Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft
File: 9dmpKCydJUfFZmNPO6zMvPJYiCc.mft (raw, json)
Hash identifier: /XqXLP0wxxis/R8E6U+LUIydvkK71VVlA5yKykBnQWc=
Subject key identifier: 5A:71:59:3F:EF:C0:BE:0C:06:85:BF:80:22:74:C7:B5:B8:DA:9A:06
Authority key identifier: F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27
Certificate issuer: /CN=f5d9a9282c9d2547c566634f3bacccbcf2588827
Certificate serial: 019615466F0BCE93C9A9BB8833C2B85A98EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft
Manifest number: 0AF8
Signing time: Tue 08 Apr 2025 12:00:59 +0000
Manifest this update: Tue 08 Apr 2025 12:00:59 +0000
Manifest next update: Wed 09 Apr 2025 12:00:59 +0000
Files and hashes: 1: 37QCkG1k9gzLrRMVOTELOapS-4Y.roa (hash: fObIS1yLlqyANULO1cGplwcB5m0pXnjdZmigUly+6NA=)
2: 3RdZANpVovPRB4zCH-Lkf3Prtaw.roa (hash: l5w5cnd2tEXGGJFzz40s0YV//kdA+ReRwmR0KmdVVDU=)
3: 9dmpKCydJUfFZmNPO6zMvPJYiCc.crl (hash: aHycD9Mt6cQTMfGjIkbBfgAhqwX94hUsk4XyxRKE8OA=)
4: C8rZpiwRRKp7HiBYnxrXRCtzNP4.roa (hash: /a2qXNrKqG5G3jKSkvjhWWJd/4eBrgaawytg7M/VZPQ=)
5: H6_j121nwrBmCty1wbdXDXgyav8.roa (hash: vaRQnvr04lMFV87aznhgmJYTb/5VAEUEaBeFpioyQ+k=)
6: PpuH6UZdHiPbsmr0e060Bitru2g.roa (hash: S+KU/xPGIUttnT6f0HUq3beFm6aOsdHTB3Cjru0v55o=)
7: QzeYJ0KS9RnXOpGwg30dLB7QNtM.roa (hash: GvxqUqeToEyuHItwEPwmlJxDN8bC2ihCXeSL11W/nwA=)
8: xEaq7kolhQn1OmIod6QQM1Gthtk.roa (hash: IC+2lUW0/0ySDq3Q6puBeGjrJpCDJAXfXz5IauHoRHE=)
9: yZE684PU1B3lT-aKA30arKwyTEI.roa (hash: isFNdgWP0HVp5O76X23OI/gh9YCy0xYVcwqK0QPMZ60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft
rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 12:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:15:46:6f:0b:ce:93:c9:a9:bb:88:33:c2:b8:5a:98:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5d9a9282c9d2547c566634f3bacccbcf2588827
Validity
Not Before: Apr 8 12:00:59 2025 GMT
Not After : Apr 9 12:00:59 2025 GMT
Subject: CN=5a71593fefc0be0c0685bf802274c7b5b8da9a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:1a:be:35:ef:1c:6c:3f:21:b0:bf:9e:96:4b:
7d:a8:8c:48:b3:63:d6:f2:8b:62:f1:97:1e:3e:f7:
9d:b0:a9:c5:97:60:3a:d8:8a:70:ef:df:d9:b8:02:
69:f4:48:85:59:1c:34:c9:c5:a3:80:6d:fa:54:10:
49:23:ce:7a:e4:a0:59:89:27:b8:9b:0f:be:f5:68:
a3:0f:de:af:04:60:53:98:a4:5f:3a:d4:7f:83:34:
e4:13:f1:ac:85:19:d8:60:69:95:ad:70:28:06:90:
9c:db:1e:b0:58:f6:dd:2c:3e:ac:e0:9b:6d:df:55:
a8:8e:f4:d7:74:07:eb:2e:a9:01:7f:ae:92:46:bb:
79:c5:2e:33:5e:29:b0:80:0c:aa:0f:b6:1a:4f:d5:
15:60:c4:e0:22:b0:f3:4c:88:1c:50:0f:bc:cd:7c:
48:db:83:bd:4e:64:db:66:0f:1b:0d:5f:c5:9c:3b:
9a:da:e5:1c:2e:15:28:58:dd:40:2a:25:d5:ff:d2:
45:a2:4c:00:ee:a5:cb:ed:8e:1b:35:50:0d:e5:55:
1c:90:4c:d2:90:fc:46:5b:f8:14:e4:26:4d:bd:a3:
74:54:fa:51:52:72:44:f3:be:57:52:33:92:92:da:
9a:ca:ab:93:10:60:6d:a5:32:ba:40:7f:43:44:12:
01:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:71:59:3F:EF:C0:BE:0C:06:85:BF:80:22:74:C7:B5:B8:DA:9A:06
X509v3 Authority Key Identifier:
keyid:F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:7c:d9:2d:7a:ea:d1:d0:38:4a:f9:aa:2a:7c:86:d0:b7:8e:
aa:cb:19:8b:cf:61:21:59:1c:4b:d3:f5:aa:51:bb:88:a3:6e:
e7:3d:c5:47:9c:cb:3f:4a:32:f4:f8:62:2f:8e:1f:9a:a8:3c:
0e:84:aa:8a:22:c6:4f:db:d8:5b:1f:ef:8c:9e:bf:29:03:41:
3e:3d:70:33:2c:a9:f5:09:a5:7c:3d:78:6f:7c:5e:39:5f:11:
dc:8b:1c:21:18:b1:3e:37:83:34:df:e0:bb:72:f4:68:5b:f8:
40:a0:b6:c8:b4:5c:6a:d6:3e:95:16:2a:5a:27:bf:8b:f2:e0:
8c:99:a3:9f:4b:c7:59:f2:28:99:5f:8e:51:b4:fe:1b:f3:f8:
8f:c4:c9:15:66:2d:37:c3:f9:39:3c:a8:f2:61:0b:a0:70:56:
19:b0:d3:a1:f2:5e:7e:4b:89:02:76:1f:73:64:01:84:2b:4c:
20:a6:63:74:d8:2b:81:e2:f6:8b:9c:cf:b7:71:c0:80:16:f9:
77:ba:af:d2:2b:04:e1:4f:e0:70:08:68:02:8a:da:09:c1:6f:
10:fa:49:80:0a:a2:78:88:5b:33:d0:4f:d9:ae:f6:77:a9:7a:
9a:e9:a9:d5:fc:c8:0c:0a:9f:f9:a2:63:52:08:34:bc:f4:9c:
c0:2e:cf:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYVRm8LzpPJqbuIM8K4WpjsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1ZDlhOTI4MmM5ZDI1NDdjNTY2NjM0ZjNiYWNjY2JjZjI1
ODg4MjcwHhcNMjUwNDA4MTIwMDU5WhcNMjUwNDA5MTIwMDU5WjAzMTEwLwYDVQQD
Eyg1YTcxNTkzZmVmYzBiZTBjMDY4NWJmODAyMjc0YzdiNWI4ZGE5YTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhq+Ne8cbD8hsL+elkt9qIxIs2PW
8oti8ZcePvedsKnFl2A62Ipw79/ZuAJp9EiFWRw0ycWjgG36VBBJI8565KBZiSe4
mw++9WijD96vBGBTmKRfOtR/gzTkE/GshRnYYGmVrXAoBpCc2x6wWPbdLD6s4Jtt
31WojvTXdAfrLqkBf66SRrt5xS4zXimwgAyqD7YaT9UVYMTgIrDzTIgcUA+8zXxI
24O9TmTbZg8bDV/FnDua2uUcLhUoWN1AKiXV/9JFokwA7qXL7Y4bNVAN5VUckEzS
kPxGW/gU5CZNvaN0VPpRUnJE875XUjOSktqayquTEGBtpTK6QH9DRBIBrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFpxWT/vwL4MBoW/gCJ0x7W42poGMB8GA1UdIwQY
MBaAFPXZqSgsnSVHxWZjTzuszLzyWIgnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjct
OGNmNDFjYWZkY2UyLzEvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjctOGNmNDFjYWZkY2Uy
LzEvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl3zZLXrq
0dA4SvmqKnyG0LeOqssZi89hIVkcS9P1qlG7iKNu5z3FR5zLP0oy9PhiL44fmqg8
DoSqiiLGT9vYWx/vjJ6/KQNBPj1wMyyp9QmlfD14b3xeOV8R3IscIRixPjeDNN/g
u3L0aFv4QKC2yLRcatY+lRYqWie/i/LgjJmjn0vHWfIomV+OUbT+G/P4j8TJFWYt
N8P5OTyo8mELoHBWGbDTofJefkuJAnYfc2QBhCtMIKZjdNgrgeL2i5zPt3HAgBb5
d7qv0isE4U/gcAhoAoraCcFvEPpJgAqieIhbM9BP2a72d6l6mump1fzIDAqf+aJj
Ugg0vPScwC7PDw==
-----END CERTIFICATE-----
Generated at Tue Apr 8 19:04:51 2025 by rpki-client