Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.mft
File: tUSbCOpqJn33NmpolcfJJMLxkm0.mft (raw, json)
Hash identifier: lZT/vpB97yCJvIg4KBKxcQsrhYe3aS6C92adx1aJbgo=
Subject key identifier: 37:F7:1F:25:F6:BA:5D:33:D5:0E:0B:7E:6B:DF:BC:2F:39:40:62:DE
Authority key identifier: B5:44:9B:08:EA:6A:26:7D:F7:36:6A:68:95:C7:C9:24:C2:F1:92:6D
Certificate issuer: /CN=b5449b08ea6a267df7366a6895c7c924c2f1926d
Certificate serial: 0196458D7C8FC1F86B1168498465B69DCC60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUSbCOpqJn33NmpolcfJJMLxkm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.mft
Manifest number: 96
Signing time: Thu 17 Apr 2025 21:00:22 +0000
Manifest this update: Thu 17 Apr 2025 21:00:22 +0000
Manifest next update: Fri 18 Apr 2025 21:00:22 +0000
Files and hashes: 1: 12VZdcmHAZ40OHT9mrIrMjn0594.roa (hash: ET8sgbp54z2ReDcdD/bnaoyAnFdtN16gcR5nsUzXKcM=)
2: tUSbCOpqJn33NmpolcfJJMLxkm0.crl (hash: sQQALDR894gaJAZi/iw++Q3BIemOifVvCddcdZWpUbs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUSbCOpqJn33NmpolcfJJMLxkm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:8d:7c:8f:c1:f8:6b:11:68:49:84:65:b6:9d:cc:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5449b08ea6a267df7366a6895c7c924c2f1926d
Validity
Not Before: Apr 17 21:00:22 2025 GMT
Not After : Apr 18 21:00:22 2025 GMT
Subject: CN=37f71f25f6ba5d33d50e0b7e6bdfbc2f394062de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ae:84:1e:84:5e:35:f1:41:36:24:14:3d:7e:
44:10:26:19:1d:a3:93:66:cc:3f:2e:70:f9:ac:2f:
db:ee:6f:3d:46:72:20:88:cd:b8:50:57:0e:76:67:
85:0c:7f:39:1e:58:55:39:93:c8:90:ef:1e:96:0b:
f1:63:21:41:15:8a:d6:cc:18:23:e5:ee:a3:ee:3f:
a3:5e:4a:ec:a3:86:8d:53:bf:e5:e5:44:bc:9a:b4:
ea:e1:21:94:31:c2:a0:67:95:a7:d1:3c:03:f1:74:
f0:61:60:42:af:b4:dc:81:28:c8:5a:ef:44:5a:fc:
8b:a5:e8:71:c4:c4:b2:a4:91:4a:56:7a:af:dd:82:
b7:a9:5b:f5:28:62:ab:30:e3:77:0c:8e:17:8c:a0:
68:79:77:e8:0e:be:59:77:95:d4:01:4b:98:a8:ec:
f4:97:54:4d:86:85:47:c7:ed:1f:33:38:40:69:e6:
60:e4:0f:a1:5f:9d:69:58:ee:8c:fb:d8:1a:8d:67:
cb:9a:89:1a:73:51:ed:ca:d1:6c:f4:ac:ad:72:fc:
c4:23:2d:a0:f2:bb:9a:c0:32:bf:d0:ab:ed:1b:5e:
ee:7f:2c:15:09:1f:7e:f1:52:75:71:9e:2c:ff:52:
8b:b8:e1:db:e8:a1:93:5e:6b:5e:2f:66:6b:17:11:
fa:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F7:1F:25:F6:BA:5D:33:D5:0E:0B:7E:6B:DF:BC:2F:39:40:62:DE
X509v3 Authority Key Identifier:
keyid:B5:44:9B:08:EA:6A:26:7D:F7:36:6A:68:95:C7:C9:24:C2:F1:92:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUSbCOpqJn33NmpolcfJJMLxkm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/6c0b54-b06e-4d44-8120-370b8688feaf/1/tUSbCOpqJn33NmpolcfJJMLxkm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:02:9d:63:4a:3a:47:40:97:0f:32:b0:ff:7d:e5:67:ff:d6:
6f:0e:b8:c8:3f:ac:d7:92:c6:d8:9c:14:4a:76:8d:6f:25:43:
2f:8e:ea:f2:fb:cc:46:9a:7d:38:47:3c:3e:4c:7a:f0:6e:a4:
66:d8:82:2f:08:61:29:f4:8b:c1:7c:01:62:43:8d:a6:f5:d7:
0f:01:a0:db:c6:0b:c6:37:d0:c7:77:eb:e0:42:0f:09:2c:eb:
55:49:6e:d3:b7:4e:8b:ec:ab:0a:0b:1f:67:07:eb:b3:d7:d8:
0d:52:bd:74:69:8b:7c:6f:f0:fc:b3:b3:ab:e0:d2:58:13:00:
c0:b8:66:bf:15:af:04:32:8e:cc:24:c8:5c:7e:31:3e:ae:a5:
81:f9:90:8b:09:ec:b5:16:74:6d:54:9d:08:2d:29:bb:2f:29:
d2:03:74:74:81:76:f9:64:2c:3e:5d:7a:a3:56:97:ad:1d:60:
fb:95:4e:9d:a2:46:0b:6f:0d:65:71:84:2b:fd:ed:df:e7:c4:
71:c5:63:f8:0d:66:f7:c1:c3:b8:78:d1:ab:24:9c:f8:b2:d2:
ed:fe:f4:56:25:7c:32:6e:91:c4:f1:34:09:15:ed:0e:81:0f:
b3:6b:6c:4b:84:ce:0e:7a:21:dc:ea:88:f6:33:e5:0c:c9:37:
87:76:31:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZFjXyPwfhrEWhJhGW2ncxgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NDQ5YjA4ZWE2YTI2N2RmNzM2NmE2ODk1YzdjOTI0YzJm
MTkyNmQwHhcNMjUwNDE3MjEwMDIyWhcNMjUwNDE4MjEwMDIyWjAzMTEwLwYDVQQD
EygzN2Y3MWYyNWY2YmE1ZDMzZDUwZTBiN2U2YmRmYmMyZjM5NDA2MmRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjq6EHoReNfFBNiQUPX5EECYZHaOT
Zsw/LnD5rC/b7m89RnIgiM24UFcOdmeFDH85HlhVOZPIkO8elgvxYyFBFYrWzBgj
5e6j7j+jXkrso4aNU7/l5US8mrTq4SGUMcKgZ5Wn0TwD8XTwYWBCr7TcgSjIWu9E
WvyLpehxxMSypJFKVnqv3YK3qVv1KGKrMON3DI4XjKBoeXfoDr5Zd5XUAUuYqOz0
l1RNhoVHx+0fMzhAaeZg5A+hX51pWO6M+9gajWfLmokac1HtytFs9KytcvzEIy2g
8ruawDK/0KvtG17ufywVCR9+8VJ1cZ4s/1KLuOHb6KGTXmteL2ZrFxH6EwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDf3HyX2ul0z1Q4LfmvfvC85QGLeMB8GA1UdIwQY
MBaAFLVEmwjqaiZ99zZqaJXHySTC8ZJtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFVTYkNPcHFKbjMzTm1wb2xjZkpKTUx4a20wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy82YzBiNTQtYjA2ZS00ZDQ0LTgxMjAt
MzcwYjg2ODhmZWFmLzEvdFVTYkNPcHFKbjMzTm1wb2xjZkpKTUx4a20wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy82YzBiNTQtYjA2ZS00ZDQ0LTgxMjAtMzcwYjg2ODhmZWFm
LzEvdFVTYkNPcHFKbjMzTm1wb2xjZkpKTUx4a20wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACAKdY0o6
R0CXDzKw/33lZ//Wbw64yD+s15LG2JwUSnaNbyVDL47q8vvMRpp9OEc8Pkx68G6k
ZtiCLwhhKfSLwXwBYkONpvXXDwGg28YLxjfQx3fr4EIPCSzrVUlu07dOi+yrCgsf
Zwfrs9fYDVK9dGmLfG/w/LOzq+DSWBMAwLhmvxWvBDKOzCTIXH4xPq6lgfmQiwns
tRZ0bVSdCC0puy8p0gN0dIF2+WQsPl16o1aXrR1g+5VOnaJGC28NZXGEK/3t3+fE
ccVj+A1m98HDuHjRqySc+LLS7f70ViV8Mm6RxPE0CRXtDoEPs2tsS4TODnoh3OqI
9jPlDMk3h3YxNg==
-----END CERTIFICATE-----
Generated at Fri Apr 18 02:08:35 2025 by rpki-client