Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
File: 1ITgzuV1xhkFP47isQBMxEL9LO0.mft (raw, json)
Hash identifier: lz4DwOKwJ/jU9xFTcnvZ7HfZFc0dZXOZE65+syXPOB0=
Subject key identifier: 55:86:CE:3B:A3:C4:A8:70:CD:88:EB:A9:3E:0D:70:CF:06:B9:79:ED
Authority key identifier: D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED
Certificate issuer: /CN=d484e0cee575c619053f8ee2b1004cc442fd2ced
Certificate serial: 01963FF99DA3FB4377729E0BDCBE9638F361
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
Manifest number: 131C
Signing time: Wed 16 Apr 2025 19:00:45 +0000
Manifest this update: Wed 16 Apr 2025 19:00:45 +0000
Manifest next update: Thu 17 Apr 2025 19:00:45 +0000
Files and hashes: 1: 1ITgzuV1xhkFP47isQBMxEL9LO0.crl (hash: VtpAwGyzJRYWdrUckzZz6EUU+vQ8s77Z2gOhUCIaPhE=)
2: LlAa--5nsX3tUHGAFZ_HSMFrn7I.roa (hash: 3b1C9Ph3SGavY+PSGpBTlLw28V2WqXhlaeYP73oghL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:f9:9d:a3:fb:43:77:72:9e:0b:dc:be:96:38:f3:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d484e0cee575c619053f8ee2b1004cc442fd2ced
Validity
Not Before: Apr 16 19:00:45 2025 GMT
Not After : Apr 17 19:00:45 2025 GMT
Subject: CN=5586ce3ba3c4a870cd88eba93e0d70cf06b979ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d1:1d:02:34:a4:93:a3:d6:1e:ef:15:c9:70:
ab:35:75:69:47:fa:fb:79:19:0b:ed:21:13:53:a2:
ea:ed:15:04:ff:0c:5e:1f:f3:de:7e:a6:de:8d:69:
12:74:08:52:76:d6:7f:c8:29:b8:24:d4:a2:1b:7f:
de:f2:19:e2:8d:b3:25:55:af:88:e4:0b:23:5f:85:
97:0d:e3:b1:0a:db:0c:83:a0:01:a9:e7:06:d2:4e:
0a:8b:27:c7:6d:09:06:be:3f:d2:75:f1:42:77:17:
c9:6b:5b:06:70:6a:e3:3f:8a:90:f3:5b:11:b0:45:
21:aa:ba:98:37:87:c6:8b:64:f7:e6:8c:60:3a:b2:
06:d8:b9:84:54:67:b5:b4:dd:39:69:ed:9a:fa:52:
28:36:a9:9a:06:27:64:5e:c5:86:8d:c1:98:86:b3:
4f:97:3b:fd:7f:40:e9:d0:15:82:e8:71:dd:40:61:
19:3a:28:65:df:8f:33:95:e1:a3:f8:60:50:71:6b:
c9:7b:ec:b9:d4:7c:5a:44:46:a9:78:43:bf:0f:e4:
42:e9:81:e6:d2:88:c2:be:9f:87:f0:c4:1a:4c:b3:
ea:33:56:b8:cc:63:f8:63:36:db:51:b1:a6:cf:d3:
07:1d:bd:da:38:6f:d9:f4:00:23:ca:8a:5e:22:1e:
a0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:86:CE:3B:A3:C4:A8:70:CD:88:EB:A9:3E:0D:70:CF:06:B9:79:ED
X509v3 Authority Key Identifier:
keyid:D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:26:1d:9e:34:d6:9a:f2:96:a2:e3:53:93:88:6d:ee:08:c7:
08:77:5d:32:2a:6b:e9:b6:74:36:3b:c1:d3:17:6c:c9:7f:d7:
