Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
File: L42NDO68zXW2BrpJaPXHlG6NR8A.mft (raw, json)
Hash identifier: f7x+9Z1tmXitieHKspIeRDYMszj0lx3xzQjs1PbS3lM=
Subject key identifier: 11:19:8C:CA:D6:2E:53:60:36:73:AF:DC:80:77:3A:C0:7F:FA:DF:94
Authority key identifier: 2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
Certificate issuer: /CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Certificate serial: 01958BF261940A0968D02D041342F27C5B40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
Manifest number: 0A83
Signing time: Wed 12 Mar 2025 20:01:12 +0000
Manifest this update: Wed 12 Mar 2025 20:01:12 +0000
Manifest next update: Thu 13 Mar 2025 20:01:12 +0000
Files and hashes: 1: KvErQkIa-7bptS15YPSXyRA9CSc.roa (hash: oCFio8e2SnoXuYWAJDUSo/+OUQCG41H/KpmIERPwk3M=)
2: L42NDO68zXW2BrpJaPXHlG6NR8A.crl (hash: +aYYeIbmqWPvz47yoJPwf5CcIDEu2IndbAty+eFsVUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:f2:61:94:0a:09:68:d0:2d:04:13:42:f2:7c:5b:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f8d8d0ceebccd75b606ba4968f5c7946e8d47c0
Validity
Not Before: Mar 12 20:01:12 2025 GMT
Not After : Mar 13 20:01:12 2025 GMT
Subject: CN=11198ccad62e53603673afdc80773ac07ffadf94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:72:77:d5:f2:53:c7:c9:ae:d1:be:22:08:72:
c9:0e:f3:92:b1:e4:13:fc:e2:a4:92:77:85:f6:ca:
74:dd:a9:bb:bb:27:75:67:59:6c:54:9b:f0:64:72:
c8:74:bb:d3:bd:75:aa:96:fe:46:92:b8:24:82:b2:
4b:33:d0:ff:be:d1:69:f8:23:2e:b3:18:d0:19:56:
24:e1:26:57:30:ed:fb:ec:91:8e:b7:04:8a:a3:66:
f1:69:2f:04:6b:41:ca:4a:07:4c:76:4f:be:e5:c1:
06:9a:a4:0c:13:2c:74:f8:b6:c9:41:a5:10:46:3e:
a3:6b:20:ff:02:81:f9:8c:d3:9a:80:22:36:ad:26:
b6:17:73:3f:e7:ed:49:79:26:51:0f:81:36:c8:14:
d1:c7:99:c3:40:56:ed:1c:c6:51:f9:0d:df:3e:95:
f9:52:22:f0:13:61:ba:92:ef:dc:d0:bd:7b:c4:a1:
42:9f:ab:0c:5c:22:78:87:35:6b:ba:af:03:25:ab:
56:64:c9:31:5b:11:a8:df:a9:5d:1f:83:df:b5:e3:
45:eb:8e:48:f4:59:07:88:b5:73:87:8c:bc:4a:e4:
44:36:be:37:4f:40:73:ad:55:55:24:1e:1b:88:cf:
f8:17:d5:2a:a7:e5:9a:de:8a:08:0b:c0:a3:6a:d1:
fb:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:19:8C:CA:D6:2E:53:60:36:73:AF:DC:80:77:3A:C0:7F:FA:DF:94
X509v3 Authority Key Identifier:
keyid:2F:8D:8D:0C:EE:BC:CD:75:B6:06:BA:49:68:F5:C7:94:6E:8D:47:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L42NDO68zXW2BrpJaPXHlG6NR8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f3bbd-4a61-42c5-8b07-3cbd5257b03e/1/L42NDO68zXW2BrpJaPXHlG6NR8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:bf:fa:ea:4f:9c:5c:23:55:07:89:3d:70:15:63:14:41:89:
