Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
File: spIJTWkd9KfDjxa3VVfpwm1KxpI.mft (raw, json)
Hash identifier: HZgyGEVdj+stf2xl9EFLfAmKmb9XxcvpbTuTdg6Pvzw=
Subject key identifier: DC:15:75:51:B1:62:D5:46:83:22:24:E8:48:BE:56:11:14:16:E1:66
Authority key identifier: B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
Certificate issuer: /CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Certificate serial: 01964D7ED97FADF141EE3C1449D328645F35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
Manifest number: 13FF
Signing time: Sat 19 Apr 2025 10:01:20 +0000
Manifest this update: Sat 19 Apr 2025 10:01:20 +0000
Manifest next update: Sun 20 Apr 2025 10:01:20 +0000
Files and hashes: 1: OmeM_n0y_6-zOQ1ggpf3SAaIYGM.roa (hash: nPLGIcarXsWhg9mWE06KhP99Y61Hg7uEiGrRbDzptwU=)
2: spIJTWkd9KfDjxa3VVfpwm1KxpI.crl (hash: hLSJRvD4i4tZk3N6IpEmP2e7PQp5Q/d2JkbIQq/EAGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:d9:7f:ad:f1:41:ee:3c:14:49:d3:28:64:5f:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Validity
Not Before: Apr 19 10:01:20 2025 GMT
Not After : Apr 20 10:01:20 2025 GMT
Subject: CN=dc157551b162d546832224e848be56111416e166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e5:92:59:da:5d:08:b1:b6:ed:21:5f:16:d1:
01:88:99:0f:41:8a:0d:22:5b:89:bc:42:30:52:fb:
83:97:ea:3d:f0:ba:a7:73:91:86:4d:51:b7:c5:f3:
62:e0:bd:4d:11:10:9b:cf:a3:34:e7:a0:72:f6:cb:
4f:29:c2:14:7a:ea:bd:ec:4c:de:36:96:b1:08:5c:
e3:57:c5:eb:ab:f8:3d:a7:aa:08:b3:02:d0:81:e5:
a5:00:63:59:fe:1e:f2:5c:31:1a:de:38:48:8b:d6:
41:e9:7c:19:7b:b7:14:97:da:12:35:fb:98:21:4b:
41:72:ea:20:1b:d4:fa:e2:b4:ea:ee:0e:10:2d:83:
3c:01:86:3d:3c:14:22:c8:40:3d:d6:d9:2f:12:a6:
86:27:51:6b:e6:6a:45:1b:74:1c:4f:c6:74:03:74:
cb:23:d0:c5:79:7b:ea:de:c6:e2:d6:93:d4:dd:bc:
b0:66:c6:15:cf:af:11:22:39:44:09:82:ef:ee:34:
4f:61:bf:c6:de:87:8f:fe:78:7f:46:21:9d:bf:ea:
e3:95:ff:93:a7:e4:6f:e2:03:aa:79:b0:fd:2f:87:
25:aa:9b:a3:22:64:fd:40:93:0e:ae:74:c4:76:91:
c7:c0:1c:ff:88:0c:0d:af:98:15:29:6b:22:08:56:
6f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:15:75:51:B1:62:D5:46:83:22:24:E8:48:BE:56:11:14:16:E1:66
X509v3 Authority Key Identifier:
keyid:B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:91:83:dc:7a:6b:ef:80:bf:34:d5:ab:2b:43:2a:0d:9a:0e:
b3:32:a2:b9:e3:64:cc:8d:6a:97:b3:d1:36:b9:68:0c:9f:24:
