Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
File: r9I8xVrurzN-23Pq4ltZCXoneEw.mft (raw, json)
Hash identifier: 3S5rBp30FS+rAzXr3lovMjb4lh/vOgslbl9eLdElNqU=
Subject key identifier: C9:6F:BF:46:FA:E3:F6:FD:72:77:D1:10:7E:F1:79:AD:E9:B6:FE:2D
Authority key identifier: AF:D2:3C:C5:5A:EE:AF:33:7E:DB:73:EA:E2:5B:59:09:7A:27:78:4C
Certificate issuer: /CN=afd23cc55aeeaf337edb73eae25b59097a27784c
Certificate serial: 01965ACBEF4FD303C7F7D35E2C0F853D50D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
Manifest number: 14FF
Signing time: Tue 22 Apr 2025 00:00:36 +0000
Manifest this update: Tue 22 Apr 2025 00:00:36 +0000
Manifest next update: Wed 23 Apr 2025 00:00:36 +0000
Files and hashes: 1: lHwTYMLdPppQjIGCxxbbE7ChdPI.roa (hash: AdFGp8oSyfut37qs3XRrjrGdC0sy7qxul+fWrYsyUd8=)
2: r9I8xVrurzN-23Pq4ltZCXoneEw.crl (hash: A5WhCN6CtgUZ1HOFT57xYkfsLRxBXKrlLgq9Vpt828M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5a:cb:ef:4f:d3:03:c7:f7:d3:5e:2c:0f:85:3d:50:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afd23cc55aeeaf337edb73eae25b59097a27784c
Validity
Not Before: Apr 22 00:00:36 2025 GMT
Not After : Apr 23 00:00:36 2025 GMT
Subject: CN=c96fbf46fae3f6fd7277d1107ef179ade9b6fe2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cb:83:56:41:97:9c:c7:a3:16:0b:e1:29:8d:
63:18:14:d5:79:e1:22:fb:5f:0d:c7:d2:18:7c:e2:
28:78:f1:6f:86:fc:fa:7b:e5:96:55:fc:e9:d7:a8:
6f:6b:09:61:a1:88:7c:19:b5:ff:1c:10:c7:0b:e2:
31:43:8c:5f:71:e8:8b:d5:df:29:f1:b0:13:1f:9c:
e6:9f:e1:8e:5f:7e:45:4b:23:02:44:86:24:df:a3:
12:87:63:7e:e9:1e:3d:bf:e0:22:37:46:04:c1:90:
61:7e:d8:75:63:a4:60:d0:4c:26:96:28:22:93:8e:
63:9b:41:66:0b:c2:85:f2:ed:71:3d:da:08:56:89:
8f:e8:ab:cb:b9:2b:dc:e1:39:58:4b:fa:d2:e7:de:
8e:0d:a6:cb:42:aa:56:71:d0:26:88:c7:8c:ae:c4:
bf:b1:a1:bf:4a:b9:60:e9:3b:9b:e0:88:6b:00:e2:
69:a9:c3:78:ea:b5:1c:54:ac:1a:72:af:02:5d:6e:
3d:ea:c7:04:8c:00:8d:dc:f6:42:2c:74:56:77:ea:
79:a4:25:18:74:d4:d2:72:d1:eb:90:aa:02:06:d1:
a2:1d:44:e9:57:7b:bc:ef:73:4f:21:61:e1:db:3c:
42:bc:ca:e0:5b:ef:ea:67:26:32:5b:18:9b:cc:ad:
f5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:6F:BF:46:FA:E3:F6:FD:72:77:D1:10:7E:F1:79:AD:E9:B6:FE:2D
X509v3 Authority Key Identifier:
keyid:AF:D2:3C:C5:5A:EE:AF:33:7E:DB:73:EA:E2:5B:59:09:7A:27:78:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r9I8xVrurzN-23Pq4ltZCXoneEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/53f458-761a-4382-827c-494f08c21497/1/r9I8xVrurzN-23Pq4ltZCXoneEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:c1:29:2f:89:09:89:36:26:f5:20:dc:f1:28:0d:c3:63:85:
c5:ee:0a:46:a7:6a:dd:2f:67:87:a4:a7:68:fa:e3:69:d5:27:
32:c6:74:64:b3:1c:e8:7e:f2:e5:22:c5:f4:f0:90:a2:b0:0a:
43:71:8b:c9:09:05:50:30:49:e4:32:f8:95:9a:07:4d:78:4f:
f3:c4:93:58:7d:ea:6c:3c:93:13:c8:e4:71:ae:56:72:ae:af:
d2:e8:9e:9e:c8:7d:be:a6:26:77:63:2b:70:dd:ca:da:21:fe:
21:d3:d0:91:16:2e:eb:c7:ff:68:c6:8f:4c:fe:92:d8:df:45:
53:75:2e:b4:e6:4b:fa:91:25:51:a6:a0:c7:26:09:07:00:ae:
1c:48:cc:ae:de:fc:81:90:68:3e:1e:2a:54:97:dc:d8:63:26:
94:d7:20:b6:81:f5:91:5a:3f:37:65:96:9a:dd:cc:32:4a:30:
d0:53:cf:3c:dc:47:8a:92:88:8c:04:60:64:3e:cd:0d:06:35:
2d:84:11:1a:7c:08:85:ab:da:bf:93:19:3b:02:7f:9d:56:fa:
cc:5c:8f:74:bc:5e:97:38:e2:49:7c:98:28:e9:0d:18:2f:c9:
70:78:df:0b:89:4b:9a:b7:af:bf:86:67:82:5a:7c:4e:b5:1f:
ee:20:4d:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZay+9P0wPH99NeLA+FPVDZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmZDIzY2M1NWFlZWFmMzM3ZWRiNzNlYWUyNWI1OTA5N2Ey
Nzc4NGMwHhcNMjUwNDIyMDAwMDM2WhcNMjUwNDIzMDAwMDM2WjAzMTEwLwYDVQQD
EyhjOTZmYmY0NmZhZTNmNmZkNzI3N2QxMTA3ZWYxNzlhZGU5YjZmZTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwcuDVkGXnMejFgvhKY1jGBTVeeEi
+18Nx9IYfOIoePFvhvz6e+WWVfzp16hvawlhoYh8GbX/HBDHC+IxQ4xfceiL1d8p
8bATH5zmn+GOX35FSyMCRIYk36MSh2N+6R49v+AiN0YEwZBhfth1Y6Rg0Ewmligi
k45jm0FmC8KF8u1xPdoIVomP6KvLuSvc4TlYS/rS596ODabLQqpWcdAmiMeMrsS/
saG/Srlg6Tub4IhrAOJpqcN46rUcVKwacq8CXW496scEjACN3PZCLHRWd+p5pCUY
dNTSctHrkKoCBtGiHUTpV3u873NPIWHh2zxCvMrgW+/qZyYyWxibzK31YwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMlvv0b64/b9cnfREH7xea3ptv4tMB8GA1UdIwQY
MBaAFK/SPMVa7q8zfttz6uJbWQl6J3hMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjlJOHhWcnVyek4tMjNQcTRsdFpDWG9uZUV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy81M2Y0NTgtNzYxYS00MzgyLTgyN2Mt
NDk0ZjA4YzIxNDk3LzEvcjlJOHhWcnVyek4tMjNQcTRsdFpDWG9uZUV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy81M2Y0NTgtNzYxYS00MzgyLTgyN2MtNDk0ZjA4YzIxNDk3
LzEvcjlJOHhWcnVyek4tMjNQcTRsdFpDWG9uZUV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB8EpL4kJ
iTYm9SDc8SgNw2OFxe4KRqdq3S9nh6SnaPrjadUnMsZ0ZLMc6H7y5SLF9PCQorAK
Q3GLyQkFUDBJ5DL4lZoHTXhP88STWH3qbDyTE8jkca5Wcq6v0uiensh9vqYmd2Mr
cN3K2iH+IdPQkRYu68f/aMaPTP6S2N9FU3UutOZL+pElUaagxyYJBwCuHEjMrt78
gZBoPh4qVJfc2GMmlNcgtoH1kVo/N2WWmt3MMkow0FPPPNxHipKIjARgZD7NDQY1
LYQRGnwIhavav5MZOwJ/nVb6zFyPdLxelzjiSXyYKOkNGC/JcHjfC4lLmrevv4Zn
glp8TrUf7iBN2Q==
-----END CERTIFICATE-----
Generated at Tue Apr 22 01:43:39 2025 by rpki-client