Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
File: XFe2FhFxnsfI4AErGv9-gfx2ib0.mft (raw, json)
Hash identifier: kR3BDgi/cGwqbcs4wfQsyfC3ORW2gFoH/zM1f2qhwAc=
Subject key identifier: 27:CA:E7:06:E0:5A:50:E8:8E:82:3A:0B:E6:C4:C7:28:3C:38:8C:DF
Authority key identifier: 5C:57:B6:16:11:71:9E:C7:C8:E0:01:2B:1A:FF:7E:81:FC:76:89:BD
Certificate issuer: /CN=5c57b61611719ec7c8e0012b1aff7e81fc7689bd
Certificate serial: 019636C02C575F5AD86BD81EB1847326BBF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
Manifest number: 0EE9
Signing time: Tue 15 Apr 2025 00:01:26 +0000
Manifest this update: Tue 15 Apr 2025 00:01:26 +0000
Manifest next update: Wed 16 Apr 2025 00:01:26 +0000
Files and hashes: 1: 736mr1KkVtoBPW1oR7owGe-ullo.roa (hash: uR2lVV+jre6sPLOQey9198pgiqdr//RLVlkZmwpBaQw=)
2: XFe2FhFxnsfI4AErGv9-gfx2ib0.crl (hash: ZIXE6DPJ53PJBTPeqzMQ4wtER4l9shwMCDrmiMfdlKI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:36:c0:2c:57:5f:5a:d8:6b:d8:1e:b1:84:73:26:bb:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c57b61611719ec7c8e0012b1aff7e81fc7689bd
Validity
Not Before: Apr 15 00:01:26 2025 GMT
Not After : Apr 16 00:01:26 2025 GMT
Subject: CN=27cae706e05a50e88e823a0be6c4c7283c388cdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:fe:8c:5d:e8:cf:8e:d5:da:a7:4f:3c:c3:d7:
5c:1e:6f:9e:41:eb:ad:80:ad:4c:75:13:e1:45:be:
ff:b9:03:b1:47:f5:e3:56:00:a0:7d:6b:ca:06:82:
a1:98:32:6f:8f:6f:f3:e2:3e:d9:cc:8b:d1:9b:0e:
db:0f:54:22:b9:5b:a4:01:a7:27:a2:2c:5b:ab:da:
63:06:1d:ab:c1:11:5a:94:56:c0:ae:77:f7:74:d7:
31:c5:dc:37:e0:0d:26:e5:5f:23:cb:aa:6c:80:74:
2f:90:1f:b0:06:4d:6d:d0:b6:1b:39:61:2d:d8:77:
f4:ee:a8:ab:de:b2:5c:da:29:d5:ed:d9:bf:84:82:
69:f0:39:11:4c:f6:6b:ec:3d:05:5e:26:b3:80:e7:
d8:4e:8e:65:e5:6c:fe:a5:d4:b2:a3:e8:60:0e:8a:
a1:72:b7:d2:c9:3e:be:bb:e1:4b:87:96:4f:65:2e:
a8:96:43:dc:aa:d4:ca:b4:d4:5d:aa:67:65:d5:f4:
2b:ca:bb:53:37:46:a1:37:c5:ba:38:43:26:46:6c:
56:e9:13:ca:9b:ad:ac:07:fe:f7:57:e2:38:d3:0b:
36:84:99:f1:e2:0c:66:b3:d7:1d:6b:29:41:fa:c5:
4b:b5:44:2a:2b:30:12:29:13:86:84:59:41:65:f3:
6d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:CA:E7:06:E0:5A:50:E8:8E:82:3A:0B:E6:C4:C7:28:3C:38:8C:DF
X509v3 Authority Key Identifier:
keyid:5C:57:B6:16:11:71:9E:C7:C8:E0:01:2B:1A:FF:7E:81:FC:76:89:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:ee:9b:cb:a0:68:2a:d7:0c:24:79:0c:dd:bd:7b:ca:29:1b:
4c:f0:47:d8:46:80:94:63:9d:a0:02:4a:b8:7f:fb:78:80:5b:
61:0b:ba:bf:3a:ee:32:06:3f:d9:ec:b3:b5:01:ce:97:d5:16:
cf:9e:55:bd:af:0a:4d:ce:c8:59:cb:e8:d1:96:7e:1c:10:6a:
82:7c:c8:3a:39:c2:7d:ad:be:68:33:01:c6:d3:1e:20:db:e8:
c9:f4:f1:65:77:52:a8:1e:d9:f7:6d:01:fb:70:72:17:15:08:
ef:2c:a4:c8:de:e3:98:b7:dc:49:71:f5:a7:6e:2c:58:23:d6:
de:0f:e0:e6:db:c1:44:3f:4d:79:7d:59:2f:bc:b3:90:d6:d0:
19:0b:27:a4:98:8f:af:48:c6:a0:85:6f:fb:ee:39:9e:fd:7b:
32:bf:56:1c:5c:cb:9b:9c:61:ed:8d:fc:e2:c2:cc:a6:92:0e:
92:1a:af:cc:90:06:70:d6:9b:43:c0:05:8e:51:28:21:4c:85:
67:c6:77:2a:94:88:db:dc:ed:df:94:a3:56:3c:8c:dc:8e:fc:
1e:4a:06:2d:bc:62:ec:ac:88:3e:26:db:c6:41:54:2c:28:69:
e5:23:2f:eb:e0:2c:f5:b3:73:60:af:50:20:99:e7:cc:eb:01:
7e:0e:a9:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY2wCxXX1rYa9gesYRzJrv4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNTdiNjE2MTE3MTllYzdjOGUwMDEyYjFhZmY3ZTgxZmM3
Njg5YmQwHhcNMjUwNDE1MDAwMTI2WhcNMjUwNDE2MDAwMTI2WjAzMTEwLwYDVQQD
EygyN2NhZTcwNmUwNWE1MGU4OGU4MjNhMGJlNmM0YzcyODNjMzg4Y2RmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4P6MXejPjtXap088w9dcHm+eQeut
gK1MdRPhRb7/uQOxR/XjVgCgfWvKBoKhmDJvj2/z4j7ZzIvRmw7bD1QiuVukAacn
oixbq9pjBh2rwRFalFbArnf3dNcxxdw34A0m5V8jy6psgHQvkB+wBk1t0LYbOWEt
2Hf07qir3rJc2inV7dm/hIJp8DkRTPZr7D0FXiazgOfYTo5l5Wz+pdSyo+hgDoqh
crfSyT6+u+FLh5ZPZS6olkPcqtTKtNRdqmdl1fQryrtTN0ahN8W6OEMmRmxW6RPK
m62sB/73V+I40ws2hJnx4gxms9cdaylB+sVLtUQqKzASKROGhFlBZfNtQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCfK5wbgWlDojoI6C+bExyg8OIzfMB8GA1UdIwQY
MBaAFFxXthYRcZ7HyOABKxr/foH8dom9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEZlMkZoRnhuc2ZJNEFFckd2OS1nZngyaWIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9iN2ZlNzUtMzBlZS00YTZmLWI1Mjgt
ZmEzMDcxYzQzNWYxLzEvWEZlMkZoRnhuc2ZJNEFFckd2OS1nZngyaWIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9iN2ZlNzUtMzBlZS00YTZmLWI1MjgtZmEzMDcxYzQzNWYx
LzEvWEZlMkZoRnhuc2ZJNEFFckd2OS1nZngyaWIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdu6by6Bo
KtcMJHkM3b17yikbTPBH2EaAlGOdoAJKuH/7eIBbYQu6vzruMgY/2eyztQHOl9UW
z55Vva8KTc7IWcvo0ZZ+HBBqgnzIOjnCfa2+aDMBxtMeINvoyfTxZXdSqB7Z920B
+3ByFxUI7yykyN7jmLfcSXH1p24sWCPW3g/g5tvBRD9NeX1ZL7yzkNbQGQsnpJiP
r0jGoIVv++45nv17Mr9WHFzLm5xh7Y384sLMppIOkhqvzJAGcNabQ8AFjlEoIUyF
Z8Z3KpSI29zt35SjVjyM3I78HkoGLbxi7KyIPibbxkFULChp5SMv6+As9bNzYK9Q
IJnnzOsBfg6pzQ==
-----END CERTIFICATE-----
Generated at Tue Apr 15 05:00:13 2025 by rpki-client