Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.mft
File: XTnRW9L8yEdxumqimqVEKLIc72A.mft (raw, json)
Hash identifier: zlJ071LiVWS4aQLWbShAy/sMS9L4KvldZ3S//EBW7TU=
Subject key identifier: 7C:B1:A9:E9:6C:8F:37:3A:8D:C1:F0:D6:66:16:25:F0:C2:47:9E:ED
Authority key identifier: 5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
Certificate issuer: /CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Certificate serial: 01958EF389C4E4623B6700274F6590F8D983
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.mft
Manifest number: 14C2
Signing time: Thu 13 Mar 2025 10:01:19 +0000
Manifest this update: Thu 13 Mar 2025 10:01:19 +0000
Manifest next update: Fri 14 Mar 2025 10:01:19 +0000
Files and hashes: 1: XTnRW9L8yEdxumqimqVEKLIc72A.crl (hash: +MRAnfMHazUfeGLENiBJJUFckiGjpA3/1rpJiOyYZ9U=)
2: ePJeWVTAdZT_Wr3OYR6GjKSITgU.roa (hash: klWWeDelEbUTnfh8FrnhieoEbxuIBTXbZQXnpDFAChk=)
3: f-vg02HpReXjcRCHCnuRFWno74c.roa (hash: NkCDR8DJVgOIturlqfX7bbNHy0aLhC+5p7VwdPkOrrQ=)
4: yMB3sTLlHGgzRzhu5Z0FSdJpMGA.roa (hash: CBdf1cYZj25l/4J6kJgnhiGt2UR1zv1wzzfHJdJTVR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:89:c4:e4:62:3b:67:00:27:4f:65:90:f8:d9:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Validity
Not Before: Mar 13 10:01:19 2025 GMT
Not After : Mar 14 10:01:19 2025 GMT
Subject: CN=7cb1a9e96c8f373a8dc1f0d6661625f0c2479eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ba:e4:e4:8f:d1:24:c2:f3:46:19:44:9f:de:
ed:1a:39:af:ec:c2:7e:2c:4f:5e:cb:f5:e1:b1:7e:
5c:a6:35:55:5f:e1:1b:cf:56:de:18:a0:08:81:ca:
47:d5:3c:63:2d:76:9d:d6:cc:f4:03:56:8f:a9:18:
d3:70:2f:99:fe:88:4e:ee:48:d6:b1:38:1b:54:d4:
6b:46:a5:8a:b4:4a:63:f1:3c:9a:c4:70:16:27:63:
95:7a:4a:a9:28:28:08:3b:ab:18:48:6b:80:b9:55:
1d:d4:ea:44:fc:89:35:1a:57:a8:01:e5:36:67:c7:
b2:8e:ea:17:31:8f:03:62:e3:cd:8b:e3:f5:9c:bc:
20:3d:70:ac:bf:c9:ce:f4:78:cc:80:c2:97:01:ae:
76:99:c2:be:91:de:5b:54:df:2b:82:28:89:57:d7:
47:45:34:4d:34:7e:d0:d9:6a:5c:be:e4:1b:82:10:
f7:25:50:6f:e3:f6:1d:50:41:d6:3a:25:7f:76:6a:
9d:9c:6c:20:c3:a4:82:5b:7b:8d:65:a6:b5:d5:e6:
38:62:a0:2e:7c:5f:60:3f:32:d6:21:13:64:27:17:
1f:8c:5e:ad:ca:9e:44:c3:bd:94:9a:34:9b:87:97:
64:b3:84:19:62:a4:fc:c6:ab:98:e2:b1:96:4f:70:
02:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:B1:A9:E9:6C:8F:37:3A:8D:C1:F0:D6:66:16:25:F0:C2:47:9E:ED
X509v3 Authority Key Identifier:
keyid:5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:db:2b:03:e0:d4:f5:fd:d4:13:26:41:7e:30:3d:69:10:11:
56:95:6d:3a:6c:cf:32:09:cd:0d:b9:6d:04:42:3b:c7:36:f8:
b9:c7:b4:3d:e3:df:5e:e3:59:a1:d0:6f:ab:1d:e2:98:83:f2:
0f:f8:3c:a6:67:dd:3f:86:35:11:6a:b8:73:ab:5f:9e:47:04:
36:0d:4b:41:93:fb:3a:7c:9d:e8:d9:3d:56:87:cc:9c:fb:ee:
98:ce:d2:89:d8:5d:9a:b3:84:77:bf:d3:b9:56:cf:8d:bb:ab:
0a:70:f1:3d:64:78:6a:78:c8:ba:82:7c:e7:e9:2f:e7:20:5b:
bb:13:dc:13:2b:af:d6:7c:c1:fc:f1:ed:63:b4:e6:20:49:76:
3f:4f:45:a8:78:07:ad:b6:81:17:5a:6a:00:cd:cc:bd:bb:63:
c4:e1:40:73:b6:ee:ba:c7:e4:9f:48:62:50:ae:eb:80:67:dc:
7e:5f:ed:71:a8:61:f1:4d:98:ac:f3:59:c6:4a:54:6c:d7:ba:
fd:1f:be:14:36:6c:e2:76:fb:d2:59:6c:0f:8c:2c:3c:ae:c7:
31:1d:58:23:7d:85:f8:a1:36:21:82:a7:2b:6d:cc:57:38:01:
33:6d:61:06:fe:a4:ff:be:d7:50:3e:b9:c9:f8:9f:ad:97:77:
8e:44:14:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWO84nE5GI7ZwAnT2WQ+NmDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkMzlkMTViZDJmY2M4NDc3MWJhNmFhMjlhYTU0NDI4YjIx
Y2VmNjAwHhcNMjUwMzEzMTAwMTE5WhcNMjUwMzE0MTAwMTE5WjAzMTEwLwYDVQQD
Eyg3Y2IxYTllOTZjOGYzNzNhOGRjMWYwZDY2NjE2MjVmMGMyNDc5ZWVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrrk5I/RJMLzRhlEn97tGjmv7MJ+
LE9ey/XhsX5cpjVVX+Ebz1beGKAIgcpH1TxjLXad1sz0A1aPqRjTcC+Z/ohO7kjW
sTgbVNRrRqWKtEpj8TyaxHAWJ2OVekqpKCgIO6sYSGuAuVUd1OpE/Ik1GleoAeU2
Z8eyjuoXMY8DYuPNi+P1nLwgPXCsv8nO9HjMgMKXAa52mcK+kd5bVN8rgiiJV9dH
RTRNNH7Q2WpcvuQbghD3JVBv4/YdUEHWOiV/dmqdnGwgw6SCW3uNZaa11eY4YqAu
fF9gPzLWIRNkJxcfjF6typ5Ew72UmjSbh5dks4QZYqT8xquY4rGWT3ACVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHyxqelsjzc6jcHw1mYWJfDCR57tMB8GA1UdIwQY
MBaAFF050VvS/MhHcbpqopqlRCiyHO9gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFRuUlc5TDh5RWR4dW1xaW1xVkVLTEljNzJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9jODA5MmUtOWY4Yy00NzE4LWI3NzAt
YzI5YjQ0ZGU1M2E4LzEvWFRuUlc5TDh5RWR4dW1xaW1xVkVLTEljNzJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9jODA5MmUtOWY4Yy00NzE4LWI3NzAtYzI5YjQ0ZGU1M2E4
LzEvWFRuUlc5TDh5RWR4dW1xaW1xVkVLTEljNzJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl9srA+DU
9f3UEyZBfjA9aRARVpVtOmzPMgnNDbltBEI7xzb4uce0PePfXuNZodBvqx3imIPy
D/g8pmfdP4Y1EWq4c6tfnkcENg1LQZP7Onyd6Nk9VofMnPvumM7SidhdmrOEd7/T
uVbPjburCnDxPWR4anjIuoJ85+kv5yBbuxPcEyuv1nzB/PHtY7TmIEl2P09FqHgH
rbaBF1pqAM3MvbtjxOFAc7buusfkn0hiUK7rgGfcfl/tcahh8U2YrPNZxkpUbNe6
/R++FDZs4nb70llsD4wsPK7HMR1YI32F+KE2IYKnK23MVzgBM21hBv6k/77XUD65
yfifrZd3jkQUUw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:02:40 2025 by rpki-client