3e:fe:17:47:ca:d0:24:e0:37:9d:b2:59:e1:2c:ea:74:2b:b7:
5c:9d:bf:57:5e:0b:8e:f5:cc:7c:c3:06:1b:ac:0d:0e:0f:e2:
f7:34:ae:fa:59:9c:ea:7b:a7:ba:2a:92:13:4c:a5:ee:90:ad:
70:bc:ef:72:ee:83:2f:e5:33:20:49:f7:fe:d1:82:e5:9e:7b:
22:ca:b4:3e:c1:ba:54:91:97:9b:05:a6:8a:ae:8d:7d:27:62:
24:fb:5c:25:86:8e:ff:16:f2:62:73:02:82:85:e3:3c:6c:bf:
4b:16:96:eb:4c:07:45:f8:ca:0a:0a:ec:15:40:07:8a:fc:62:
71:62:42:e7:62:53:3d:5b:bb:7b:26:a3:f5:f5:61:ac:76:77:
7e:48:e8:35:a4:d0:7a:a0:b0:86:66:a7:35:ac:9f:04:90:de:
55:1d:22:26:f3:db:32:e9:69:20:30:8f:1f:e2:44:5c:ed:9c:
8d:3d:8f:00:a5:a0:c0:c2:75:81:b4:e3:b5:8d:12:c6:57:df:
a4:84:66:19:27:ad:09:dd:57:5d:45:7f:69:ad:76:5e:d2:63:
03:aa:f9:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNftl/rfFB7jwUSdMoZF81MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyOTIwOTRkNjkxZGY0YTdjMzhmMTZiNzU1NTdlOWMyNmQ0
YWM2OTIwHhcNMjUwNDE5MTAwMTIwWhcNMjUwNDIwMTAwMTIwWjAzMTEwLwYDVQQD
EyhkYzE1NzU1MWIxNjJkNTQ2ODMyMjI0ZTg0OGJlNTYxMTE0MTZlMTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAweWSWdpdCLG27SFfFtEBiJkPQYoN
IluJvEIwUvuDl+o98Lqnc5GGTVG3xfNi4L1NERCbz6M056By9stPKcIUeuq97Eze
NpaxCFzjV8Xrq/g9p6oIswLQgeWlAGNZ/h7yXDEa3jhIi9ZB6XwZe7cUl9oSNfuY
IUtBcuogG9T64rTq7g4QLYM8AYY9PBQiyEA91tkvEqaGJ1Fr5mpFG3QcT8Z0A3TL
I9DFeXvq3sbi1pPU3bywZsYVz68RIjlECYLv7jRPYb/G3oeP/nh/RiGdv+rjlf+T
p+Rv4gOqebD9L4clqpujImT9QJMOrnTEdpHHwBz/iAwNr5gVKWsiCFZvxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNwVdVGxYtVGgyIk6Ei+VhEUFuFmMB8GA1UdIwQY
MBaAFLKSCU1pHfSnw48Wt1VX6cJtSsaSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3BJSlRXa2Q5S2ZEanhhM1ZWZnB3bTFLeHBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9lN2I5MzItZmMyMS00YTYxLWFlZjAt
MTVhMDkzZTJiYjhmLzEvc3BJSlRXa2Q5S2ZEanhhM1ZWZnB3bTFLeHBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi9lN2I5MzItZmMyMS00YTYxLWFlZjAtMTVhMDkzZTJiYjhm
LzEvc3BJSlRXa2Q5S2ZEanhhM1ZWZnB3bTFLeHBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR5GD3Hpr
74C/NNWrK0MqDZoOszKiueNkzI1ql7PRNrloDJ8kPv4XR8rQJOA3nbJZ4SzqdCu3
XJ2/V14LjvXMfMMGG6wNDg/i9zSu+lmc6nunuiqSE0yl7pCtcLzvcu6DL+UzIEn3
/tGC5Z57Isq0PsG6VJGXmwWmiq6NfSdiJPtcJYaO/xbyYnMCgoXjPGy/SxaW60wH
RfjKCgrsFUAHivxicWJC52JTPVu7eyaj9fVhrHZ3fkjoNaTQeqCwhmanNayfBJDe
VR0iJvPbMulpIDCPH+JEXO2cjT2PAKWgwMJ1gbTjtY0SxlffpIRmGSetCd1XXUV/
aa12XtJjA6r51Q==
-----END CERTIFICATE-----
Generated at Sat Apr 19 14:00:35 2025 by rpki-client