Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
File: 1jND98xsI32j-LgROMBR2Pk8nE0.mft (raw, json)
Hash identifier: gvs4VyZZB/nxIiOJ2CPEOv1eBMVSpvzCbNuZW8PsxXo=
Subject key identifier: CA:50:66:5E:AA:F9:06:59:2A:C6:54:8D:F0:C2:9F:28:10:36:1F:D4
Authority key identifier: D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D
Certificate issuer: /CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d
Certificate serial: 01965D282CB372D420D0CB22EE6DD706CE0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
Manifest number: 1502
Signing time: Tue 22 Apr 2025 11:00:35 +0000
Manifest this update: Tue 22 Apr 2025 11:00:35 +0000
Manifest next update: Wed 23 Apr 2025 11:00:35 +0000
Files and hashes: 1: 1jND98xsI32j-LgROMBR2Pk8nE0.crl (hash: 5NYgXL2Ry9QWYHHjMIpBgPfrUE3DjIonS+QGP3oVRNI=)
2: r8Cx9iv2Us-sXIBLH4ymKtjO_pw.roa (hash: zSG7oRCig4axArTg72yLWZy9j2Lnt0Tay8wTKKxpjxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:28:2c:b3:72:d4:20:d0:cb:22:ee:6d:d7:06:ce:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d63343f7cc6c237da3f8b81138c051d8f93c9c4d
Validity
Not Before: Apr 22 11:00:35 2025 GMT
Not After : Apr 23 11:00:35 2025 GMT
Subject: CN=ca50665eaaf906592ac6548df0c29f2810361fd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:70:ae:64:9b:6e:30:ba:07:4b:4c:96:c1:e1:
6d:92:5a:67:20:01:7a:86:88:c0:eb:8e:9c:26:87:
9c:83:e2:e9:17:37:b2:65:ee:c0:dd:e2:be:52:1d:
ac:7e:fb:ca:cd:ea:aa:1e:84:b4:91:f0:0b:cf:50:
9b:65:4d:d1:00:e4:b8:a4:15:ec:fb:54:5b:1d:86:
8b:c3:c4:3d:06:4b:01:d5:a7:91:22:ed:76:8e:a1:
8e:7c:b8:62:0b:83:19:1a:17:15:19:aa:16:98:c9:
28:a2:32:42:f6:74:b2:4b:81:d2:96:b9:94:a7:a7:
f7:c1:a1:0e:47:a9:90:2c:56:98:3f:2c:30:2c:4c:
61:06:b7:df:55:88:59:f5:67:63:79:8d:7e:bb:02:
fe:b3:ea:ee:c5:08:cf:73:de:b9:db:b7:ae:d8:5e:
9d:e5:26:de:a1:0e:37:86:9a:cf:f5:f7:91:99:67:
3f:6f:7a:d3:33:7b:f3:b6:21:5a:d5:93:72:93:1f:
fe:49:74:ed:40:de:c4:bd:a8:70:64:cf:a0:48:bb:
47:c3:56:40:c2:9d:1e:cc:89:1e:c6:c2:86:53:6c:
69:90:09:d6:d4:b4:9c:9f:f8:fb:e3:30:9e:df:cb:
36:0c:40:c8:df:d3:dd:93:ee:d8:31:c8:79:f3:2f:
e1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:50:66:5E:AA:F9:06:59:2A:C6:54:8D:F0:C2:9F:28:10:36:1F:D4
X509v3 Authority Key Identifier:
keyid:D6:33:43:F7:CC:6C:23:7D:A3:F8:B8:11:38:C0:51:D8:F9:3C:9C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1jND98xsI32j-LgROMBR2Pk8nE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/8eb581-9c74-48e1-821a-53180eec56fb/1/1jND98xsI32j-LgROMBR2Pk8nE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:10:fe:c0:7e:86:08:0f:e2:b0:37:c4:1e:2a:c6:34:20:60:
7d:51:05:b8:52:ce:ac:75:8f:74:b6:09:23:1b:39:fc:41:b2:
c1:4b:a9:09:ef:e8:1c:44:79:8f:79:68:51:8d:77:85:b4:47:
41:c8:a0:4b:39:e9:06:66:f8:cd:96:6b:82:d7:f7:c6:5e:0c:
31:91:db:20:c1:46:d5:ea:3f:e8:a4:32:10:9a:fc:73:e8:45:
c5:e0:86:0a:46:30:f0:c8:98:3a:3c:2c:4c:76:dc:4e:a5:02:
eb:ca:be:c9:8b:43:53:36:c5:5b:53:3e:9a:93:cc:da:71:49:
fc:ca:2c:4b:4e:1c:59:25:af:77:88:03:bc:7d:1e:aa:33:ab:
ba:0e:24:60:8a:73:a1:e9:09:22:2a:a9:38:7b:81:2c:16:67:
34:df:65:ee:b1:e1:14:18:18:67:e0:b8:ce:ed:8c:0e:23:52:
8b:46:f0:25:99:4b:9f:35:7e:84:71:20:62:f0:cd:fd:31:45:
c9:c9:cb:c3:28:5e:db:5d:cb:fd:33:09:6b:d1:1c:ab:ea:e7:
e1:1b:d7:ab:e4:63:38:de:78:88:30:fa:9e:4d:ae:9a:b9:b5:
66:f5:69:8e:67:f0:4a:4a:97:a4:2b:bc:3b:c5:39:07:bb:8a:
e4:10:80:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZdKCyzctQg0Msi7m3XBs4LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2MzM0M2Y3Y2M2YzIzN2RhM2Y4YjgxMTM4YzA1MWQ4Zjkz
YzljNGQwHhcNMjUwNDIyMTEwMDM1WhcNMjUwNDIzMTEwMDM1WjAzMTEwLwYDVQQD
EyhjYTUwNjY1ZWFhZjkwNjU5MmFjNjU0OGRmMGMyOWYyODEwMzYxZmQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzXCuZJtuMLoHS0yWweFtklpnIAF6
hojA646cJoecg+LpFzeyZe7A3eK+Uh2sfvvKzeqqHoS0kfALz1CbZU3RAOS4pBXs
+1RbHYaLw8Q9BksB1aeRIu12jqGOfLhiC4MZGhcVGaoWmMkoojJC9nSyS4HSlrmU
p6f3waEOR6mQLFaYPywwLExhBrffVYhZ9WdjeY1+uwL+s+ruxQjPc96527eu2F6d
5SbeoQ43hprP9feRmWc/b3rTM3vztiFa1ZNykx/+SXTtQN7EvahwZM+gSLtHw1ZA
wp0ezIkexsKGU2xpkAnW1LScn/j74zCe38s2DEDI39Pdk+7YMch58y/hjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMpQZl6q+QZZKsZUjfDCnygQNh/UMB8GA1UdIwQY
MBaAFNYzQ/fMbCN9o/i4ETjAUdj5PJxNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS84ZWI1ODEtOWM3NC00OGUxLTgyMWEt
NTMxODBlZWM1NmZiLzEvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS84ZWI1ODEtOWM3NC00OGUxLTgyMWEtNTMxODBlZWM1NmZi
LzEvMWpORDk4eHNJMzJqLUxnUk9NQlIyUGs4bkUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADRD+wH6G
CA/isDfEHirGNCBgfVEFuFLOrHWPdLYJIxs5/EGywUupCe/oHER5j3loUY13hbRH
QcigSznpBmb4zZZrgtf3xl4MMZHbIMFG1eo/6KQyEJr8c+hFxeCGCkYw8MiYOjws
THbcTqUC68q+yYtDUzbFW1M+mpPM2nFJ/MosS04cWSWvd4gDvH0eqjOrug4kYIpz
oekJIiqpOHuBLBZnNN9l7rHhFBgYZ+C4zu2MDiNSi0bwJZlLnzV+hHEgYvDN/TFF
ycnLwyhe213L/TMJa9Ecq+rn4RvXq+RjON54iDD6nk2umrm1ZvVpjmfwSkqXpCu8
O8U5B7uK5BCABQ==
-----END CERTIFICATE-----
Generated at Tue Apr 22 14:23:41 2025 by rpki-client