Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
File: S5o7nhAjIJXBjSZERAzlxYoTizU.mft (raw, json)
Hash identifier: Svd6civY4bVju6+ejD3KUB6q5ozLQ/OSWuEHv4+Zr8k=
Subject key identifier: 60:2A:E8:14:AE:F9:04:2A:33:1E:72:59:31:19:4D:6A:96:BB:60:A0
Authority key identifier: 4B:9A:3B:9E:10:23:20:95:C1:8D:26:44:44:0C:E5:C5:8A:13:8B:35
Certificate issuer: /CN=4b9a3b9e10232095c18d2644440ce5c58a138b35
Certificate serial: 0196526D95E722B01D7C498FD75D13F74AF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
Manifest number: 0C94
Signing time: Sun 20 Apr 2025 09:00:35 +0000
Manifest this update: Sun 20 Apr 2025 09:00:35 +0000
Manifest next update: Mon 21 Apr 2025 09:00:35 +0000
Files and hashes: 1: AGFXaqT3BvJjfsfWKc-WZgyT260.roa (hash: otB7RONJ2iX79r/3n1UHcffodGPsIg2+hKNGewXNd5g=)
2: S5o7nhAjIJXBjSZERAzlxYoTizU.crl (hash: hgHAxM6SZ0bEL0OoVtSweVtMp+bSs6KmL1WPjclnOKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:6d:95:e7:22:b0:1d:7c:49:8f:d7:5d:13:f7:4a:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b9a3b9e10232095c18d2644440ce5c58a138b35
Validity
Not Before: Apr 20 09:00:35 2025 GMT
Not After : Apr 21 09:00:35 2025 GMT
Subject: CN=602ae814aef9042a331e725931194d6a96bb60a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:da:b6:cd:99:c4:23:58:a2:54:61:5b:c7:b3:
d0:39:5e:a2:a7:be:e9:c1:ae:5f:1a:46:42:bb:a2:
1a:09:6a:e5:3e:59:08:64:c2:32:1c:a7:34:47:ca:
64:62:61:47:28:33:07:ed:25:20:dd:eb:66:ee:39:
22:56:bb:1a:e7:cc:fc:1c:fe:3f:d8:bf:0e:27:7f:
73:09:ac:00:3c:a7:b1:dd:c9:c4:da:cd:a2:de:ea:
0e:f0:6d:49:62:6c:bb:0f:bc:82:7d:75:77:8a:d2:
3a:d3:b0:cb:45:7b:36:cd:06:a3:30:9b:c1:2d:d4:
37:f2:71:80:a2:39:c8:a6:76:42:fc:45:07:4b:f6:
34:6f:80:38:9b:31:43:64:54:e5:9d:93:f9:d5:63:
4b:a3:d3:4b:01:84:6a:69:f9:91:91:4e:86:a3:2f:
58:f6:d5:6d:c0:81:82:b0:b5:00:25:41:d5:be:36:
66:4f:99:0d:bb:96:38:4d:b1:11:d3:4a:6e:7e:cb:
69:f9:35:7b:c9:17:04:9e:94:ec:d7:02:ba:0f:af:
30:2e:d2:a1:6c:c1:31:07:d1:09:df:43:d0:a0:f0:
61:a0:5f:ca:fb:7f:e9:e9:71:84:29:5d:bf:2e:0a:
82:9c:8d:ca:1a:5b:1a:33:c3:f6:a3:c5:68:d5:16:
2b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:2A:E8:14:AE:F9:04:2A:33:1E:72:59:31:19:4D:6A:96:BB:60:A0
X509v3 Authority Key Identifier:
keyid:4B:9A:3B:9E:10:23:20:95:C1:8D:26:44:44:0C:E5:C5:8A:13:8B:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:20:69:71:d4:c0:08:74:03:63:25:71:9f:b5:c9:8d:46:97:
4f:fe:57:6a:91:79:cc:14:b7:ec:4f:35:a1:f4:12:49:8a:60:
2e:d3:07:36:00:bb:08:1e:0c:7c:0b:cb:d9:25:6a:11:fd:8c:
35:3d:d9:2f:65:a6:f9:ac:e8:15:9a:1e:bb:73:02:0f:6e:6c:
0f:6e:f1:87:c5:c2:57:7a:58:df:7b:77:81:05:f0:cc:50:e2:
8c:65:9b:5f:be:e2:df:e4:5d:0d:11:d2:83:0d:38:4d:85:72:
a6:04:9d:04:d0:33:c0:f7:ce:97:73:ec:bb:d8:80:c4:7a:f5:
ca:00:8b:39:d9:d2:ba:46:a2:cf:e7:bc:70:2b:f1:69:a9:20:
52:72:eb:97:95:ec:05:bf:14:95:5c:04:38:66:4f:58:fc:fb:
ec:ab:0d:8e:03:cb:ac:f2:0d:c2:26:33:8e:d0:ce:de:ff:bd:
f0:58:cf:85:63:51:ad:bf:9f:f1:be:f5:14:cb:58:d7:c2:f0:
65:c0:92:11:aa:2e:7d:59:80:2e:c0:ea:0a:82:53:fa:e8:60:
22:fe:ed:61:51:08:6b:d9:f1:8d:1d:f5:a4:e5:e6:25:04:3f:
36:70:6d:f3:2d:d8:d3:34:aa:8b:b5:59:95:22:b9:49:d4:21:
bf:fd:28:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZSbZXnIrAdfEmP110T90rwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiOWEzYjllMTAyMzIwOTVjMThkMjY0NDQ0MGNlNWM1OGEx
MzhiMzUwHhcNMjUwNDIwMDkwMDM1WhcNMjUwNDIxMDkwMDM1WjAzMTEwLwYDVQQD
Eyg2MDJhZTgxNGFlZjkwNDJhMzMxZTcyNTkzMTE5NGQ2YTk2YmI2MGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstq2zZnEI1iiVGFbx7PQOV6ip77p
wa5fGkZCu6IaCWrlPlkIZMIyHKc0R8pkYmFHKDMH7SUg3etm7jkiVrsa58z8HP4/
2L8OJ39zCawAPKex3cnE2s2i3uoO8G1JYmy7D7yCfXV3itI607DLRXs2zQajMJvB
LdQ38nGAojnIpnZC/EUHS/Y0b4A4mzFDZFTlnZP51WNLo9NLAYRqafmRkU6Goy9Y
9tVtwIGCsLUAJUHVvjZmT5kNu5Y4TbER00pufstp+TV7yRcEnpTs1wK6D68wLtKh
bMExB9EJ30PQoPBhoF/K+3/p6XGEKV2/LgqCnI3KGlsaM8P2o8Vo1RYrWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGAq6BSu+QQqMx5yWTEZTWqWu2CgMB8GA1UdIwQY
MBaAFEuaO54QIyCVwY0mREQM5cWKE4s1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzVvN25oQWpJSlhCalNaRVJBemx4WW9UaXpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS9mMjFlZTAtZDczMC00NWRiLTk3YmQt
YzM0YmUwM2MxNWRiLzEvUzVvN25oQWpJSlhCalNaRVJBemx4WW9UaXpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS9mMjFlZTAtZDczMC00NWRiLTk3YmQtYzM0YmUwM2MxNWRi
LzEvUzVvN25oQWpJSlhCalNaRVJBemx4WW9UaXpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASyBpcdTA
CHQDYyVxn7XJjUaXT/5XapF5zBS37E81ofQSSYpgLtMHNgC7CB4MfAvL2SVqEf2M
NT3ZL2Wm+azoFZoeu3MCD25sD27xh8XCV3pY33t3gQXwzFDijGWbX77i3+RdDRHS
gw04TYVypgSdBNAzwPfOl3Psu9iAxHr1ygCLOdnSukaiz+e8cCvxaakgUnLrl5Xs
Bb8UlVwEOGZPWPz77KsNjgPLrPINwiYzjtDO3v+98FjPhWNRrb+f8b71FMtY18Lw
ZcCSEaoufVmALsDqCoJT+uhgIv7tYVEIa9nxjR31pOXmJQQ/NnBt8y3Y0zSqi7VZ
lSK5SdQhv/0orQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:10:28 2025 by rpki-client