Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
File: UJSiarpxAHYh_VmdU3u3rqreizM.mft (raw, json)
Hash identifier: qO34/eAdzSbxLucaprjxzRxjv5oGR87yLpBHp4fuUsQ=
Subject key identifier: F7:4A:FF:9C:84:8D:6D:C2:66:14:52:08:0D:35:80:42:06:C6:98:98
Authority key identifier: 50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
Certificate issuer: /CN=5094a26aba71007621fd599d537bb7aeaade8b33
Certificate serial: 01963351354F029CC87A6C3167A1E9588E7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
Manifest number: 14F0
Signing time: Mon 14 Apr 2025 08:01:21 +0000
Manifest this update: Mon 14 Apr 2025 08:01:21 +0000
Manifest next update: Tue 15 Apr 2025 08:01:21 +0000
Files and hashes: 1: PYLR3kfr_0El_Ga2E9JeZcCyCVc.roa (hash: A0449RCi6B29H8zKA0rMM/NDvKNi2c+elOaTXG6BpHk=)
2: UJSiarpxAHYh_VmdU3u3rqreizM.crl (hash: laVo2wFx8+XWFoC6m34uY9SMb+syrMv46NMQSLOsGJY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 08:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:33:51:35:4f:02:9c:c8:7a:6c:31:67:a1:e9:58:8e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5094a26aba71007621fd599d537bb7aeaade8b33
Validity
Not Before: Apr 14 08:01:21 2025 GMT
Not After : Apr 15 08:01:21 2025 GMT
Subject: CN=f74aff9c848d6dc2661452080d35804206c69898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4b:7e:4a:ba:85:93:5b:5d:c4:74:5b:10:e1:
f6:14:fc:00:5b:74:a8:12:9d:da:37:4b:ad:ea:11:
ab:e9:0a:11:1a:41:60:b7:df:8c:86:45:0d:fe:04:
ad:aa:0d:73:34:70:6a:46:58:10:fd:17:90:35:5d:
22:79:d9:8d:96:49:3a:22:ec:4d:78:15:0f:c7:e6:
de:93:1a:69:a1:3d:bf:f7:fb:32:c7:39:d9:6a:6c:
9f:d0:2c:81:f0:d2:23:4d:30:07:fa:6f:52:c6:3c:
1b:7d:62:77:79:87:c4:5c:ea:cf:35:f7:35:f6:45:
ab:95:3f:1d:bb:ee:fd:70:10:f8:e2:bc:50:fb:f3:
95:af:54:b4:b2:0f:4c:21:0a:94:5c:b8:65:76:cb:
25:25:51:8a:3a:d0:fa:07:49:99:a9:1c:ab:28:c6:
0b:c7:de:0c:48:c5:16:49:b2:30:55:d3:8c:d3:41:
15:3c:bb:9b:d9:27:bb:52:2a:26:a4:6f:85:af:b2:
0f:f7:fb:7b:48:38:0d:f2:ce:b3:fd:d4:c5:43:d2:
7b:68:0f:ee:1b:ea:5d:3c:ff:e3:ce:53:d3:f7:d1:
47:aa:7b:d0:fe:c1:b5:3d:b3:79:2d:76:81:d3:01:
bc:c9:19:5c:5d:27:94:89:46:e5:1b:ea:1c:45:c1:
4b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:4A:FF:9C:84:8D:6D:C2:66:14:52:08:0D:35:80:42:06:C6:98:98
X509v3 Authority Key Identifier:
keyid:50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:ae:24:94:88:f3:dd:06:27:f8:a4:61:d3:cd:fc:3a:03:c7:
b1:18:0d:e2:be:ef:26:59:7a:47:d2:42:82:4c:13:97:2c:13:
b3:92:16:f0:6b:a2:0e:91:e4:60:32:cd:fd:e1:55:a9:96:53:
35:47:b5:fa:8b:9d:09:94:3f:d1:01:a8:72:fd:76:d5:f0:ec:
fb:d5:cd:d5:aa:4c:d7:7b:7b:57:f4:db:c0:88:4e:c2:18:1f:
96:e4:0c:b5:97:d2:25:f1:0b:ca:e8:5a:9d:92:d2:45:be:3e:
9e:9d:b8:99:91:c8:86:d0:ad:af:62:98:3d:c2:af:06:51:92:
9d:2a:84:a7:15:6c:41:4b:c0:d0:27:2e:35:95:2e:b4:c9:86:
29:c7:82:3e:f3:16:be:1b:ac:16:2f:b8:44:69:a3:0e:bf:3b:
8f:b9:12:32:67:c8:bd:34:21:99:b6:74:ff:5a:be:d0:e8:70:
64:fc:bd:88:58:2e:00:71:0f:1d:b7:32:b6:97:99:e5:3c:00:
04:cb:ce:96:64:95:bb:7c:29:ba:23:68:29:72:14:cd:66:1f:
76:38:4f:cd:a0:5c:2a:57:af:01:77:c6:a3:72:b0:6c:c3:2c:
97:b9:02:0f:c4:5e:37:a9:71:06:09:08:1c:07:33:ce:16:ce:
83:20:ae:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYzUTVPApzIemwxZ6HpWI57MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwOTRhMjZhYmE3MTAwNzYyMWZkNTk5ZDUzN2JiN2FlYWFk
ZThiMzMwHhcNMjUwNDE0MDgwMTIxWhcNMjUwNDE1MDgwMTIxWjAzMTEwLwYDVQQD
EyhmNzRhZmY5Yzg0OGQ2ZGMyNjYxNDUyMDgwZDM1ODA0MjA2YzY5ODk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUt+SrqFk1tdxHRbEOH2FPwAW3So
Ep3aN0ut6hGr6QoRGkFgt9+MhkUN/gStqg1zNHBqRlgQ/ReQNV0iedmNlkk6IuxN
eBUPx+bekxppoT2/9/syxznZamyf0CyB8NIjTTAH+m9SxjwbfWJ3eYfEXOrPNfc1
9kWrlT8du+79cBD44rxQ+/OVr1S0sg9MIQqUXLhldsslJVGKOtD6B0mZqRyrKMYL
x94MSMUWSbIwVdOM00EVPLub2Se7UiompG+Fr7IP9/t7SDgN8s6z/dTFQ9J7aA/u
G+pdPP/jzlPT99FHqnvQ/sG1PbN5LXaB0wG8yRlcXSeUiUblG+ocRcFLYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPdK/5yEjW3CZhRSCA01gEIGxpiYMB8GA1UdIwQY
MBaAFFCUomq6cQB2If1ZnVN7t66q3oszMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUpTaWFycHhBSFloX1ZtZFUzdTNycXJlaXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS85ZmNlNzgtNGY5ZC00ODQ3LWI3NTkt
YjQ1MWU0NzdiOWMyLzEvVUpTaWFycHhBSFloX1ZtZFUzdTNycXJlaXpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS85ZmNlNzgtNGY5ZC00ODQ3LWI3NTktYjQ1MWU0NzdiOWMy
LzEvVUpTaWFycHhBSFloX1ZtZFUzdTNycXJlaXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb64klIjz
3QYn+KRh0838OgPHsRgN4r7vJll6R9JCgkwTlywTs5IW8GuiDpHkYDLN/eFVqZZT
NUe1+oudCZQ/0QGocv121fDs+9XN1apM13t7V/TbwIhOwhgfluQMtZfSJfELyuha
nZLSRb4+np24mZHIhtCtr2KYPcKvBlGSnSqEpxVsQUvA0CcuNZUutMmGKceCPvMW
vhusFi+4RGmjDr87j7kSMmfIvTQhmbZ0/1q+0OhwZPy9iFguAHEPHbcytpeZ5TwA
BMvOlmSVu3wpuiNoKXIUzWYfdjhPzaBcKlevAXfGo3KwbMMsl7kCD8ReN6lxBgkI
HAczzhbOgyCu1g==
-----END CERTIFICATE-----
Generated at Mon Apr 14 17:55:15 2025 by rpki-client