Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
File: b14CML55nkSCnIcgyjg0cEVJTiA.mft (raw, json)
Hash identifier: KEJfUyqY8IpAAGPPRqXt3eH3car+bmUuWUyGh9tsY9U=
Subject key identifier: 1E:8F:D9:14:90:7D:5B:7C:D3:23:FF:2B:CB:37:56:2E:E2:DE:7D:C6
Authority key identifier: 6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
Certificate issuer: /CN=6f5e0230be799e44829c8720ca38347045494e20
Certificate serial: 0196470E3B387140B123DCE1B956E6C7B4D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
Manifest number: 152A
Signing time: Fri 18 Apr 2025 04:00:37 +0000
Manifest this update: Fri 18 Apr 2025 04:00:37 +0000
Manifest next update: Sat 19 Apr 2025 04:00:37 +0000
Files and hashes: 1: 3vEPBG1oI2P7D_OfeL-L-zO3dlY.roa (hash: tN3ytiGRqjapeYsvwHwSYsXkP2Hw2Lot2BTQS7jncsI=)
2: OA73wAqV_OZlim0SwF2V_YI8Guo.roa (hash: QNEMqpwFVceoVg9wDWC62p9qC3TqQBa3mMNvDfZByRU=)
3: b14CML55nkSCnIcgyjg0cEVJTiA.crl (hash: w0WFMiHh1ss9DA6QjFtgasTOIROOWA01pybOOOplSGI=)
4: jN3YKyZr7fLBbaM-ys_51VKLM4I.roa (hash: /Z7rTH+6bXmxYBkfBLPrrW+aXm6fTfnVD3Lj/2mMT08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:0e:3b:38:71:40:b1:23:dc:e1:b9:56:e6:c7:b4:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f5e0230be799e44829c8720ca38347045494e20
Validity
Not Before: Apr 18 04:00:37 2025 GMT
Not After : Apr 19 04:00:37 2025 GMT
Subject: CN=1e8fd914907d5b7cd323ff2bcb37562ee2de7dc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7e:31:1b:fb:d6:f5:e8:57:65:31:76:7c:a5:
c1:dd:0c:90:b9:db:30:a1:c7:9b:60:5c:7d:d5:dc:
16:3d:a4:58:32:20:1e:e4:c0:3d:d4:8a:1f:f2:a5:
6d:8f:ce:f0:da:eb:4d:ee:97:1b:f2:44:48:05:30:
49:71:8b:59:8d:09:e4:ce:93:91:17:6b:5b:f9:da:
48:b1:b8:91:7c:8d:62:cb:f6:b4:53:e3:1e:01:50:
a1:95:06:9c:9a:32:65:38:7c:e2:06:48:1d:aa:cc:
2a:7a:b9:be:cf:08:cc:07:02:59:e9:d4:2a:cc:8f:
9e:ab:3a:3a:61:49:01:5d:89:bd:f1:29:d4:30:f5:
6e:da:2e:96:24:ea:b8:bf:d4:ec:20:10:64:8f:2e:
39:62:ef:f4:50:d8:21:1c:44:a7:c2:a5:84:58:67:
30:85:53:37:11:84:de:e7:a1:3e:53:83:40:30:77:
4c:d2:56:00:2d:03:3f:17:39:4a:c2:51:6a:a5:f5:
f4:29:35:8f:ca:e0:bd:b2:6f:12:2f:d4:4f:c4:d2:
a4:21:b0:81:c8:e2:85:30:f7:54:15:f3:5d:02:13:
17:f4:28:00:48:62:ef:4c:8f:f3:7e:95:10:ff:24:
a3:5d:08:01:15:0f:2a:bc:9d:f1:86:55:e4:c8:9b:
5d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:8F:D9:14:90:7D:5B:7C:D3:23:FF:2B:CB:37:56:2E:E2:DE:7D:C6
X509v3 Authority Key Identifier:
keyid:6F:5E:02:30:BE:79:9E:44:82:9C:87:20:CA:38:34:70:45:49:4E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b14CML55nkSCnIcgyjg0cEVJTiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/70ccef-17f3-4928-9c0b-ba7c7d8190ca/1/b14CML55nkSCnIcgyjg0cEVJTiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:ac:a4:6c:1a:0c:22:61:50:c0:72:f2:5d:1b:a8:44:8f:3d:
94:fb:7e:04:ef:ab:63:d6:4e:56:3c:92:75:a0:fc:8a:e5:9a:
20:2d:df:cf:3b:7a:4b:ca:37:61:68:19:7d:fc:48:33:7e:75:
eb:07:4b:a6:71:b2:0f:13:24:82:e9:0c:20:40:76:c9:2b:02:
cb:5c:21:fc:95:2f:ff:c7:1a:a5:96:3a:3a:b3:45:85:db:12:
c8:08:a4:d6:7e:4b:0c:89:56:cd:73:f7:66:b9:d2:37:99:51:
86:26:85:1b:35:4e:c7:49:5f:01:d1:dd:d4:ce:78:03:d4:70:
b1:3b:49:c2:38:2a:8c:ce:34:01:54:57:ae:c7:d9:90:66:7a:
65:22:e0:82:d6:8c:19:74:f2:55:45:b8:82:ff:da:01:12:23:
ca:b6:96:d3:04:4b:e5:30:c5:29:67:67:32:7e:39:70:a5:24:
fa:ba:75:53:c5:6f:a8:fc:c9:62:d8:f6:30:0f:93:e5:b1:83:
ee:30:11:8f:10:1c:95:23:59:3d:2e:43:27:b7:90:01:87:26:
19:37:50:9e:33:fa:ae:f7:8c:35:a8:85:9a:98:e7:77:23:3b:
4e:36:0e:6a:69:2f:27:e4:ed:3e:72:a5:e9:9f:87:84:73:a8:
31:94:85:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZHDjs4cUCxI9zhuVbmx7TRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmNWUwMjMwYmU3OTllNDQ4MjljODcyMGNhMzgzNDcwNDU0
OTRlMjAwHhcNMjUwNDE4MDQwMDM3WhcNMjUwNDE5MDQwMDM3WjAzMTEwLwYDVQQD
EygxZThmZDkxNDkwN2Q1YjdjZDMyM2ZmMmJjYjM3NTYyZWUyZGU3ZGM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoH4xG/vW9ehXZTF2fKXB3QyQudsw
ocebYFx91dwWPaRYMiAe5MA91Iof8qVtj87w2utN7pcb8kRIBTBJcYtZjQnkzpOR
F2tb+dpIsbiRfI1iy/a0U+MeAVChlQacmjJlOHziBkgdqswqerm+zwjMBwJZ6dQq
zI+eqzo6YUkBXYm98SnUMPVu2i6WJOq4v9TsIBBkjy45Yu/0UNghHESnwqWEWGcw
hVM3EYTe56E+U4NAMHdM0lYALQM/FzlKwlFqpfX0KTWPyuC9sm8SL9RPxNKkIbCB
yOKFMPdUFfNdAhMX9CgASGLvTI/zfpUQ/ySjXQgBFQ8qvJ3xhlXkyJtdlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB6P2RSQfVt80yP/K8s3Vi7i3n3GMB8GA1UdIwQY
MBaAFG9eAjC+eZ5EgpyHIMo4NHBFSU4gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjE0Q01MNTVua1NDbkljZ3lqZzBjRVZKVGlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83MGNjZWYtMTdmMy00OTI4LTljMGIt
YmE3YzdkODE5MGNhLzEvYjE0Q01MNTVua1NDbkljZ3lqZzBjRVZKVGlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny83MGNjZWYtMTdmMy00OTI4LTljMGItYmE3YzdkODE5MGNh
LzEvYjE0Q01MNTVua1NDbkljZ3lqZzBjRVZKVGlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ6ykbBoM
ImFQwHLyXRuoRI89lPt+BO+rY9ZOVjySdaD8iuWaIC3fzzt6S8o3YWgZffxIM351
6wdLpnGyDxMkgukMIEB2ySsCy1wh/JUv/8capZY6OrNFhdsSyAik1n5LDIlWzXP3
ZrnSN5lRhiaFGzVOx0lfAdHd1M54A9RwsTtJwjgqjM40AVRXrsfZkGZ6ZSLggtaM
GXTyVUW4gv/aARIjyraW0wRL5TDFKWdnMn45cKUk+rp1U8VvqPzJYtj2MA+T5bGD
7jARjxAclSNZPS5DJ7eQAYcmGTdQnjP6rveMNaiFmpjndyM7TjYOamkvJ+TtPnKl
6Z+HhHOoMZSFWw==
-----END CERTIFICATE-----
Generated at Fri Apr 18 06:54:41 2025 by rpki-client