15:af:70:f3:41:08:58:73:95:98:51:08:7a:0a:2e:d0:17:25:
a2:11:c6:4d:b8:88:f5:62:df:8d:db:5c:ab:1d:39:b7:4e:94:
b6:68:63:23:d6:58:7e:d8:af:2a:cf:41:c0:2c:13:cd:25:04:
ee:a8:40:83:91:35:fe:6a:c7:e2:3c:7d:d9:ac:11:c4:35:be:
c1:51:9b:17:cf:13:ff:ec:24:1a:ed:47:3c:e4:1b:8a:f8:9c:
14:77:54:7a:98:66:eb:cb:21:dc:88:2b:91:7b:e7:a0:d4:25:
55:7a:7f:1d:9b:fe:8e:52:97:21:37:92:d5:33:a2:a8:53:87:
7f:bd:12:ba:63:27:33:cc:42:90:a7:46:81:29:e4:3d:44:2c:
17:2a:f9:28:6a:8e:25:05:98:10:b6:90:8d:9f:65:ab:88:a3:
94:ef:aa:cd:6a:a1:98:01:3e:2c:5e:74:fa:56:ac:ff:6a:2b:
6f:47:07:6b:4d:fb:31:12:dc:14:57:63:f2:eb:ee:81:c6:99:
8f:a5:7e:21:23:fe:3b:11:95:1c:da:92:50:f7:55:f8:0d:81:
bb:76:27:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY/+Z2j+0N3cp4L3L6WOPNhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ODRlMGNlZTU3NWM2MTkwNTNmOGVlMmIxMDA0Y2M0NDJm
ZDJjZWQwHhcNMjUwNDE2MTkwMDQ1WhcNMjUwNDE3MTkwMDQ1WjAzMTEwLwYDVQQD
Eyg1NTg2Y2UzYmEzYzRhODcwY2Q4OGViYTkzZTBkNzBjZjA2Yjk3OWVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutEdAjSkk6PWHu8VyXCrNXVpR/r7
eRkL7SETU6Lq7RUE/wxeH/PefqbejWkSdAhSdtZ/yCm4JNSiG3/e8hnijbMlVa+I
5AsjX4WXDeOxCtsMg6ABqecG0k4KiyfHbQkGvj/SdfFCdxfJa1sGcGrjP4qQ81sR
sEUhqrqYN4fGi2T35oxgOrIG2LmEVGe1tN05ae2a+lIoNqmaBidkXsWGjcGYhrNP
lzv9f0Dp0BWC6HHdQGEZOihl348zleGj+GBQcWvJe+y51HxaREapeEO/D+RC6YHm
0ojCvp+H8MQaTLPqM1a4zGP4YzbbUbGmz9MHHb3aOG/Z9AAjyopeIh6ghQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFWGzjujxKhwzYjrqT4NcM8GuXntMB8GA1UdIwQY
MBaAFNSE4M7ldcYZBT+O4rEATMRC/SztMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUlUZ3p1VjF4aGtGUDQ3aXNRQk14RUw5TE8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC83ODQ3ZmItZjU1YS00OTk1LTg1MzEt
ZWMwMjYyYWIzM2YxLzEvMUlUZ3p1VjF4aGtGUDQ3aXNRQk14RUw5TE8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC83ODQ3ZmItZjU1YS00OTk1LTg1MzEtZWMwMjYyYWIzM2Yx
LzEvMUlUZ3p1VjF4aGtGUDQ3aXNRQk14RUw5TE8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoCYdnjTW
mvKWouNTk4ht7gjHCHddMipr6bZ0NjvB0xdsyX/XFa9w80EIWHOVmFEIegou0Bcl
ohHGTbiI9WLfjdtcqx05t06UtmhjI9ZYftivKs9BwCwTzSUE7qhAg5E1/mrH4jx9
2awRxDW+wVGbF88T/+wkGu1HPOQbivicFHdUephm68sh3IgrkXvnoNQlVXp/HZv+
jlKXITeS1TOiqFOHf70SumMnM8xCkKdGgSnkPUQsFyr5KGqOJQWYELaQjZ9lq4ij
lO+qzWqhmAE+LF50+las/2orb0cHa037MRLcFFdj8uvugcaZj6V+ISP+OxGVHNqS
UPdV+A2Bu3Ynyg==
-----END CERTIFICATE-----
Generated at Thu Apr 17 09:08:59 2025 by rpki-client