Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft
File: sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft (raw, json)
Hash identifier: NDUUw5xMu95dfDhHlGGghkm/DhKDPqA3j8uhA9PxoFk=
Subject key identifier: D7:5A:C7:76:50:28:67:CE:D5:2E:1F:70:F7:8F:AF:B1:94:EB:40:9F
Authority key identifier: B3:12:DB:95:DF:C3:B3:13:95:E0:EC:B5:FF:26:21:2D:79:8D:E8:34
Certificate issuer: /CN=b312db95dfc3b31395e0ecb5ff26212d798de834
Certificate serial: 01962ABCA78698BAFB4DBF62AF3EEF66B3F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft
Manifest number: 128C
Signing time: Sat 12 Apr 2025 16:02:08 +0000
Manifest this update: Sat 12 Apr 2025 16:02:08 +0000
Manifest next update: Sun 13 Apr 2025 16:02:08 +0000
Files and hashes: 1: nYyst-VXzn3xSdM3Fb9jRPKd5O0.roa (hash: utz/hKliLWf+w0YBiWTvZl5n+Jt5jKsuYbG8pQFD4oQ=)
2: sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl (hash: Zp7DCTNs3UaTySoyWgQzvmPzuInGc5xF3VkptGEW9Hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2a:bc:a7:86:98:ba:fb:4d:bf:62:af:3e:ef:66:b3:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b312db95dfc3b31395e0ecb5ff26212d798de834
Validity
Not Before: Apr 12 16:02:08 2025 GMT
Not After : Apr 13 16:02:08 2025 GMT
Subject: CN=d75ac776502867ced52e1f70f78fafb194eb409f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4c:00:f7:d5:f4:c8:b5:f0:64:5a:ba:93:2d:
89:70:27:ac:e6:dd:b0:75:63:cc:39:ea:1c:5a:cd:
73:c0:5c:4d:a0:98:ab:74:b8:40:c5:3c:b8:54:54:
56:f6:09:40:a1:74:f2:ef:d3:76:32:cd:ec:41:b5:
bd:2d:90:20:fa:30:8f:ac:b8:f2:4f:7a:ef:19:d0:
3c:1c:05:21:71:6f:7e:86:53:f9:f6:1e:20:5c:55:
a9:72:34:a7:b5:14:9d:c8:ff:95:74:0c:d5:71:56:
52:55:04:5e:5f:e9:95:b5:22:ec:05:81:df:a9:1d:
73:1a:e2:29:8a:29:c7:a5:3f:ce:0d:4c:b8:63:45:
93:5e:49:9b:08:89:cb:f1:66:7c:ed:ea:45:7d:43:
f0:7c:56:e6:cf:94:1c:d2:6c:3a:94:14:0d:4f:49:
dd:9b:8b:51:d4:23:4d:95:9f:96:ab:70:6a:4f:46:
b5:e2:e6:30:66:d3:14:20:9c:12:1d:ae:15:79:a2:
88:12:02:4f:8d:ba:64:18:3c:47:42:78:15:f8:23:
86:d1:40:c3:6a:37:92:29:52:1a:01:81:29:f0:4c:
c3:7e:5e:7d:2b:1f:63:59:48:db:c7:03:18:83:ca:
bb:6d:da:98:74:74:2f:86:9a:e5:98:6b:29:cd:86:
4c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:5A:C7:76:50:28:67:CE:D5:2E:1F:70:F7:8F:AF:B1:94:EB:40:9F
X509v3 Authority Key Identifier:
keyid:B3:12:DB:95:DF:C3:B3:13:95:E0:EC:B5:FF:26:21:2D:79:8D:E8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:22:f6:62:4c:ba:ad:6d:71:50:63:70:9c:68:a5:70:92:c8:
