Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: DgLByzXVg107e/DE4RSs7R1nkdyXvNMgCQRuWh+KXbE=
Subject key identifier: 47:81:71:E9:69:15:80:DD:21:00:23:79:CC:8E:C0:B7:18:1A:03:89
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 019612EAA18C597A9D18A65E1D9868969D17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 1439
Signing time: Tue 08 Apr 2025 01:01:28 +0000
Manifest this update: Tue 08 Apr 2025 01:01:28 +0000
Manifest next update: Wed 09 Apr 2025 01:01:28 +0000
Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: +QhdulU/bKRJtu4ns1Q0Toho+HFehS7UMgtD6/Xmn9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 01:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:12:ea:a1:8c:59:7a:9d:18:a6:5e:1d:98:68:96:9d:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Apr 8 01:01:28 2025 GMT
Not After : Apr 9 01:01:28 2025 GMT
Subject: CN=478171e9691580dd21002379cc8ec0b7181a0389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:11:85:ce:79:8a:3f:00:58:b6:4c:e4:8a:cf:
e5:97:4a:e9:6f:42:7a:ae:59:98:7b:f9:f0:4a:dc:
e3:b2:48:a5:39:9d:cc:f4:c8:f1:bc:fa:d8:43:57:
c3:fa:2c:2d:e2:97:1b:b9:a8:4f:f7:65:93:98:3b:
45:ee:92:b4:78:2a:cd:12:dd:64:b5:75:e9:36:f0:
7c:6a:bf:47:27:ee:ba:96:82:a6:32:1a:08:fb:49:
ad:be:69:cc:af:f9:d7:c4:69:c2:09:bc:53:cf:3e:
55:c6:7f:03:f9:8b:1f:ac:02:d2:dd:59:03:7f:a0:
45:6e:1f:a3:a8:45:db:c6:34:89:d0:c3:d0:47:89:
72:6a:26:21:43:5c:b5:3b:d9:e2:01:03:bb:27:10:
b2:2e:6a:48:76:fd:01:f6:7a:e7:96:f5:3b:d9:af:
e8:6d:e9:22:0a:de:a0:c6:4d:3b:ce:2b:c6:77:1b:
20:52:4a:a0:c0:f7:8c:6e:9a:9e:d6:73:5a:a1:db:
1b:1b:ab:bd:a3:b3:ba:41:31:cc:90:76:7c:34:64:
c9:29:d3:7b:f1:d2:e8:a4:06:ab:a8:85:b5:13:9b:
3e:4f:64:3b:dd:06:ee:23:b3:66:aa:35:72:b3:15:
53:8e:2e:76:f4:1a:5b:68:36:ae:14:46:cf:19:71:
31:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:81:71:E9:69:15:80:DD:21:00:23:79:CC:8E:C0:B7:18:1A:03:89
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:37:c4:63:72:04:47:90:ea:f4:21:98:23:fb:bc:3e:13:5c:
b0:2e:e7:70:74:4c:3e:86:59:55:f8:ad:eb:6e:22:b2:d2:e1:
68:2e:1d:77:c1:35:34:1a:b7:55:47:dc:71:99:05:d0:aa:52:
16:4c:0b:bc:52:32:64:0e:26:80:50:b5:43:20:65:13:a8:b9:
ac:8e:78:38:ef:1d:76:52:67:94:88:08:1b:39:32:85:f9:6c:
1a:05:f2:1c:13:0a:d5:18:4e:87:33:51:2e:7e:88:25:1d:c0:
93:67:1f:1f:1f:3d:9a:e3:98:9e:c1:2b:bd:a1:5a:4b:87:7e:
f4:70:2f:8b:76:8e:ce:42:dc:45:24:4c:12:c4:f6:08:09:61:
92:25:ea:77:9f:6a:d8:fa:e6:1b:82:be:95:f9:db:59:48:b3:
8a:91:fe:d5:71:a5:04:b2:f2:9b:74:fe:76:a5:23:82:6c:78:
2b:f2:3e:cd:f1:0b:7d:15:ad:fa:a1:ff:a0:3e:5a:a2:be:89:
33:02:f5:f8:d6:4e:92:e9:50:78:04:18:22:2b:1b:3f:75:49:
f4:a7:78:75:cd:67:ef:6f:a6:e0:d8:6f:76:d3:84:32:ad:6d:
bb:4f:0a:04:17:9d:ea:42:1f:6d:bc:81:c8:a9:dd:b3:0d:9d:
af:3b:91:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYS6qGMWXqdGKZeHZholp0XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMDY2MzU4M2E4MTg5Y2JlYWFjODhkNDM4NzY3OTk3YjEx
MjU1NDkwHhcNMjUwNDA4MDEwMTI4WhcNMjUwNDA5MDEwMTI4WjAzMTEwLwYDVQQD
Eyg0NzgxNzFlOTY5MTU4MGRkMjEwMDIzNzljYzhlYzBiNzE4MWEwMzg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhGFznmKPwBYtkzkis/ll0rpb0J6
rlmYe/nwStzjskilOZ3M9MjxvPrYQ1fD+iwt4pcbuahP92WTmDtF7pK0eCrNEt1k
tXXpNvB8ar9HJ+66loKmMhoI+0mtvmnMr/nXxGnCCbxTzz5Vxn8D+YsfrALS3VkD
f6BFbh+jqEXbxjSJ0MPQR4lyaiYhQ1y1O9niAQO7JxCyLmpIdv0B9nrnlvU72a/o
bekiCt6gxk07zivGdxsgUkqgwPeMbpqe1nNaodsbG6u9o7O6QTHMkHZ8NGTJKdN7
8dLopAarqIW1E5s+T2Q73QbuI7NmqjVysxVTji529BpbaDauFEbPGXExrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEeBcelpFYDdIQAjecyOwLcYGgOJMB8GA1UdIwQY
MBaAFLIGY1g6gYnL6qyI1Dh2eZexElVJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9lZjZmMWEtNmRmYy00OTRlLWI4NWQt
ZDE4NzczZTdiYzQ3LzEvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9lZjZmMWEtNmRmYy00OTRlLWI4NWQtZDE4NzczZTdiYzQ3
LzEvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbTfEY3IE
R5Dq9CGYI/u8PhNcsC7ncHRMPoZZVfit624istLhaC4dd8E1NBq3VUfccZkF0KpS
FkwLvFIyZA4mgFC1QyBlE6i5rI54OO8ddlJnlIgIGzkyhflsGgXyHBMK1RhOhzNR
Ln6IJR3Ak2cfHx89muOYnsErvaFaS4d+9HAvi3aOzkLcRSRMEsT2CAlhkiXqd59q
2PrmG4K+lfnbWUizipH+1XGlBLLym3T+dqUjgmx4K/I+zfELfRWt+qH/oD5aor6J
MwL1+NZOkulQeAQYIisbP3VJ9Kd4dc1n72+m4NhvdtOEMq1tu08KBBed6kIfbbyB
yKndsw2drzuR8w==
-----END CERTIFICATE-----
Generated at Tue Apr 8 11:06:23 2025 by rpki-client