTQwHhcNMjUwNDE5MDEwMDQxWhcNMjUwNDIwMDEwMDQxWjAzMTEwLwYDVQQD
EyhkZDExZTAxODgyODRjMDBhYmI4MmRiNDg0MDAwMzkzYTVmNjVlMDBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pKjmLPOWbQ6SngZpahldVtWXTkH
vLMCvqodIsmZlCYcjO35NZGsDqdE5HzxWAEMAJe3xFsKwIWbhqKzNb2GR6peqK1z
Cgbbz4DNFLIY+gFYY/HckFML7YOZZk6tFyDcl7ftQ1i1IoMO8fiUldtAZFQj4Y4T
RyzUZS5bP3bjWKKsURKO5LNJ/5hQN+x4NHakMjrd7SkXsYflZZ5R5YIYjMzWOcJv
Rmj8h5opS28wEVVpaYvJnUHpXw/M+cOzmTlzo1FfN6OqENag8y9+inimW3jiVLBF
7gM0ZAgQK++rTaOXIyYQptHpH17JxKYMUdUYPHDqQnKzYoR3HCxTHCwWYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN0R4BiChMAKu4LbSEAAOTpfZeANMB8GA1UdIwQY
MBaAFF53RGfiGElSSUPSvUWQEHIPPiDkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWG5kRVotSVlTVkpKUTlLOVJaQVFjZzgtSU9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8yMGEyMmYtMjBmYS00ZDk4LThiMDMt
YWE0MDA1MzJkYWViLzEvWG5kRVotSVlTVkpKUTlLOVJaQVFjZzgtSU9RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8yMGEyMmYtMjBmYS00ZDk4LThiMDMtYWE0MDA1MzJkYWVi
LzEvWG5kRVotSVlTVkpKUTlLOVJaQVFjZzgtSU9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAErlcYrDU
yXNsLQeMmGQ7xfr92ehv69kpByZHOCld5Y4Vhe7cS7JRUO7GBR8QNXTGPw61ABy1
NeY+jZFNlAzXggpVfHoIEMRngus77GDNLJNP1HLXypoyl41VYYhHnFhWzvZhgAAj
1bh8JxM88sU75vmD+NcGCsgubIuWB4KmyxNRZgQwXYjdlGDSavWbkUr4VhZSBG/C
OkwV2ZGZcVtY6dfECEUMjs6rtKhblViiX7IlpMD+krR9DP8FQyR/8sjpo97CxgMs
X8cswzsE9O6Lcr08Ho5e4TgEC90ui6sUHMDVCHLjRDxrXWNr8O+VD54qP407DGd0
LXEaqqwDW+uVKg==
-----END CERTIFICATE-----
Generated at Sat Apr 19 10:34:33 2025 by rpki-client