fa:b0:d9:84:e3:73:e9:9d:c3:8b:ae:db:a1:0a:d9:a7:a1:48:
47:de:9c:08:01:cc:63:38:85:cd:d4:3a:5f:b7:4b:5c:83:54:
d2:17:e6:20:df:4e:df:8e:f8:ec:85:9f:51:a8:53:b3:39:75:
3b:33:ad:d2:04:8e:80:4b:85:cb:dc:1c:6d:52:a3:16:bc:84:
1d:90:e2:6b:0a:87:48:28:48:2f:85:b5:f8:f9:e6:45:c2:51:
cf:a5:68:95:81:d8:1c:92:56:94:40:5f:95:d6:2e:ee:de:f2:
c7:dc:07:98:3d:50:88:02:c9:c8:79:99:e3:5f:93:49:fc:38:
57:7e:7f:d7:61:61:48:fe:60:ff:8e:36:0c:c9:70:19:a3:2b:
17:8c:c8:b8:78:b3:fc:ca:ac:8c:c5:e2:64:da:a4:3f:36:e0:
8f:36:91:47:dd:bc:12:12:c5:65:62:f5:85:1b:0d:76:f6:2c:
12:a8:c4:1f:56:6c:bd:9b:77:f9:6b:fd:f8:cd:df:07:ae:73:
92:78:5c:fb:16:93:9b:5d:61:3b:b0:34:0e:2a:9b:6a:b7:1d:
31:f6:e5:3b:d4:69:a9:47:e0:9a:3e:ea:56:c5:59:3e:1f:dc:
05:16:9d:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYqvKeGmLr7Tb9irz7vZrPxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMTJkYjk1ZGZjM2IzMTM5NWUwZWNiNWZmMjYyMTJkNzk4
ZGU4MzQwHhcNMjUwNDEyMTYwMjA4WhcNMjUwNDEzMTYwMjA4WjAzMTEwLwYDVQQD
EyhkNzVhYzc3NjUwMjg2N2NlZDUyZTFmNzBmNzhmYWZiMTk0ZWI0MDlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkwA99X0yLXwZFq6ky2JcCes5t2w
dWPMOeocWs1zwFxNoJirdLhAxTy4VFRW9glAoXTy79N2Ms3sQbW9LZAg+jCPrLjy
T3rvGdA8HAUhcW9+hlP59h4gXFWpcjSntRSdyP+VdAzVcVZSVQReX+mVtSLsBYHf
qR1zGuIpiinHpT/ODUy4Y0WTXkmbCInL8WZ87epFfUPwfFbmz5Qc0mw6lBQNT0nd
m4tR1CNNlZ+Wq3BqT0a14uYwZtMUIJwSHa4VeaKIEgJPjbpkGDxHQngV+COG0UDD
ajeSKVIaAYEp8EzDfl59Kx9jWUjbxwMYg8q7bdqYdHQvhprlmGspzYZMZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNdax3ZQKGfO1S4fcPePr7GU60CfMB8GA1UdIwQY
MBaAFLMS25Xfw7MTleDstf8mIS15jeg0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3hMYmxkX0RzeE9WNE95MV95WWhMWG1ONkRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9jYmM1MGUtZmFlZi00M2VjLWJkYmEt
ZmRhNDcwYzYxZTA5LzEvc3hMYmxkX0RzeE9WNE95MV95WWhMWG1ONkRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS9jYmM1MGUtZmFlZi00M2VjLWJkYmEtZmRhNDcwYzYxZTA5
LzEvc3hMYmxkX0RzeE9WNE95MV95WWhMWG1ONkRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiCL2Yky6
rW1xUGNwnGilcJLI+rDZhONz6Z3Di67boQrZp6FIR96cCAHMYziFzdQ6X7dLXINU
0hfmIN9O34747IWfUahTszl1OzOt0gSOgEuFy9wcbVKjFryEHZDiawqHSChIL4W1
+PnmRcJRz6VolYHYHJJWlEBfldYu7t7yx9wHmD1QiALJyHmZ41+TSfw4V35/12Fh
SP5g/442DMlwGaMrF4zIuHiz/MqsjMXiZNqkPzbgjzaRR928EhLFZWL1hRsNdvYs
EqjEH1ZsvZt3+Wv9+M3fB65zknhc+xaTm11hO7A0DiqbarcdMfblO9RpqUfgmj7q
VsVZPh/cBRadrg==
-----END CERTIFICATE-----
Generated at Sat Apr 12 19:24:10 2025 by rpki-client