Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier: et0JX70f7dzoOGV/8o6OLSEwtNiHQxne9sPQgUGc1i8=
Subject key identifier: 27:DB:D7:1B:06:4F:37:25:07:B7:FD:06:99:F1:AC:B6:DA:E0:E5:17
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial: 01958B1664413B815AC4DED4026177BFB906
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number: 149A
Signing time: Wed 12 Mar 2025 16:00:55 +0000
Manifest this update: Wed 12 Mar 2025 16:00:55 +0000
Manifest next update: Thu 13 Mar 2025 16:00:55 +0000
Files and hashes: 1: WJH47C61XR_K2-CtYxgpUp74kn0.roa (hash: BVccIg7io/eziHh+vAH/IUFYNMXuHQFyf8ZMaD2OiiM=)
2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: SV09nDaLHNKQy5FpcgyvZVYFrK9lyn6GapEqHdur0Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 16:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:16:64:41:3b:81:5a:c4:de:d4:02:61:77:bf:b9:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Validity
Not Before: Mar 12 16:00:55 2025 GMT
Not After : Mar 13 16:00:55 2025 GMT
Subject: CN=27dbd71b064f372507b7fd0699f1acb6dae0e517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:30:0d:9c:85:80:5d:e1:16:45:ed:1f:73:c6:
4b:0f:e2:64:85:8a:76:1b:30:19:59:f0:78:89:7f:
91:c3:bc:72:d8:5d:34:7c:43:96:9f:46:64:a1:98:
ab:d1:98:a3:99:45:37:75:35:d6:af:0f:52:9e:4b:
2f:9e:b6:fd:d7:aa:2a:53:a6:08:61:c9:9e:94:b2:
b6:e8:e4:8a:91:99:81:83:d1:90:07:1d:6d:03:99:
52:0b:2a:64:7d:05:f2:47:6b:6d:b0:9d:84:31:25:
c5:ef:8b:71:7b:0e:63:01:0a:a1:29:a4:c1:5d:17:
b7:fd:26:e9:69:80:73:69:fa:e4:bb:6c:ef:13:16:
00:39:d8:c1:ad:02:05:0f:82:c3:ae:2d:48:d9:54:
ea:55:7a:00:a3:21:30:d8:67:cb:3d:c2:ce:73:96:
d1:11:85:b1:77:96:d0:79:a8:3d:cf:34:bd:ea:ab:
52:18:0f:c5:8a:80:bf:24:11:0b:0b:fa:a5:8f:f2:
f4:99:c7:5c:1d:cd:3b:8b:df:b8:4d:8f:12:20:f8:
d0:77:05:d2:f9:c4:b5:3f:fa:c1:d9:30:c3:8d:fa:
ec:ce:1d:6e:48:6d:37:48:32:5b:5f:a4:e4:3f:87:
a8:48:b4:ee:31:c9:25:d6:ea:74:29:09:88:d2:53:
38:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:DB:D7:1B:06:4F:37:25:07:B7:FD:06:99:F1:AC:B6:DA:E0:E5:17
X509v3 Authority Key Identifier:
keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:33:6f:36:ba:51:3b:85:d8:e6:1f:84:59:1f:28:1b:f0:72:
eb:80:8a:3b:52:a9:da:54:9d:ab:78:af:96:46:d9:28:1a:71:
5e:01:c9:50:5c:fc:a6:88:0f:e3:0b:33:1c:67:41:06:a9:0e:
8f:2d:19:43:97:d4:73:a5:06:2f:32:a4:13:87:eb:96:8b:9e:
9b:52:f3:56:40:0d:b9:5c:74:55:45:33:2c:a4:32:4b:e1:40:
d9:da:f1:b7:b3:f9:23:ef:f7:4e:a4:bb:d7:cc:33:09:35:8e:
3e:67:ba:fe:7b:72:8c:86:f4:7e:4f:03:39:97:1f:99:f7:b7:
bd:8e:b8:51:1b:b2:19:d5:22:23:4d:ed:a3:95:0f:ee:f3:1c:
16:2b:d5:ec:5d:61:4d:1c:e5:8c:a1:ef:b7:4f:ef:40:49:c7:
4a:8c:87:91:e4:58:40:76:fd:d3:34:a4:41:54:e4:a3:6a:06:
9d:a9:9f:91:66:54:74:64:5e:04:01:7f:c7:8c:a0:21:6a:11:
3b:9e:d9:c2:26:d8:bf:70:dc:c6:df:c0:a1:37:2c:93:fe:a8:
4c:e1:2e:09:0a:8c:e9:1d:c0:54:10:42:a4:70:8e:3d:22:e0:
ea:22:d4:01:e5:9c:70:4a:4f:cd:0d:65:05:47:ef:15:5d:70:
8e:da:16:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWLFmRBO4FaxN7UAmF3v7kGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzYjZmNTRlYTliMTVhOGJkNGYzMzgyNTM4NmNiMjc3YjAz
NDM5ZGQwHhcNMjUwMzEyMTYwMDU1WhcNMjUwMzEzMTYwMDU1WjAzMTEwLwYDVQQD
EygyN2RiZDcxYjA2NGYzNzI1MDdiN2ZkMDY5OWYxYWNiNmRhZTBlNTE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuzANnIWAXeEWRe0fc8ZLD+JkhYp2
GzAZWfB4iX+Rw7xy2F00fEOWn0ZkoZir0ZijmUU3dTXWrw9Snksvnrb916oqU6YI
YcmelLK26OSKkZmBg9GQBx1tA5lSCypkfQXyR2ttsJ2EMSXF74txew5jAQqhKaTB
XRe3/SbpaYBzafrku2zvExYAOdjBrQIFD4LDri1I2VTqVXoAoyEw2GfLPcLOc5bR
EYWxd5bQeag9zzS96qtSGA/FioC/JBELC/qlj/L0mcdcHc07i9+4TY8SIPjQdwXS
+cS1P/rB2TDDjfrszh1uSG03SDJbX6TkP4eoSLTuMckl1up0KQmI0lM4hwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCfb1xsGTzclB7f9BpnxrLba4OUXMB8GA1UdIwQY
MBaAFLO29U6psVqL1PM4JThssnewNDndMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczdiMVRxbXhXb3ZVOHpnbE9HeXlkN0EwT2QwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi84ZGU0YTMtOGQ1YS00NmIxLWE3MzUt
MmY0NmU5MzE3Y2M2LzEvczdiMVRxbXhXb3ZVOHpnbE9HeXlkN0EwT2QwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi84ZGU0YTMtOGQ1YS00NmIxLWE3MzUtMmY0NmU5MzE3Y2M2
LzEvczdiMVRxbXhXb3ZVOHpnbE9HeXlkN0EwT2QwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkDNvNrpR
O4XY5h+EWR8oG/By64CKO1Kp2lSdq3ivlkbZKBpxXgHJUFz8pogP4wszHGdBBqkO
jy0ZQ5fUc6UGLzKkE4frlouem1LzVkANuVx0VUUzLKQyS+FA2drxt7P5I+/3TqS7
18wzCTWOPme6/ntyjIb0fk8DOZcfmfe3vY64URuyGdUiI03to5UP7vMcFivV7F1h
TRzljKHvt0/vQEnHSoyHkeRYQHb90zSkQVTko2oGnamfkWZUdGReBAF/x4ygIWoR
O57ZwibYv3Dcxt/AoTcsk/6oTOEuCQqM6R3AVBBCpHCOPSLg6iLUAeWccEpPzQ1l
BUfvFV1wjtoWEA==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:14 2025 by rpki-client