Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json)
Hash identifier: XReh3Y5g+yEJW2iR7qr5xMclYJ/+onG0ALCLPEvNPmQ=
Subject key identifier: B2:A5:95:D7:9D:1D:E0:27:7F:B5:99:9A:BE:AA:FC:3B:07:76:A4:0B
Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Certificate serial: 01964933A14A8CA28F434D51906A058E3F08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
Manifest number: 148B
Signing time: Fri 18 Apr 2025 14:00:42 +0000
Manifest this update: Fri 18 Apr 2025 14:00:42 +0000
Manifest next update: Sat 19 Apr 2025 14:00:42 +0000
Files and hashes: 1: Kp9T4yQ0BWzmIgTW27o6VMb8qh4.roa (hash: 8tmSpbSEt6oRRtmXjjT27qxLy0bdW3q5K1nXAwi0cxU=)
2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: oi07XEXZQ89zqyr07I4kxuofr4Kx1FndX+3QixhQQFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:49:33:a1:4a:8c:a2:8f:43:4d:51:90:6a:05:8e:3f:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Validity
Not Before: Apr 18 14:00:42 2025 GMT
Not After : Apr 19 14:00:42 2025 GMT
Subject: CN=b2a595d79d1de0277fb5999abeaafc3b0776a40b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f0:38:fc:eb:d0:ff:2c:f9:dd:78:1f:13:8a:
41:c6:51:52:8f:0f:b2:0b:1c:82:48:9d:8a:a1:a3:
94:3c:5b:6c:cc:60:33:7e:f1:0e:1e:66:51:83:84:
72:af:83:84:92:da:5d:01:52:c3:c2:c6:c3:16:8c:
5b:cf:73:44:43:fc:0f:03:6f:71:eb:24:6e:4c:00:
0a:7b:f8:aa:51:04:79:f8:6c:4d:47:1a:ec:24:e4:
a9:fe:68:e1:dd:fe:8c:77:55:7e:93:58:50:8a:2a:
28:23:69:8a:b7:34:21:f9:77:d3:b3:65:88:a9:ee:
12:62:25:07:41:ad:36:e7:98:d1:33:7d:17:59:d3:
3c:45:19:5b:91:5c:25:26:b4:ab:3c:e9:ed:14:94:
dc:44:a1:2d:bc:fd:e9:4a:0d:ca:de:e8:49:be:b5:
e5:9e:54:6d:5a:90:be:f2:59:e0:49:8b:3b:f8:78:
09:44:48:1d:63:3e:c8:bf:d1:f1:df:56:f9:91:a8:
a6:3c:65:c8:30:b4:56:38:78:54:21:05:ae:8e:79:
fa:ed:ab:23:5b:6d:1b:c4:a4:b9:50:ec:b1:ed:7a:
06:02:34:14:7e:d2:05:ef:ce:3d:aa:67:2e:84:e9:
d1:93:74:d8:49:c0:e3:c1:42:88:50:f1:55:00:61:
59:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A5:95:D7:9D:1D:E0:27:7F:B5:99:9A:BE:AA:FC:3B:07:76:A4:0B
X509v3 Authority Key Identifier:
keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:55:62:d5:3f:83:4c:e9:99:af:1d:17:03:ba:d3:cb:47:e2:
df:65:02:2b:60:a2:11:c5:46:c1:0f:a1:76:cc:b3:1f:98:a1:
a0:4a:09:7d:2b:59:28:d1:ff:fb:6b:d3:62:55:dd:8f:a2:89:
a8:5f:f2:d5:b5:ba:67:64:bb:10:cc:fb:d1:ac:ec:78:20:cc:
7f:74:88:3d:57:a2:50:aa:7e:7d:3f:a1:d1:10:ed:02:b1:b0:
45:83:a5:f1:29:f8:c0:a9:47:09:2f:b1:ac:ba:44:4c:6f:79:
38:2e:93:55:66:20:3b:74:aa:94:9a:c0:fd:4a:7b:30:66:f1:
8b:c2:1c:e2:44:d8:f2:9c:61:1e:99:83:b7:38:bc:5f:28:96:
31:66:5e:7a:5c:4c:a9:e3:3d:1f:ad:6c:7b:46:4d:4b:74:99:
cf:b3:3c:14:c0:f7:ab:d3:4d:f2:32:7d:a2:b1:46:db:a1:62:
f3:a3:51:4f:2c:9e:f8:e4:78:ec:70:f8:86:6d:df:c5:59:92:
5f:5c:6e:22:41:f3:40:7a:25:56:90:24:9e:e7:48:a9:36:7c:
fe:7e:95:9a:b0:60:3a:12:4b:91:95:73:6e:b9:34:dc:92:4f:
c6:de:25:76:ad:48:96:fd:a6:f5:2b:39:11:1f:84:c4:d4:cc:
82:bb:4e:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZJM6FKjKKPQ01RkGoFjj8IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhMmQ1ZmQzMDlkZDZjYzZjZjc4ODYwNDFlNWU5YzJjMWEy
NmNlYWIwHhcNMjUwNDE4MTQwMDQyWhcNMjUwNDE5MTQwMDQyWjAzMTEwLwYDVQQD
EyhiMmE1OTVkNzlkMWRlMDI3N2ZiNTk5OWFiZWFhZmMzYjA3NzZhNDBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqfA4/OvQ/yz53XgfE4pBxlFSjw+y
CxyCSJ2KoaOUPFtszGAzfvEOHmZRg4Ryr4OEktpdAVLDwsbDFoxbz3NEQ/wPA29x
6yRuTAAKe/iqUQR5+GxNRxrsJOSp/mjh3f6Md1V+k1hQiiooI2mKtzQh+XfTs2WI
qe4SYiUHQa0255jRM30XWdM8RRlbkVwlJrSrPOntFJTcRKEtvP3pSg3K3uhJvrXl
nlRtWpC+8lngSYs7+HgJREgdYz7Iv9Hx31b5kaimPGXIMLRWOHhUIQWujnn67asj
W20bxKS5UOyx7XoGAjQUftIF7849qmcuhOnRk3TYScDjwUKIUPFVAGFZlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLKlldedHeAnf7WZmr6q/DsHdqQLMB8GA1UdIwQY
MBaAFLotX9MJ3WzGz3iGBB5enCwaJs6rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2Yt
NmQ3NTUwNTJiYjI0LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2YtNmQ3NTUwNTJiYjI0
LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASlVi1T+D
TOmZrx0XA7rTy0fi32UCK2CiEcVGwQ+hdsyzH5ihoEoJfStZKNH/+2vTYlXdj6KJ
qF/y1bW6Z2S7EMz70azseCDMf3SIPVeiUKp+fT+h0RDtArGwRYOl8Sn4wKlHCS+x
rLpETG95OC6TVWYgO3SqlJrA/Up7MGbxi8Ic4kTY8pxhHpmDtzi8XyiWMWZeelxM
qeM9H61se0ZNS3SZz7M8FMD3q9NN8jJ9orFG26Fi86NRTyye+OR47HD4hm3fxVmS
X1xuIkHzQHolVpAknudIqTZ8/n6VmrBgOhJLkZVzbrk03JJPxt4ldq1Ilv2m9Ss5
ER+ExNTMgrtOng==
-----END CERTIFICATE-----
Generated at Fri Apr 18 22:19:35 2025 by rpki-client