Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
File: xcSzrlnZgfJQzIfatZeFSr7XowA.mft (raw, json)
Hash identifier: AoQxoCh5eh+ZkZViZmjSqRIcqokwJq/GE5vlCyoCWqA=
Subject key identifier: F0:49:12:64:FE:AA:CB:EB:03:3A:A7:37:16:1A:56:AD:7D:25:F4:8C
Authority key identifier: C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
Certificate issuer: /CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Certificate serial: 019655A64004A4C74BD37333BD39C03588E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
Manifest number: 0417
Signing time: Mon 21 Apr 2025 00:01:20 +0000
Manifest this update: Mon 21 Apr 2025 00:01:20 +0000
Manifest next update: Tue 22 Apr 2025 00:01:20 +0000
Files and hashes: 1: tSYSYm63yj3qobuZYMSr1LAsH4E.roa (hash: e9vbUkUz5x9f5ya8J4QgHE0l9ibgPIgGHQ86whMQdU8=)
2: xcSzrlnZgfJQzIfatZeFSr7XowA.crl (hash: mj2J/cfepqnaWljyXJ9GpkjeZKxQxw/uDdEMu44Bh7k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a6:40:04:a4:c7:4b:d3:73:33:bd:39:c0:35:88:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Validity
Not Before: Apr 21 00:01:20 2025 GMT
Not After : Apr 22 00:01:20 2025 GMT
Subject: CN=f0491264feaacbeb033aa737161a56ad7d25f48c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f6:bb:a6:73:ba:96:f6:bb:e4:20:6b:01:b7:
e5:da:cd:79:dd:a6:45:1b:95:3b:80:7c:fa:c1:c2:
91:b0:56:c4:9e:62:1f:8d:05:20:f1:c3:cf:a9:66:
a2:a1:79:c8:4b:a7:23:b8:db:5f:73:40:d5:25:11:
26:41:03:1a:c6:34:92:5d:b4:28:dc:d4:d1:bf:46:
5d:09:49:9f:92:78:6a:68:c4:f2:8b:30:0c:4c:90:
c5:21:52:ee:76:23:df:93:73:34:c0:1f:18:ff:42:
8b:92:9b:33:ef:3c:87:a4:60:6a:28:33:33:0c:47:
ce:a0:18:e0:19:9c:7b:9c:f9:8a:6f:e8:22:d8:32:
00:72:b8:f9:02:b2:6d:4c:2e:20:3f:75:93:5b:7a:
a7:db:6f:86:ba:48:8a:83:f3:1c:37:c3:e8:63:6f:
ea:26:71:80:89:07:46:e1:b8:ac:1c:bc:25:11:8a:
9d:38:53:a0:cc:8b:53:99:fd:d5:fa:c7:8c:25:dd:
3c:47:7d:ca:6a:b4:8b:0a:65:47:48:c1:80:5f:b9:
7e:59:fe:98:58:8a:4a:44:ce:31:b7:41:2b:0f:d5:
39:07:b9:2f:11:b5:b8:d4:10:fc:bc:23:f0:92:6c:
a4:98:84:7d:99:c7:7b:63:4f:ec:ea:9c:20:b9:6d:
13:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:49:12:64:FE:AA:CB:EB:03:3A:A7:37:16:1A:56:AD:7D:25:F4:8C
X509v3 Authority Key Identifier:
keyid:C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:99:3b:7f:47:ae:17:f1:b5:69:67:29:9a:fb:3d:40:9a:19:
0f:9d:47:4a:42:07:a0:71:fc:e8:34:7f:e6:89:6b:20:bd:ec:
6c:e3:70:54:f7:99:76:ce:dc:12:54:36:ad:0d:3f:6a:f1:23:
5b:f9:24:b2:4b:40:3d:95:ba:43:f8:83:a2:28:6b:42:32:7a:
9b:bb:cd:9f:32:57:42:bc:2b:91:0f:32:7f:19:91:4d:65:45:
77:4c:bf:b9:4d:73:4d:22:17:ea:85:0c:e3:cb:38:73:d8:d0:
d3:dc:0d:fd:c1:96:c8:fd:65:55:31:e5:cf:89:74:17:7d:56:
95:bd:fb:61:fd:19:da:3e:40:a5:19:ee:74:78:f7:4c:dd:42:
62:b5:3a:0d:cc:e4:3e:e0:b0:73:bc:e9:2d:4b:2a:7c:a0:f5:
2b:ff:cb:60:57:b6:55:e6:62:0a:4c:83:b7:5a:87:56:f0:59:
0d:3e:94:33:6c:c9:5d:57:8f:8d:84:b3:25:e5:6a:fe:6f:ad:
be:f4:d8:1f:4c:9f:66:f7:5f:0a:3e:f1:c4:3f:58:53:c5:0b:
94:58:94:99:6a:74:f8:99:58:31:b7:e2:51:c9:f4:0f:1a:65:
0c:50:47:e0:60:f4:ee:b6:d2:99:3e:4c:42:9d:84:51:32:28:
f5:cb:a9:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVpkAEpMdL03MzvTnANYjpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YzRiM2FlNTlkOTgxZjI1MGNjODdkYWI1OTc4NTRhYmVk
N2EzMDAwHhcNMjUwNDIxMDAwMTIwWhcNMjUwNDIyMDAwMTIwWjAzMTEwLwYDVQQD
EyhmMDQ5MTI2NGZlYWFjYmViMDMzYWE3MzcxNjFhNTZhZDdkMjVmNDhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlva7pnO6lva75CBrAbfl2s153aZF
G5U7gHz6wcKRsFbEnmIfjQUg8cPPqWaioXnIS6cjuNtfc0DVJREmQQMaxjSSXbQo
3NTRv0ZdCUmfknhqaMTyizAMTJDFIVLudiPfk3M0wB8Y/0KLkpsz7zyHpGBqKDMz
DEfOoBjgGZx7nPmKb+gi2DIAcrj5ArJtTC4gP3WTW3qn22+GukiKg/McN8PoY2/q
JnGAiQdG4bisHLwlEYqdOFOgzItTmf3V+seMJd08R33KarSLCmVHSMGAX7l+Wf6Y
WIpKRM4xt0ErD9U5B7kvEbW41BD8vCPwkmykmIR9mcd7Y0/s6pwguW0TJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPBJEmT+qsvrAzqnNxYaVq19JfSMMB8GA1UdIwQY
MBaAFMXEs65Z2YHyUMyH2rWXhUq+16MAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGNTenJsblpnZkpReklmYXRaZUZTcjdYb3dBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS85ZjU0YTYtOTMzZi00N2RlLTg3MjYt
ZWRkZjUyN2U4ZjJkLzEveGNTenJsblpnZkpReklmYXRaZUZTcjdYb3dBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS85ZjU0YTYtOTMzZi00N2RlLTg3MjYtZWRkZjUyN2U4ZjJk
LzEveGNTenJsblpnZkpReklmYXRaZUZTcjdYb3dBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS5k7f0eu
F/G1aWcpmvs9QJoZD51HSkIHoHH86DR/5olrIL3sbONwVPeZds7cElQ2rQ0/avEj
W/kksktAPZW6Q/iDoihrQjJ6m7vNnzJXQrwrkQ8yfxmRTWVFd0y/uU1zTSIX6oUM
48s4c9jQ09wN/cGWyP1lVTHlz4l0F31Wlb37Yf0Z2j5ApRnudHj3TN1CYrU6Dczk
PuCwc7zpLUsqfKD1K//LYFe2VeZiCkyDt1qHVvBZDT6UM2zJXVePjYSzJeVq/m+t
vvTYH0yfZvdfCj7xxD9YU8ULlFiUmWp0+JlYMbfiUcn0DxplDFBH4GD07rbSmT5M
Qp2EUTIo9cup1Q==
-----END CERTIFICATE-----
Generated at Mon Apr 21 05:36:47 2025 by rpki-client