Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
File: cF5128zl_N2R2KmeWhssmVuBJ3U.mft (raw, json)
Hash identifier: pOEkQKOgV8dteVYDz6Wc6tgjIML8JYK6llkjMp0C33w=
Subject key identifier: AF:93:87:D2:FA:3D:E8:C8:1D:58:73:97:D4:17:E2:CD:EA:04:E6:70
Authority key identifier: 70:5E:75:DB:CC:E5:FC:DD:91:D8:A9:9E:5A:1B:2C:99:5B:81:27:75
Certificate issuer: /CN=705e75dbcce5fcdd91d8a99e5a1b2c995b812775
Certificate serial: 01965DCD6A1139E4F870CAB2043AB4F27E47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
Manifest number: 1507
Signing time: Tue 22 Apr 2025 14:01:05 +0000
Manifest this update: Tue 22 Apr 2025 14:01:05 +0000
Manifest next update: Wed 23 Apr 2025 14:01:05 +0000
Files and hashes: 1: Y-ORdAusYkZsKOUTFP8lOiqiHAs.roa (hash: VsoWMS+G3RdpKa8Z+B6s882TzbmXTjisQIhsADrOhSU=)
2: cF5128zl_N2R2KmeWhssmVuBJ3U.crl (hash: QxV7Ze5wGcVNIs1CbzYWwFAo8bEeX8Ahj2gQPSndons=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:cd:6a:11:39:e4:f8:70:ca:b2:04:3a:b4:f2:7e:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705e75dbcce5fcdd91d8a99e5a1b2c995b812775
Validity
Not Before: Apr 22 14:01:05 2025 GMT
Not After : Apr 23 14:01:05 2025 GMT
Subject: CN=af9387d2fa3de8c81d587397d417e2cdea04e670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:29:14:ef:47:d8:fc:9d:cc:fb:b4:56:e4:3a:
ff:80:c8:b1:bb:a2:d1:0b:0f:a4:bf:8a:65:d2:16:
e0:8d:a1:ec:c0:7c:b6:8f:25:a3:44:cf:95:36:30:
80:2b:49:fd:07:86:b3:e9:b4:43:01:12:99:12:de:
83:4d:4e:3c:31:f0:17:b9:e7:c5:5a:30:e4:e5:cb:
86:31:1d:4d:de:7c:c2:48:63:c5:25:80:9e:8f:9c:
39:9d:ee:52:af:20:f7:93:71:7d:83:9b:5c:ad:a0:
78:89:4c:2c:19:89:5c:09:ac:bf:6e:21:2f:a7:61:
42:10:32:b8:dd:33:19:8d:9c:18:88:91:e2:42:90:
82:7a:1f:33:c5:e3:b9:da:28:e9:8e:26:3c:ba:01:
c6:27:f1:f9:35:77:b6:60:58:5a:de:77:be:bd:66:
05:e4:db:6c:13:88:5e:5c:5d:a6:2c:ec:33:da:0c:
11:02:68:30:b4:66:dd:df:d0:5e:4d:b2:7a:51:89:
36:bd:53:11:2c:62:d9:d0:3e:6a:ff:56:6d:d3:61:
48:a1:56:f6:f7:74:de:6a:37:7d:db:9c:45:9b:bb:
5c:04:5d:da:1a:31:b4:38:0e:b8:19:72:c7:eb:ed:
07:dc:e8:46:48:76:0c:76:4a:b6:a8:0f:94:8c:7a:
6d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:93:87:D2:FA:3D:E8:C8:1D:58:73:97:D4:17:E2:CD:EA:04:E6:70
X509v3 Authority Key Identifier:
keyid:70:5E:75:DB:CC:E5:FC:DD:91:D8:A9:9E:5A:1B:2C:99:5B:81:27:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:0f:ff:b2:21:36:06:ab:04:48:8e:40:b1:22:70:a5:08:95:
06:ca:f8:89:6e:a1:6a:c4:46:80:71:f0:e9:ab:7f:83:41:90:
5c:1e:64:d4:9a:db:cf:4f:a9:8d:9e:5c:aa:a9:94:9e:10:7b:
2d:76:bf:0d:9f:45:d4:46:95:c1:64:4f:a8:45:0a:81:37:33:
6b:2d:8a:47:db:01:fe:18:81:a5:e3:3c:82:16:2e:57:66:52:
75:15:6b:f2:12:1a:87:59:67:86:9d:b5:86:aa:6a:23:44:6a:
9a:40:92:51:d6:7c:1f:11:39:d2:57:3a:b7:96:b8:3e:b2:a2:
c2:ce:28:c8:07:ee:bf:d8:e5:1a:63:d3:86:f1:14:c1:56:e3:
21:a7:3e:45:55:0f:3d:88:6e:9b:88:09:97:5d:93:f5:84:a8:
b7:45:3c:46:33:b7:f3:d6:7a:4e:43:e6:ce:62:c6:51:14:f6:
38:2a:42:69:c8:f6:e8:48:e4:ec:ed:77:a7:e1:25:80:80:73:
8e:ed:15:02:a8:a6:f5:eb:3a:7d:32:69:80:86:67:20:f4:15:
bc:93:92:60:f7:a1:7b:f9:1e:89:37:55:7b:13:5d:34:01:61:
b2:03:df:8a:96:67:75:2a:c0:49:68:eb:7e:79:3a:d6:4a:68:
74:45:14:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZdzWoROeT4cMqyBDq08n5HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNWU3NWRiY2NlNWZjZGQ5MWQ4YTk5ZTVhMWIyYzk5NWI4
MTI3NzUwHhcNMjUwNDIyMTQwMTA1WhcNMjUwNDIzMTQwMTA1WjAzMTEwLwYDVQQD
EyhhZjkzODdkMmZhM2RlOGM4MWQ1ODczOTdkNDE3ZTJjZGVhMDRlNjcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSkU70fY/J3M+7RW5Dr/gMixu6LR
Cw+kv4pl0hbgjaHswHy2jyWjRM+VNjCAK0n9B4az6bRDARKZEt6DTU48MfAXuefF
WjDk5cuGMR1N3nzCSGPFJYCej5w5ne5SryD3k3F9g5tcraB4iUwsGYlcCay/biEv
p2FCEDK43TMZjZwYiJHiQpCCeh8zxeO52ijpjiY8ugHGJ/H5NXe2YFha3ne+vWYF
5NtsE4heXF2mLOwz2gwRAmgwtGbd39BeTbJ6UYk2vVMRLGLZ0D5q/1Zt02FIoVb2
93Teajd925xFm7tcBF3aGjG0OA64GXLH6+0H3OhGSHYMdkq2qA+UjHptAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK+Th9L6PejIHVhzl9QX4s3qBOZwMB8GA1UdIwQY
MBaAFHBeddvM5fzdkdipnlobLJlbgSd1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0Y1MTI4emxfTjJSMkttZVdoc3NtVnVCSjNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9jMWY0NDgtODgwOC00YTJmLWJmZmEt
ZjhiNDhiYWNjZDliLzEvY0Y1MTI4emxfTjJSMkttZVdoc3NtVnVCSjNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9jMWY0NDgtODgwOC00YTJmLWJmZmEtZjhiNDhiYWNjZDli
LzEvY0Y1MTI4emxfTjJSMkttZVdoc3NtVnVCSjNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArQ//siE2
BqsESI5AsSJwpQiVBsr4iW6hasRGgHHw6at/g0GQXB5k1Jrbz0+pjZ5cqqmUnhB7
LXa/DZ9F1EaVwWRPqEUKgTczay2KR9sB/hiBpeM8ghYuV2ZSdRVr8hIah1lnhp21
hqpqI0RqmkCSUdZ8HxE50lc6t5a4PrKiws4oyAfuv9jlGmPThvEUwVbjIac+RVUP
PYhum4gJl12T9YSot0U8RjO389Z6TkPmzmLGURT2OCpCacj26Ejk7O13p+ElgIBz
ju0VAqim9es6fTJpgIZnIPQVvJOSYPehe/keiTdVexNdNAFhsgPfipZndSrASWjr
fnk61kpodEUUKw==
-----END CERTIFICATE-----
Generated at Tue Apr 22 21:20:57 2025 by rpki-client