Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json)
Hash identifier: 9wjd/KC/qTKh1WcmQ0J/jGoBdri17LMSFyFv8zzlvk0=
Subject key identifier: 68:C1:96:EC:40:B5:62:85:81:D3:C2:34:67:20:38:42:F7:21:D2:CE
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 01962A1715890010973B75A487F2B4DB62AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
Manifest number: 0E92
Signing time: Sat 12 Apr 2025 13:01:18 +0000
Manifest this update: Sat 12 Apr 2025 13:01:18 +0000
Manifest next update: Sun 13 Apr 2025 13:01:18 +0000
Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: PToKOUs80vJcdPqlF7oQVXTl/gjjy8oheS7rs2A2Bto=)
2: BBc69UDcCnvJ9YXOkYKIegaNiDE.roa (hash: u/teCtCSqk7whi20Ul6NWhHZ26QmJCDD43T9Guz4eqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 13:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2a:17:15:89:00:10:97:3b:75:a4:87:f2:b4:db:62:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: Apr 12 13:01:18 2025 GMT
Not After : Apr 13 13:01:18 2025 GMT
Subject: CN=68c196ec40b5628581d3c23467203842f721d2ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bf:fe:c9:c7:d9:21:60:29:43:d0:34:2d:18:
13:a3:e5:c6:bc:69:2f:d9:be:11:e2:b7:5d:dd:67:
7a:90:99:a8:f6:82:5b:dd:c5:e5:c3:43:cc:cf:c5:
31:5f:58:e0:bb:64:4d:a4:7b:4e:9d:23:66:45:91:
af:1a:70:53:f4:3e:70:90:7b:0e:77:65:e8:f9:34:
8a:27:50:e0:cc:d9:66:03:5e:a2:4c:5c:3a:ee:fb:
7c:70:85:9a:89:8d:87:fb:d1:5a:86:9b:68:8e:b7:
e4:92:66:7b:5c:e7:90:c1:67:01:21:02:93:14:4a:
1d:99:37:61:4e:0f:e8:f9:58:7a:22:7a:63:9e:7e:
ab:16:48:0e:b6:53:f6:f2:1a:07:84:2e:38:97:c1:
a6:0d:72:78:73:2f:48:ac:92:a3:97:ef:21:8c:f4:
98:1e:0c:a9:ac:b8:0b:ee:7c:8c:ef:c8:7f:c1:8e:
91:9b:f3:0d:2c:2b:cb:f4:62:f0:42:ac:9c:b7:a3:
72:6e:d8:61:3e:e3:11:3c:89:8b:67:7b:4a:5e:cc:
ca:e1:24:51:65:d0:f5:5e:54:be:1b:29:a0:06:4f:
e3:54:af:73:ea:f6:f0:53:fe:da:d3:53:d5:70:4a:
9f:3c:b3:e2:a6:13:a3:26:c6:ee:b0:ff:57:2f:d2:
c7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C1:96:EC:40:B5:62:85:81:D3:C2:34:67:20:38:42:F7:21:D2:CE
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:99:dd:29:6e:2f:ca:88:d7:8d:da:8c:86:f3:2d:a0:17:c8:
dc:b3:2d:91:ab:3b:e8:0a:8c:68:c2:70:02:5c:88:68:44:d2:
fb:86:e5:7d:5a:a1:97:7c:41:4c:15:14:8c:58:46:09:ed:f6:
a5:09:77:79:b5:73:01:5f:30:e1:41:f1:d2:3e:61:93:b8:19:
06:c2:e3:73:ae:b5:f5:f5:ea:aa:36:c3:77:5e:0c:47:25:8b:
2e:ec:86:34:1c:13:6b:dc:5d:8a:43:6a:0e:45:74:cf:3d:84:
df:1a:79:05:73:63:54:7e:f0:17:73:92:a5:e5:9c:ec:52:b7:
74:a5:e8:62:77:e3:bc:ad:0e:a9:d1:39:32:96:ed:f8:26:13:
d4:98:04:b6:10:b0:79:7e:d1:8a:93:38:1b:fb:bd:4c:6a:c8:
ce:94:93:20:fa:a4:01:be:a0:e6:de:b2:0d:7d:17:79:e9:7c:
f2:3e:aa:66:79:07:52:6f:7c:c4:7e:c2:0b:09:a9:53:91:4a:
da:e8:93:35:79:de:e8:fb:f3:2e:e5:ca:0e:25:b4:fb:a6:8e:
2b:de:cc:84:7d:e7:47:d4:7f:b9:89:e6:88:33:45:2c:67:75:
00:76:04:ec:ae:88:c1:a2:09:cf:d1:de:d6:ee:21:fe:7f:66:
f7:31:63:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYqFxWJABCXO3Wkh/K022KqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NGQzZTVkOTk0YmVjZDNmMjU4YzQxZGYzOWYxZjYzZWM1
NjNlMWQwHhcNMjUwNDEyMTMwMTE4WhcNMjUwNDEzMTMwMTE4WjAzMTEwLwYDVQQD
Eyg2OGMxOTZlYzQwYjU2Mjg1ODFkM2MyMzQ2NzIwMzg0MmY3MjFkMmNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7/+ycfZIWApQ9A0LRgTo+XGvGkv
2b4R4rdd3Wd6kJmo9oJb3cXlw0PMz8UxX1jgu2RNpHtOnSNmRZGvGnBT9D5wkHsO
d2Xo+TSKJ1DgzNlmA16iTFw67vt8cIWaiY2H+9FahptojrfkkmZ7XOeQwWcBIQKT
FEodmTdhTg/o+Vh6Inpjnn6rFkgOtlP28hoHhC44l8GmDXJ4cy9IrJKjl+8hjPSY
HgyprLgL7nyM78h/wY6Rm/MNLCvL9GLwQqyct6NybthhPuMRPImLZ3tKXszK4SRR
ZdD1XlS+GymgBk/jVK9z6vbwU/7a01PVcEqfPLPiphOjJsbusP9XL9LHbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGjBluxAtWKFgdPCNGcgOEL3IdLOMB8GA1UdIwQY
MBaAFOdNPl2ZS+zT8ljEHfOfH2PsVj4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTAwLVhabEw3TlB5V01RZDg1OGZZLXhXUGgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC80MmUyNGMtMjFmNS00NDFmLWI2YmMt
YzIzZDdhZGJlYmRjLzEvNTAwLVhabEw3TlB5V01RZDg1OGZZLXhXUGgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC80MmUyNGMtMjFmNS00NDFmLWI2YmMtYzIzZDdhZGJlYmRj
LzEvNTAwLVhabEw3TlB5V01RZDg1OGZZLXhXUGgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALZndKW4v
yojXjdqMhvMtoBfI3LMtkas76AqMaMJwAlyIaETS+4blfVqhl3xBTBUUjFhGCe32
pQl3ebVzAV8w4UHx0j5hk7gZBsLjc6619fXqqjbDd14MRyWLLuyGNBwTa9xdikNq
DkV0zz2E3xp5BXNjVH7wF3OSpeWc7FK3dKXoYnfjvK0OqdE5Mpbt+CYT1JgEthCw
eX7RipM4G/u9TGrIzpSTIPqkAb6g5t6yDX0Xeel88j6qZnkHUm98xH7CCwmpU5FK
2uiTNXne6PvzLuXKDiW0+6aOK97MhH3nR9R/uYnmiDNFLGd1AHYE7K6IwaIJz9He
1u4h/n9m9zFjAA==
-----END CERTIFICATE-----
Generated at Sat Apr 12 18:19:35 2025 by rpki-client