Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
File: d5KQMR5unPpeUX-rsNlvqaccPaE.mft (raw, json)
Hash identifier: PByBvVeceubFskXaEq0K7RP5G/QsRKWv2f4vXEn3HkM=
Subject key identifier: F6:01:88:09:07:15:04:B6:29:30:0B:BB:E4:EC:1D:9D:A4:2F:FF:45
Authority key identifier: 77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1
Certificate issuer: /CN=779290311e6e9cfa5e517fabb0d96fa9a71c3da1
Certificate serial: 019652DB66ED38CCFC0A07BBFE52166F410A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
Manifest number: 14FC
Signing time: Sun 20 Apr 2025 11:00:32 +0000
Manifest this update: Sun 20 Apr 2025 11:00:32 +0000
Manifest next update: Mon 21 Apr 2025 11:00:32 +0000
Files and hashes: 1: LOkJgQnrVhTjIGglVDZP2nXIS3k.roa (hash: w0AA95RC5IbPZCqkTY536mw4aIKSxO5pRstC+7ehig8=)
2: d5KQMR5unPpeUX-rsNlvqaccPaE.crl (hash: cMUNpVnqXNJ33X2Iy76IhWMkJhrVBIdBDMkntXlJOkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:66:ed:38:cc:fc:0a:07:bb:fe:52:16:6f:41:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779290311e6e9cfa5e517fabb0d96fa9a71c3da1
Validity
Not Before: Apr 20 11:00:32 2025 GMT
Not After : Apr 21 11:00:32 2025 GMT
Subject: CN=f6018809071504b629300bbbe4ec1d9da42fff45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:88:53:4b:77:18:be:37:e4:2a:b4:a0:5e:bf:
59:e6:91:e4:12:41:41:be:dd:bc:28:1f:c4:6b:99:
18:3b:dc:50:ee:73:da:6f:17:66:ba:ec:fd:73:4a:
e5:fc:eb:c9:68:52:86:a2:a9:6b:57:4e:4d:ac:8c:
6e:8e:94:c8:ea:86:ab:f0:ff:43:d6:cd:42:28:44:
3a:9e:0b:37:ba:27:95:da:a2:9f:ba:1a:87:95:80:
b5:5e:27:12:b8:ba:5e:4e:75:f1:f0:12:5d:7c:8b:
a2:7b:ef:c7:b6:d2:93:9c:bd:6a:c4:e4:9b:48:d8:
b4:0f:75:e9:41:c0:6c:9c:a1:f0:57:c5:31:6d:e3:
ce:f5:47:f3:e5:57:fe:b5:0b:64:cd:5f:e8:37:1c:
bd:16:0f:1a:14:6b:28:b5:16:b4:26:a5:78:5f:93:
e0:c0:cd:19:b0:05:af:c5:22:3c:d6:61:c0:f5:53:
03:e3:be:d5:53:7c:af:05:b6:bc:84:d9:a9:47:aa:
90:5b:04:15:84:29:a0:00:08:a7:7f:f9:95:02:20:
31:b0:db:46:7a:d2:ee:9f:84:bf:7d:18:c4:c9:8f:
76:2a:d6:bf:29:08:d3:05:fa:69:ba:ff:c6:fe:17:
2e:f4:7a:b4:f4:df:fe:22:18:4d:ef:ef:c3:36:0e:
05:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:01:88:09:07:15:04:B6:29:30:0B:BB:E4:EC:1D:9D:A4:2F:FF:45
X509v3 Authority Key Identifier:
keyid:77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:ac:bc:54:61:ca:c1:cb:0f:b1:78:cb:c8:b4:73:56:7c:3a:
e2:64:3c:fa:f7:b7:bf:b1:c3:63:bd:15:7a:c7:26:db:5c:7b:
24:41:8f:d5:9b:93:44:c9:a8:c8:f7:9c:87:3b:36:a5:2f:85:
5d:35:16:7b:4f:b6:4d:61:52:a8:92:75:0e:68:a3:44:b6:2e:
6a:71:5f:be:7c:a2:74:ca:a3:08:46:db:8d:9b:90:a5:ca:89:
43:9c:32:2e:68:fc:e8:b3:b9:e2:91:ba:79:b8:fb:6c:81:c6:
08:f6:30:f3:3f:0e:86:6e:59:f1:6a:c5:82:f0:67:fb:9d:ab:
0d:e6:e7:76:82:92:e4:7c:a3:fe:89:c0:5a:bd:6c:6e:9c:9e:
0f:b2:94:82:15:8f:62:24:16:e7:8c:52:1a:1c:e5:c3:a4:2b:
4e:05:3a:0f:1d:72:38:3d:34:2e:3c:ab:41:1d:46:84:db:97:
22:5d:a5:0e:1a:26:3d:3d:8d:ce:4c:b1:3e:18:d9:17:e1:c5:
5e:70:b8:ce:1b:3a:be:75:86:f0:2e:91:06:cb:3f:e3:34:18:
da:51:7d:27:0b:d7:4e:14:82:27:c5:90:d3:13:5d:e8:83:d7:
0d:d7:f5:67:6e:ea:87:9c:5e:cd:1e:d1:0d:a9:4b:b7:09:6c:
3d:66:88:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZS22btOMz8Cge7/lIWb0EKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3OTI5MDMxMWU2ZTljZmE1ZTUxN2ZhYmIwZDk2ZmE5YTcx
YzNkYTEwHhcNMjUwNDIwMTEwMDMyWhcNMjUwNDIxMTEwMDMyWjAzMTEwLwYDVQQD
EyhmNjAxODgwOTA3MTUwNGI2MjkzMDBiYmJlNGVjMWQ5ZGE0MmZmZjQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4hTS3cYvjfkKrSgXr9Z5pHkEkFB
vt28KB/Ea5kYO9xQ7nPabxdmuuz9c0rl/OvJaFKGoqlrV05NrIxujpTI6oar8P9D
1s1CKEQ6ngs3uieV2qKfuhqHlYC1XicSuLpeTnXx8BJdfIuie+/HttKTnL1qxOSb
SNi0D3XpQcBsnKHwV8UxbePO9Ufz5Vf+tQtkzV/oNxy9Fg8aFGsotRa0JqV4X5Pg
wM0ZsAWvxSI81mHA9VMD477VU3yvBba8hNmpR6qQWwQVhCmgAAinf/mVAiAxsNtG
etLun4S/fRjEyY92Kta/KQjTBfppuv/G/hcu9Hq09N/+IhhN7+/DNg4FqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPYBiAkHFQS2KTALu+TsHZ2kL/9FMB8GA1UdIwQY
MBaAFHeSkDEebpz6XlF/q7DZb6mnHD2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDVLUU1SNXVuUHBlVVgtcnNObHZxYWNjUGFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9iOGUwM2UtYzM5OC00ZWVlLTg5Mzkt
ZjkwOWQ3OWE0NGFkLzEvZDVLUU1SNXVuUHBlVVgtcnNObHZxYWNjUGFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9iOGUwM2UtYzM5OC00ZWVlLTg5MzktZjkwOWQ3OWE0NGFk
LzEvZDVLUU1SNXVuUHBlVVgtcnNObHZxYWNjUGFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoay8VGHK
wcsPsXjLyLRzVnw64mQ8+ve3v7HDY70Vescm21x7JEGP1ZuTRMmoyPechzs2pS+F
XTUWe0+2TWFSqJJ1DmijRLYuanFfvnyidMqjCEbbjZuQpcqJQ5wyLmj86LO54pG6
ebj7bIHGCPYw8z8Ohm5Z8WrFgvBn+52rDebndoKS5Hyj/onAWr1sbpyeD7KUghWP
YiQW54xSGhzlw6QrTgU6Dx1yOD00LjyrQR1GhNuXIl2lDhomPT2NzkyxPhjZF+HF
XnC4zhs6vnWG8C6RBss/4zQY2lF9JwvXThSCJ8WQ0xNd6IPXDdf1Z27qh5xezR7R
DalLtwlsPWaIPg==
-----END CERTIFICATE-----
Generated at Sun Apr 20 14:12:56 2025 by rpki-client