Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
File: XpgU1DFdMK28jeMGAFVq6cPPns4.mft (raw, json)
Hash identifier: 41U7hgWV+RuOJYYoZe/MihKyQF6XiUY9Luh5XaNlhQ4=
Subject key identifier: 0B:19:0D:51:41:E0:A0:2F:4C:28:E9:79:7A:67:0A:08:27:B1:08:FB
Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Certificate serial: 01965D5F965FA61146FCBC672EF8EA0D24C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
Manifest number: 1503
Signing time: Tue 22 Apr 2025 12:01:07 +0000
Manifest this update: Tue 22 Apr 2025 12:01:07 +0000
Manifest next update: Wed 23 Apr 2025 12:01:07 +0000
Files and hashes: 1: XpgU1DFdMK28jeMGAFVq6cPPns4.crl (hash: tYPIrG1X3RkE5TPwO/CK1asQ1oktPAGAt2bD75waC2I=)
2: srWs4lSgEcXww8bmZ8Qduqdxgdw.roa (hash: Fa3vdYsDt8LbAe4PXMPi2JDBOubqWHhdVQas9y66mmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 12:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:5f:96:5f:a6:11:46:fc:bc:67:2e:f8:ea:0d:24:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Validity
Not Before: Apr 22 12:01:07 2025 GMT
Not After : Apr 23 12:01:07 2025 GMT
Subject: CN=0b190d5141e0a02f4c28e9797a670a0827b108fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:37:62:5d:26:c6:22:1d:ab:ae:67:44:f5:a8:
bb:b4:90:56:a0:19:bc:9b:ea:ba:05:4d:28:55:35:
9f:b4:a7:57:2d:4a:96:16:ca:a2:34:ab:5c:10:1c:
36:b9:78:b8:fc:23:a6:29:f8:df:64:bd:aa:99:a2:
7a:20:a6:15:ae:19:c6:4f:ca:29:3d:2e:35:ee:7c:
c0:38:8e:4e:60:aa:1f:0f:32:dd:77:20:79:ee:61:
b1:f2:7e:6f:8b:72:2f:b2:68:c6:f1:b3:c4:ce:83:
26:e8:de:49:df:ee:e9:ec:d3:c0:5c:7e:f1:c6:40:
b9:e7:e6:c4:ee:9c:43:77:1c:5d:ac:38:62:7a:63:
5e:a2:5a:e5:b1:39:55:9c:2d:66:3a:bb:b0:ad:76:
9b:9e:db:c2:c3:cf:b8:fe:a7:20:a9:34:f7:86:15:
60:5c:c9:3b:4a:82:38:bc:88:e8:ff:6f:d1:40:0f:
d4:ec:95:86:15:a4:d1:3f:8b:ba:3b:49:92:70:11:
eb:83:8a:1f:99:30:cc:10:b4:47:87:cf:49:99:91:
a2:8b:8f:c0:b5:82:18:7c:60:65:66:2f:e1:66:d7:
83:2e:b3:5d:a6:56:f8:4c:69:be:50:a3:70:9b:1f:
b1:d1:66:d5:0d:9c:04:94:f8:84:dd:6f:a6:d1:ec:
3b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:19:0D:51:41:E0:A0:2F:4C:28:E9:79:7A:67:0A:08:27:B1:08:FB
X509v3 Authority Key Identifier:
keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:4d:ca:bc:51:6d:da:00:2d:0f:20:99:c0:b9:bf:44:64:d7:
22:12:c9:eb:88:dc:87:8d:60:4a:35:14:72:f9:07:59:61:13:
c2:57:10:a7:b0:f4:88:90:cc:bd:61:6c:f3:9e:7f:ff:7d:ef:
5a:1a:98:6e:cb:81:cd:0f:5f:a6:3b:df:ca:f7:1e:d9:2d:8d:
5f:b7:e6:ac:4a:55:56:24:ec:6f:29:f9:17:ca:5d:9a:c0:1b:
1f:7d:80:8b:22:88:cd:5c:a0:5e:fc:f6:eb:a4:1b:21:32:f7:
31:f3:a1:b6:51:50:0a:98:d0:21:ca:93:49:b7:4b:21:2c:e7:
d9:32:cc:f2:1e:94:9e:fa:16:98:46:20:4d:59:fe:40:d5:9f:
7d:4a:05:70:07:6f:93:68:c7:0a:fb:11:50:34:3b:d7:d5:76:
fc:64:e0:0d:e9:a3:1b:cf:79:2e:06:37:f1:cf:8a:04:0a:97:
de:a2:8b:11:89:bc:8c:cd:b2:24:3c:d6:9d:df:d3:46:90:44:
43:5c:f3:8a:53:95:39:00:6d:57:be:fd:70:14:5e:05:3a:66:
a1:71:d7:36:33:ae:78:8a:19:23:c3:e3:de:d5:a8:aa:e2:12:
e9:d9:a7:73:19:2e:13:fc:a3:77:4b:1c:d4:4c:d5:e5:2c:9e:
68:3d:c1:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZdX5ZfphFG/LxnLvjqDSTBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlOTgxNGQ0MzE1ZDMwYWRiYzhkZTMwNjAwNTU2YWU5YzNj
ZjllY2UwHhcNMjUwNDIyMTIwMTA3WhcNMjUwNDIzMTIwMTA3WjAzMTEwLwYDVQQD
EygwYjE5MGQ1MTQxZTBhMDJmNGMyOGU5Nzk3YTY3MGEwODI3YjEwOGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqDdiXSbGIh2rrmdE9ai7tJBWoBm8
m+q6BU0oVTWftKdXLUqWFsqiNKtcEBw2uXi4/COmKfjfZL2qmaJ6IKYVrhnGT8op
PS417nzAOI5OYKofDzLddyB57mGx8n5vi3IvsmjG8bPEzoMm6N5J3+7p7NPAXH7x
xkC55+bE7pxDdxxdrDhiemNeolrlsTlVnC1mOruwrXabntvCw8+4/qcgqTT3hhVg
XMk7SoI4vIjo/2/RQA/U7JWGFaTRP4u6O0mScBHrg4ofmTDMELRHh89JmZGii4/A
tYIYfGBlZi/hZteDLrNdplb4TGm+UKNwmx+x0WbVDZwElPiE3W+m0ew7uQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAsZDVFB4KAvTCjpeXpnCggnsQj7MB8GA1UdIwQY
MBaAFF6YFNQxXTCtvI3jBgBVaunDz57OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHBnVTFERmRNSzI4amVNR0FGVnE2Y1BQbnM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS83YTc4ZDQtMDM0MC00MjI3LWIxNDct
MzViNTNkMjM3NmQyLzEvWHBnVTFERmRNSzI4amVNR0FGVnE2Y1BQbnM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS83YTc4ZDQtMDM0MC00MjI3LWIxNDctMzViNTNkMjM3NmQy
LzEvWHBnVTFERmRNSzI4amVNR0FGVnE2Y1BQbnM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQk3KvFFt
2gAtDyCZwLm/RGTXIhLJ64jch41gSjUUcvkHWWETwlcQp7D0iJDMvWFs855//33v
WhqYbsuBzQ9fpjvfyvce2S2NX7fmrEpVViTsbyn5F8pdmsAbH32AiyKIzVygXvz2
66QbITL3MfOhtlFQCpjQIcqTSbdLISzn2TLM8h6UnvoWmEYgTVn+QNWffUoFcAdv
k2jHCvsRUDQ719V2/GTgDemjG895LgY38c+KBAqX3qKLEYm8jM2yJDzWnd/TRpBE
Q1zzilOVOQBtV779cBReBTpmoXHXNjOueIoZI8Pj3tWoquIS6dmncxkuE/yjd0sc
1EzV5SyeaD3B2g==
-----END CERTIFICATE-----
Generated at Tue Apr 22 21:10:07 2025 by rpki-client