Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
File: N5fgOfAlolqm6ZI5HZJCYGmbpns.mft (raw, json)
Hash identifier: 5UE1swQDgUVN8G50SUX/R8sifyKCD8mJTVNAh3ZSPUU=
Subject key identifier: A8:1B:76:9F:20:D0:47:6A:B6:CA:3D:4E:CC:AE:4B:36:A2:6F:AC:0E
Authority key identifier: 37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B
Certificate issuer: /CN=3797e039f025a25aa6e992391d924260699ba67b
Certificate serial: 01964AEB172291C96AAE65E10052848B5C29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
Manifest number: 0E73
Signing time: Fri 18 Apr 2025 22:00:42 +0000
Manifest this update: Fri 18 Apr 2025 22:00:42 +0000
Manifest next update: Sat 19 Apr 2025 22:00:42 +0000
Files and hashes: 1: N5fgOfAlolqm6ZI5HZJCYGmbpns.crl (hash: HozD0l5iSzoCk6rg0Dzza5yWT7MfXjkSVBWqcf+cHnI=)
2: sVzqlUVXrHqVsVw4yhzSu1oYIjM.roa (hash: HaD8do3X9duYtx96VIyzNjLwjQlO2MrTlBSjfqbB5ec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 22:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:eb:17:22:91:c9:6a:ae:65:e1:00:52:84:8b:5c:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3797e039f025a25aa6e992391d924260699ba67b
Validity
Not Before: Apr 18 22:00:42 2025 GMT
Not After : Apr 19 22:00:42 2025 GMT
Subject: CN=a81b769f20d0476ab6ca3d4eccae4b36a26fac0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:15:9f:bd:61:a2:93:36:1c:f4:28:04:25:5e:
44:42:1c:99:3a:d1:ce:8f:d6:22:e0:ba:89:02:df:
96:95:1a:3d:78:1e:2d:b7:6a:94:70:69:d4:20:25:
95:37:69:a7:22:61:db:29:3d:b9:1f:2a:6a:6c:bf:
71:ac:08:80:fa:dd:ac:63:56:ee:36:a6:51:3c:63:
a5:e4:d0:b2:2c:91:5f:a6:1e:79:b0:2d:ce:1a:e8:
e6:7b:9b:f4:9b:39:3a:60:30:5e:b9:93:3c:28:a8:
39:9e:7e:6b:e2:af:c7:55:7d:ab:81:06:82:4f:45:
15:b3:84:32:f0:38:d0:db:25:fa:cd:48:e2:ca:86:
7c:84:15:3c:f0:18:19:77:c8:03:55:72:c0:92:af:
01:2e:60:cc:19:2b:76:57:fa:08:db:c5:b7:72:8e:
70:73:20:70:d0:6b:db:89:1e:e1:9f:26:c0:32:e3:
ef:9b:ce:b8:3d:a4:2e:0c:b4:91:7c:e3:33:66:53:
91:33:ed:ed:bf:36:2b:22:d5:44:66:e0:09:fc:4d:
07:7a:97:ff:63:09:0d:46:57:ed:4b:e8:2b:e8:9a:
54:09:f0:57:60:ef:5e:c4:83:86:82:b6:e9:1c:1f:
b1:95:cb:8f:17:f6:9d:b0:82:32:2b:0c:b5:3d:96:
9d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:1B:76:9F:20:D0:47:6A:B6:CA:3D:4E:CC:AE:4B:36:A2:6F:AC:0E
X509v3 Authority Key Identifier:
keyid:37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:78:ba:63:f8:ec:2f:47:a6:d0:f8:2a:7e:ce:d1:79:01:85:
34:cf:d2:88:12:6e:2a:de:37:c5:20:84:03:d7:9b:2d:7f:3f:
77:a2:fc:8a:e8:a2:c6:17:90:77:d2:c3:f5:97:1f:77:fc:57:
29:c5:e7:52:b2:9f:d1:ee:38:34:9b:83:30:9e:03:d8:16:4f:
84:ea:ca:5f:38:ae:e7:cf:21:bc:53:08:6b:7f:e4:d9:7d:20:
ba:fc:cc:4b:a4:be:33:30:8a:14:7d:36:7f:1b:cb:2c:d8:8d:
84:8c:f2:43:69:c9:60:ad:7e:9c:74:15:ce:06:08:8a:18:37:
67:5a:b8:a7:ad:f0:5e:f4:74:48:f5:1b:af:7d:ee:75:12:a1:
9e:14:4d:c9:e2:de:d5:5b:e5:87:90:25:be:32:d4:ae:8f:13:
76:89:c3:fe:46:b1:82:64:33:1f:77:fe:63:c6:ed:c9:96:2a:
7e:15:8a:bf:94:2e:e1:6b:9b:9e:7a:db:eb:36:9e:b4:24:77:
4d:fc:ac:62:90:9e:3e:bf:22:ea:ca:b0:6c:27:1c:11:7b:85:
bb:5b:93:0b:81:29:96:4d:c3:99:7e:75:66:f9:a2:f7:81:cb:
ef:6c:df:92:bd:ea:1b:44:7b:88:95:12:8a:c6:3c:f2:f5:e6:
45:46:ec:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZK6xcikclqrmXhAFKEi1wpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3OTdlMDM5ZjAyNWEyNWFhNmU5OTIzOTFkOTI0MjYwNjk5
YmE2N2IwHhcNMjUwNDE4MjIwMDQyWhcNMjUwNDE5MjIwMDQyWjAzMTEwLwYDVQQD
EyhhODFiNzY5ZjIwZDA0NzZhYjZjYTNkNGVjY2FlNGIzNmEyNmZhYzBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhWfvWGikzYc9CgEJV5EQhyZOtHO
j9Yi4LqJAt+WlRo9eB4tt2qUcGnUICWVN2mnImHbKT25HypqbL9xrAiA+t2sY1bu
NqZRPGOl5NCyLJFfph55sC3OGujme5v0mzk6YDBeuZM8KKg5nn5r4q/HVX2rgQaC
T0UVs4Qy8DjQ2yX6zUjiyoZ8hBU88BgZd8gDVXLAkq8BLmDMGSt2V/oI28W3co5w
cyBw0GvbiR7hnybAMuPvm864PaQuDLSRfOMzZlORM+3tvzYrItVEZuAJ/E0Hepf/
YwkNRlftS+gr6JpUCfBXYO9exIOGgrbpHB+xlcuPF/adsIIyKwy1PZadxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKgbdp8g0Edqtso9TsyuSzaib6wOMB8GA1UdIwQY
MBaAFDeX4DnwJaJapumSOR2SQmBpm6Z7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjVmZ09mQWxvbHFtNlpJNUhaSkNZR21icG5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8wYWJiOGEtOTc5OC00YmY4LWJhZTEt
YzFjMDVjZGI3ODQxLzEvTjVmZ09mQWxvbHFtNlpJNUhaSkNZR21icG5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8wYWJiOGEtOTc5OC00YmY4LWJhZTEtYzFjMDVjZGI3ODQx
LzEvTjVmZ09mQWxvbHFtNlpJNUhaSkNZR21icG5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABni6Y/js
L0em0Pgqfs7ReQGFNM/SiBJuKt43xSCEA9ebLX8/d6L8iuiixheQd9LD9Zcfd/xX
KcXnUrKf0e44NJuDMJ4D2BZPhOrKXziu588hvFMIa3/k2X0guvzMS6S+MzCKFH02
fxvLLNiNhIzyQ2nJYK1+nHQVzgYIihg3Z1q4p63wXvR0SPUbr33udRKhnhRNyeLe
1Vvlh5AlvjLUro8TdonD/kaxgmQzH3f+Y8btyZYqfhWKv5Qu4Wubnnrb6zaetCR3
TfysYpCePr8i6sqwbCccEXuFu1uTC4Eplk3DmX51Zvmi94HL72zfkr3qG0R7iJUS
isY88vXmRUbsiQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 07:15:24 2025 by rpki-client