Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft
File: U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft (raw, json)
Hash identifier: tvyjprm7Onf1koRdy/cUf9Ok31TwHxY8oPILVytc7A4=
Subject key identifier: CF:1A:75:01:EF:35:DA:BF:52:6F:37:A9:7B:D6:68:10:BC:4B:CC:B8
Authority key identifier: 53:53:A9:A8:5F:A1:1F:C4:BF:15:6F:AB:4D:8D:84:A0:8E:5D:66:F9
Certificate issuer: /CN=5353a9a85fa11fc4bf156fab4d8d84a08e5d66f9
Certificate serial: 01964DEC496106E7C9E953D61A5D45E40895
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1OpqF-hH8S_FW-rTY2EoI5dZvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft
Manifest number: 14FD
Signing time: Sat 19 Apr 2025 12:00:52 +0000
Manifest this update: Sat 19 Apr 2025 12:00:52 +0000
Manifest next update: Sun 20 Apr 2025 12:00:52 +0000
Files and hashes: 1: U1OpqF-hH8S_FW-rTY2EoI5dZvk.crl (hash: buULkDvKkyiAdol7FLtJOJVbMOUvTyNtlpPwX30+CJ8=)
2: fhzBsi8rU0jUB3-KHFWy_MPxr3s.roa (hash: +sQEtymDtkukDBlTZusUXGi5sWkBAEA4spvgFTkKSlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1OpqF-hH8S_FW-rTY2EoI5dZvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:49:61:06:e7:c9:e9:53:d6:1a:5d:45:e4:08:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5353a9a85fa11fc4bf156fab4d8d84a08e5d66f9
Validity
Not Before: Apr 19 12:00:52 2025 GMT
Not After : Apr 20 12:00:52 2025 GMT
Subject: CN=cf1a7501ef35dabf526f37a97bd66810bc4bccb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:64:1d:ed:49:f5:5a:45:06:b1:55:b1:9a:ca:
ae:80:04:be:88:aa:ab:de:b3:27:23:1a:3d:c9:c9:
88:bd:99:29:35:f4:c5:60:a0:0a:bf:6b:04:81:48:
4f:96:2a:ca:a9:13:9d:d5:03:3e:12:bf:38:4a:74:
78:64:c2:61:c7:e1:3c:ec:d4:6c:c6:ca:f5:3f:56:
a5:16:56:e1:2a:48:a2:a6:43:e8:b9:7b:2c:08:ae:
d9:c4:1c:88:c0:fb:5e:80:13:8d:e8:26:7f:17:73:
f1:56:47:33:a2:86:c7:c3:05:45:73:c9:5e:ca:a9:
61:9c:d7:02:8a:22:c9:89:ac:52:df:61:f0:64:f6:
18:6c:ec:ce:8f:ef:b7:58:fb:62:8c:2d:6d:43:d4:
96:93:c4:a9:85:1b:bd:9f:09:e2:0b:27:9f:76:35:
c0:fb:e5:ca:c6:49:b5:3d:1a:c1:98:03:1c:6c:3b:
40:07:fb:87:65:c5:7e:8f:3d:2b:07:cd:4c:3c:3f:
96:7e:9e:e6:f1:23:f4:ca:81:89:d0:80:c9:f8:e3:
22:75:2f:4b:ef:05:88:6a:91:04:ac:d7:fc:d1:78:
ed:ab:45:61:b6:70:cb:46:d3:0f:c8:82:d3:f2:ac:
22:d9:a3:aa:bc:bd:dc:2b:62:c2:03:93:72:46:a8:
c4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1A:75:01:EF:35:DA:BF:52:6F:37:A9:7B:D6:68:10:BC:4B:CC:B8
X509v3 Authority Key Identifier:
keyid:53:53:A9:A8:5F:A1:1F:C4:BF:15:6F:AB:4D:8D:84:A0:8E:5D:66:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1OpqF-hH8S_FW-rTY2EoI5dZvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:1c:91:cf:07:c3:d5:72:3c:70:a2:a7:1e:e3:45:81:da:2b:
b1:23:88:ba:ae:57:63:dd:a7:77:6a:94:35:0a:83:a3:2f:d3:
ff:6a:63:bd:94:2c:ea:b3:ed:09:83:f4:ba:73:12:6d:13:29:
5c:d0:cf:78:1f:30:79:30:e6:6a:6d:31:4c:70:bd:49:63:29:
7a:09:03:67:fd:c0:43:a5:7e:92:ed:3a:f6:f2:0c:90:59:b4:
83:a7:51:ee:f1:3e:af:44:a3:9a:80:86:ad:71:ee:59:08:c7:
bd:77:f8:d7:56:a2:dc:89:98:85:41:ea:2f:a9:23:73:3b:6e:
3c:d2:8c:4e:97:80:21:3a:35:c2:23:c1:a0:70:56:ef:ae:cd:
fc:9b:08:72:90:e5:1d:ec:dc:1b:c9:03:9f:34:19:3b:63:23:
98:ef:87:b2:a3:18:5d:bc:5a:8c:95:da:45:83:81:44:65:e8:
a1:71:e5:b1:97:ed:89:55:7f:0f:7e:87:18:a9:58:15:a5:a7:
99:60:52:5f:3b:05:b1:32:4d:e8:78:24:7c:5f:7f:b0:c8:8c:
e9:6f:18:85:fc:ec:6b:fc:6b:ab:ce:23:11:ef:d2:30:07:80:
6a:c9:b2:4f:65:70:56:07:5d:00:1e:5c:9f:ba:b0:43:a6:27:
36:34:1f:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZN7ElhBufJ6VPWGl1F5AiVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzNTNhOWE4NWZhMTFmYzRiZjE1NmZhYjRkOGQ4NGEwOGU1
ZDY2ZjkwHhcNMjUwNDE5MTIwMDUyWhcNMjUwNDIwMTIwMDUyWjAzMTEwLwYDVQQD
EyhjZjFhNzUwMWVmMzVkYWJmNTI2ZjM3YTk3YmQ2NjgxMGJjNGJjY2I4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjGQd7Un1WkUGsVWxmsqugAS+iKqr
3rMnIxo9ycmIvZkpNfTFYKAKv2sEgUhPlirKqROd1QM+Er84SnR4ZMJhx+E87NRs
xsr1P1alFlbhKkiipkPouXssCK7ZxByIwPtegBON6CZ/F3PxVkczoobHwwVFc8le
yqlhnNcCiiLJiaxS32HwZPYYbOzOj++3WPtijC1tQ9SWk8SphRu9nwniCyefdjXA
++XKxkm1PRrBmAMcbDtAB/uHZcV+jz0rB81MPD+Wfp7m8SP0yoGJ0IDJ+OMidS9L
7wWIapEErNf80Xjtq0VhtnDLRtMPyILT8qwi2aOqvL3cK2LCA5NyRqjE1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM8adQHvNdq/Um83qXvWaBC8S8y4MB8GA1UdIwQY
MBaAFFNTqahfoR/EvxVvq02NhKCOXWb5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTFPcHFGLWhIOFNfRlctclRZMkVvSTVkWnZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC9iOTI5Y2UtZWMxNy00ZDUwLWE2YWUt
NzlkOTM0ZTRhOTlhLzEvVTFPcHFGLWhIOFNfRlctclRZMkVvSTVkWnZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC9iOTI5Y2UtZWMxNy00ZDUwLWE2YWUtNzlkOTM0ZTRhOTlh
LzEvVTFPcHFGLWhIOFNfRlctclRZMkVvSTVkWnZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANByRzwfD
1XI8cKKnHuNFgdorsSOIuq5XY92nd2qUNQqDoy/T/2pjvZQs6rPtCYP0unMSbRMp
XNDPeB8weTDmam0xTHC9SWMpegkDZ/3AQ6V+ku069vIMkFm0g6dR7vE+r0SjmoCG
rXHuWQjHvXf411ai3ImYhUHqL6kjcztuPNKMTpeAITo1wiPBoHBW767N/JsIcpDl
HezcG8kDnzQZO2MjmO+HsqMYXbxajJXaRYOBRGXooXHlsZftiVV/D36HGKlYFaWn
mWBSXzsFsTJN6HgkfF9/sMiM6W8Yhfzsa/xrq84jEe/SMAeAasmyT2VwVgddAB5c
n7qwQ6YnNjQfsA==
-----END CERTIFICATE-----
Generated at Sat Apr 19 15:03:04 2025 by rpki-client