Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
File: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft (raw, json)
Hash identifier: 0BS9JDsGkJOCVJRfQYy2hK7+hwo+L2TAsZG/CCZVwOw=
Subject key identifier: D5:18:FD:B4:2C:15:18:70:39:E4:C7:6F:08:96:4D:5E:62:49:1E:81
Authority key identifier: AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
Certificate issuer: /CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Certificate serial: 01963CF8CD20E1AFD3DE33FAE5850DD73D83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
Manifest number: 1511
Signing time: Wed 16 Apr 2025 05:01:00 +0000
Manifest this update: Wed 16 Apr 2025 05:01:00 +0000
Manifest next update: Thu 17 Apr 2025 05:01:00 +0000
Files and hashes: 1: 2FhEmcxYfTh9K3J3avRiCdDc75E.roa (hash: tOhuHX2KWyFG2B0a0se5O81lEiJFRABFP38mxTII8TU=)
2: ZobwuQJlyfTBHn_a7YG93r8zB-c.roa (hash: OuGiwc5e7Uh2SsaOmHGGMAe9pQSfXZsNsX2xOuLeEXY=)
3: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl (hash: O/PNXp7FKgDTan7bnboIOWQO0d6uzYMTqsMMvkgIEaE=)
4: yT5ungE9NAr5a95GJEQ0WzC2bc4.roa (hash: 3Q09eXeA/SVTTdlEZBa1ZfiKoZceB51s1iopXPbgTXw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3c:f8:cd:20:e1:af:d3:de:33:fa:e5:85:0d:d7:3d:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Validity
Not Before: Apr 16 05:01:00 2025 GMT
Not After : Apr 17 05:01:00 2025 GMT
Subject: CN=d518fdb42c15187039e4c76f08964d5e62491e81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:94:13:5d:6f:d6:25:94:c0:af:b7:bc:c1:fd:
8d:63:ce:8c:14:65:92:92:d5:f2:a3:bd:83:4e:83:
ab:75:d5:01:53:cc:29:b5:7c:e6:a5:64:22:79:31:
38:bc:bc:fb:bd:3c:69:55:54:d2:93:65:19:36:93:
3b:26:b6:13:e0:9b:49:5d:87:37:d4:29:b2:38:e2:
5a:bc:f3:dc:ef:a8:4f:6d:cd:a9:51:f5:dc:63:7f:
99:44:aa:6e:73:b1:f3:46:8c:ca:b6:df:89:1f:25:
7f:1c:a2:a8:8a:44:1a:b2:5f:42:6b:ed:e5:af:14:
45:27:c5:51:c2:d9:a1:ed:22:d1:d4:87:26:29:3f:
d2:5a:2e:ea:78:a4:a0:85:3c:65:3a:96:c7:94:4b:
14:41:cd:a9:69:c4:27:bf:e1:85:83:3c:a9:3c:9f:
28:bf:fa:52:32:41:54:29:e9:0e:09:27:65:9c:60:
9b:90:2e:16:e4:03:2f:da:62:1e:8b:a3:37:2f:b9:
63:68:9f:79:19:26:58:88:8d:d6:f3:d2:70:6a:38:
36:df:d7:b8:e8:30:be:6b:2b:10:e3:7e:3e:04:da:
95:33:48:db:bc:6c:ce:c2:da:84:d0:f6:c9:af:b6:
2b:0a:2a:04:a6:3a:b3:75:bf:39:37:75:2e:6e:6a:
b1:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:18:FD:B4:2C:15:18:70:39:E4:C7:6F:08:96:4D:5E:62:49:1E:81
X509v3 Authority Key Identifier:
keyid:AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:44:f6:56:cf:63:bf:d6:a0:37:cb:b9:ea:64:00:c3:65:80:
35:9b:ca:51:b3:32:6c:14:21:1c:dc:77:cc:ec:cb:88:a4:70:
24:6c:2e:eb:28:fc:1a:80:77:ba:ef:02:4b:ca:a2:64:78:4d:
07:a0:14:79:50:65:4a:93:09:e9:4d:75:4a:87:34:62:d1:4c:
69:f6:a9:57:0b:e3:b7:27:a2:6f:38:23:d5:b9:6d:92:2c:f4:
bb:fe:ba:5d:81:5b:88:7e:e0:1c:64:83:e1:7f:4a:48:4a:2f:
08:44:27:24:7a:5c:cb:2c:20:85:0f:cc:f5:cc:17:d6:31:8d:
9a:17:67:f4:f3:8f:5d:2b:d4:5e:e2:4a:b3:a9:eb:a1:9c:60:
a4:db:2d:0d:40:be:68:f4:9f:90:8b:8a:e7:f0:a8:3e:c8:51:
6f:96:3a:0a:64:b5:0a:5c:ce:84:35:82:97:dd:e1:fa:27:73:
8c:69:9b:16:48:b6:8d:1d:04:b6:f3:a6:37:01:79:5a:85:da:
18:5d:15:6a:02:c2:31:19:1b:c0:f4:a7:54:e3:af:35:9e:47:
b1:78:83:ee:47:a3:6c:d4:0f:74:97:2e:0f:f6:6b:9a:22:c4:
86:4c:02:b8:ac:cf:0a:95:88:7d:3a:d2:b8:d3:9c:02:f1:2e:
0b:d0:24:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY8+M0g4a/T3jP65YUN1z2DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkZDM1MzkzMzY3NGE1NjA4ZjZkMWVlMmRhYjRmNjRjOGJm
ZjhmMzkwHhcNMjUwNDE2MDUwMTAwWhcNMjUwNDE3MDUwMTAwWjAzMTEwLwYDVQQD
EyhkNTE4ZmRiNDJjMTUxODcwMzllNGM3NmYwODk2NGQ1ZTYyNDkxZTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1pQTXW/WJZTAr7e8wf2NY86MFGWS
ktXyo72DToOrddUBU8wptXzmpWQieTE4vLz7vTxpVVTSk2UZNpM7JrYT4JtJXYc3
1CmyOOJavPPc76hPbc2pUfXcY3+ZRKpuc7HzRozKtt+JHyV/HKKoikQasl9Ca+3l
rxRFJ8VRwtmh7SLR1IcmKT/SWi7qeKSghTxlOpbHlEsUQc2pacQnv+GFgzypPJ8o
v/pSMkFUKekOCSdlnGCbkC4W5AMv2mIei6M3L7ljaJ95GSZYiI3W89Jwajg239e4
6DC+aysQ434+BNqVM0jbvGzOwtqE0PbJr7YrCioEpjqzdb85N3UubmqxYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNUY/bQsFRhwOeTHbwiWTV5iSR6BMB8GA1UdIwQY
MBaAFK3TU5M2dKVgj20e4tq09kyL/485MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy80OGI0MDctNmQ5NC00OWFlLWEzZDgt
NzJjODMxMjg3NjFiLzEvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy80OGI0MDctNmQ5NC00OWFlLWEzZDgtNzJjODMxMjg3NjFi
LzEvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAikT2Vs9j
v9agN8u56mQAw2WANZvKUbMybBQhHNx3zOzLiKRwJGwu6yj8GoB3uu8CS8qiZHhN
B6AUeVBlSpMJ6U11Soc0YtFMafapVwvjtyeibzgj1bltkiz0u/66XYFbiH7gHGSD
4X9KSEovCEQnJHpcyywghQ/M9cwX1jGNmhdn9POPXSvUXuJKs6nroZxgpNstDUC+
aPSfkIuK5/CoPshRb5Y6CmS1ClzOhDWCl93h+idzjGmbFki2jR0EtvOmNwF5WoXa
GF0VagLCMRkbwPSnVOOvNZ5HsXiD7kejbNQPdJcuD/ZrmiLEhkwCuKzPCpWIfTrS
uNOcAvEuC9Akdg==
-----END CERTIFICATE-----
Generated at Wed Apr 16 09:29:44 2025 by rpki-client