3a:08:68:24:02:48:10:f9:ec:28:83:1b:b5:a6:ac:89:89:20:
2f:77:2f:19:5f:9a:71:f5:2f:1c:7d:1f:c4:c9:a2:22:e5:05:
72:52:75:44:f4:2e:dc:54:19:69:23:4c:31:4d:d3:ca:7d:50:
c4:58:13:9d:a3:92:6e:1d:73:88:60:19:35:5e:11:d8:ec:6b:
f7:bb:5b:f4:bc:c8:0e:a7:e7:23:61:90:17:22:ae:52:7f:3f:
58:5b:f1:c2:fa:b3:c8:d7:ce:21:cc:15:85:ab:bc:f6:e7:02:
e9:80:6c:e4:e4:38:09:10:cc:96:8c:f6:7a:bf:95:d0:0a:f9:
15:ab:0c:ea:9c:40:39:af:fe:ce:e0:bd:c5:4a:6d:fe:d2:99:
c0:00:dd:9e:f2:86:81:52:cc:b1:48:77:db:7e:77:b5:0e:6b:
7e:64:1f:39:d9:ff:05:c2:b6:2a:8a:2b:98:04:5e:32:80:fd:
6d:ef:79:81:cc:9b:67:fa:43:08:65:f6:07:26:e3:17:4d:70:
a6:d5:06:ba:91:c6:0c:6a:b5:b4:dd:63:bd:37:24:01:3f:11:
77:ac:f6:4b:7a:f2:66:a0:db:05:95:d3:c1:aa:c6:ed:a0:a9:
ce:f0:bd:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWL8mGUCglo0C0EE0LyfFtAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmOGQ4ZDBjZWViY2NkNzViNjA2YmE0OTY4ZjVjNzk0NmU4
ZDQ3YzAwHhcNMjUwMzEyMjAwMTEyWhcNMjUwMzEzMjAwMTEyWjAzMTEwLwYDVQQD
EygxMTE5OGNjYWQ2MmU1MzYwMzY3M2FmZGM4MDc3M2FjMDdmZmFkZjk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2XJ31fJTx8mu0b4iCHLJDvOSseQT
/OKkkneF9sp03am7uyd1Z1lsVJvwZHLIdLvTvXWqlv5GkrgkgrJLM9D/vtFp+CMu
sxjQGVYk4SZXMO377JGOtwSKo2bxaS8Ea0HKSgdMdk++5cEGmqQMEyx0+LbJQaUQ
Rj6jayD/AoH5jNOagCI2rSa2F3M/5+1JeSZRD4E2yBTRx5nDQFbtHMZR+Q3fPpX5
UiLwE2G6ku/c0L17xKFCn6sMXCJ4hzVruq8DJatWZMkxWxGo36ldH4PfteNF645I
9FkHiLVzh4y8SuRENr43T0BzrVVVJB4biM/4F9Uqp+Wa3ooIC8CjatH7gwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBEZjMrWLlNgNnOv3IB3OsB/+t+UMB8GA1UdIwQY
MBaAFC+NjQzuvM11tga6SWj1x5RujUfAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDQyTkRPNjh6WFcyQnJwSmFQWEhsRzZOUjhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni80ZjNiYmQtNGE2MS00MmM1LThiMDct
M2NiZDUyNTdiMDNlLzEvTDQyTkRPNjh6WFcyQnJwSmFQWEhsRzZOUjhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni80ZjNiYmQtNGE2MS00MmM1LThiMDctM2NiZDUyNTdiMDNl
LzEvTDQyTkRPNjh6WFcyQnJwSmFQWEhsRzZOUjhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI7/66k+c
XCNVB4k9cBVjFEGJOghoJAJIEPnsKIMbtaasiYkgL3cvGV+acfUvHH0fxMmiIuUF
clJ1RPQu3FQZaSNMMU3Tyn1QxFgTnaOSbh1ziGAZNV4R2Oxr97tb9LzIDqfnI2GQ
FyKuUn8/WFvxwvqzyNfOIcwVhau89ucC6YBs5OQ4CRDMloz2er+V0Ar5FasM6pxA
Oa/+zuC9xUpt/tKZwADdnvKGgVLMsUh32353tQ5rfmQfOdn/BcK2KoormAReMoD9
be95gcybZ/pDCGX2BybjF01wptUGupHGDGq1tN1jvTckAT8Rd6z2S3ryZqDbBZXT
warG7aCpzvC9jg==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:30:03 2025 by rpki-client