Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
File: cNySeAi5pn58uhunTvtb9sEsiVs.mft (raw, json)
Hash identifier: p9bPjM80PvGa0bxooGPto2AmJKp5LJcxAr0DkxJo2es=
Subject key identifier: BE:5B:3E:1E:38:90:32:FA:81:D8:E7:B7:EC:B7:5E:78:11:69:E9:93
Authority key identifier: 70:DC:92:78:08:B9:A6:7E:7C:BA:1B:A7:4E:FB:5B:F6:C1:2C:89:5B
Certificate issuer: /CN=70dc927808b9a67e7cba1ba74efb5bf6c12c895b
Certificate serial: 019610FC30DB1B09A9EEFEA9CFBF8B3086B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNySeAi5pn58uhunTvtb9sEsiVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
Manifest number: 14D7
Signing time: Mon 07 Apr 2025 16:01:25 +0000
Manifest this update: Mon 07 Apr 2025 16:01:25 +0000
Manifest next update: Tue 08 Apr 2025 16:01:25 +0000
Files and hashes: 1: BAJtDqJxaWUqQAfiueye7uuRaiw.roa (hash: xliJwPehY40wkTea7xdHZ3Ii3nZae+NEE66sFETvyTA=)
2: cNySeAi5pn58uhunTvtb9sEsiVs.crl (hash: bttcq/Jp96t9c3cv3tYHeVb3sZWeUq9o3XZiIxTJcwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNySeAi5pn58uhunTvtb9sEsiVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:fc:30:db:1b:09:a9:ee:fe:a9:cf:bf:8b:30:86:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dc927808b9a67e7cba1ba74efb5bf6c12c895b
Validity
Not Before: Apr 7 16:01:25 2025 GMT
Not After : Apr 8 16:01:25 2025 GMT
Subject: CN=be5b3e1e389032fa81d8e7b7ecb75e781169e993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fc:ef:e6:8d:b9:d7:e4:03:7a:7f:ce:ce:a0:
31:f3:6b:09:6a:d7:c0:da:f2:63:4f:a1:eb:af:39:
fc:30:cf:8b:93:18:e8:f1:23:77:4e:b2:45:5f:7d:
a5:93:84:1c:2c:f0:b0:f7:3f:c3:23:b9:ed:8b:6d:
7d:bb:87:02:29:2d:bd:82:f9:af:f1:8b:0e:d3:5b:
5c:92:5c:82:23:5c:69:12:34:76:85:65:6b:1f:67:
42:98:65:0a:ec:a1:11:63:db:52:eb:0c:59:28:79:
fb:d9:5c:77:db:bb:c9:83:9d:87:20:f4:21:1e:f9:
97:22:ce:e2:bd:05:32:1b:69:93:82:5a:c4:09:6a:
8e:2d:d3:80:2a:03:52:dd:7f:f1:be:be:b1:37:d3:
07:c8:3e:d8:5d:10:0e:6a:84:2c:0c:b9:ad:ed:0a:
72:44:90:18:35:fd:b9:7d:2d:d0:f9:9e:ee:04:41:
65:9a:27:fb:93:77:fb:c0:27:10:48:f0:ad:48:de:
2f:c0:15:09:aa:c6:06:71:53:39:e9:23:39:aa:9f:
14:57:d4:ed:2c:b7:3c:56:9c:b5:fa:48:9e:fb:94:
00:53:81:a1:b0:da:10:62:0c:63:ef:89:6d:74:9f:
a4:24:30:b4:40:5b:c8:97:81:bf:f4:87:03:af:f9:
3a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5B:3E:1E:38:90:32:FA:81:D8:E7:B7:EC:B7:5E:78:11:69:E9:93
X509v3 Authority Key Identifier:
keyid:70:DC:92:78:08:B9:A6:7E:7C:BA:1B:A7:4E:FB:5B:F6:C1:2C:89:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNySeAi5pn58uhunTvtb9sEsiVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88a580-5dc1-4c86-92c5-5eebb1259dc9/1/cNySeAi5pn58uhunTvtb9sEsiVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:97:32:27:f5:a5:b4:b7:d8:e6:94:a5:1b:0c:23:3c:ad:f2:
df:dd:78:16:3f:ac:7e:3d:8a:4c:6e:72:c1:da:7e:5a:30:8a:
3b:38:df:6a:34:96:e8:b5:e5:53:81:4e:d0:68:a8:65:75:09:
39:45:84:57:85:10:a9:3e:b4:02:cf:bf:c9:af:38:6a:2a:82:
f3:70:8d:cf:3a:ec:96:88:21:9f:91:ad:9f:ad:03:8c:db:d6:
1f:50:77:7f:1f:11:9b:5d:ce:57:4e:0e:c5:01:c9:fa:c3:df:
0d:95:f9:2f:68:4a:23:f0:5f:6a:71:e5:b0:c6:75:63:4e:c5:
5a:88:b8:3d:93:42:15:9f:b5:3d:95:a3:c5:ec:d4:0c:a9:55:
17:9e:eb:79:5b:20:b8:8e:84:32:eb:6b:77:df:0c:88:cb:f1:
6c:b0:ab:18:b7:3d:37:1d:51:52:3f:7e:5b:7c:7f:e7:93:68:
cb:48:63:30:b9:d8:5e:d5:7c:24:72:d4:18:c1:00:8f:b7:5b:
44:04:1f:78:c6:ed:37:6c:ad:32:4f:3e:7f:e9:ee:72:db:95:
b2:31:12:57:14:98:7c:f5:2c:07:73:be:b5:b0:f1:0a:a3:cb:
4d:18:00:36:77:5b:73:19:34:34:9a:ef:7a:86:9e:81:61:8a:
39:f3:c6:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYQ/DDbGwmp7v6pz7+LMIaxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZGM5Mjc4MDhiOWE2N2U3Y2JhMWJhNzRlZmI1YmY2YzEy
Yzg5NWIwHhcNMjUwNDA3MTYwMTI1WhcNMjUwNDA4MTYwMTI1WjAzMTEwLwYDVQQD
EyhiZTViM2UxZTM4OTAzMmZhODFkOGU3YjdlY2I3NWU3ODExNjllOTkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4/zv5o251+QDen/OzqAx82sJatfA
2vJjT6Hrrzn8MM+Lkxjo8SN3TrJFX32lk4QcLPCw9z/DI7nti219u4cCKS29gvmv
8YsO01tcklyCI1xpEjR2hWVrH2dCmGUK7KERY9tS6wxZKHn72Vx327vJg52HIPQh
HvmXIs7ivQUyG2mTglrECWqOLdOAKgNS3X/xvr6xN9MHyD7YXRAOaoQsDLmt7Qpy
RJAYNf25fS3Q+Z7uBEFlmif7k3f7wCcQSPCtSN4vwBUJqsYGcVM56SM5qp8UV9Tt
LLc8Vpy1+kie+5QAU4GhsNoQYgxj74ltdJ+kJDC0QFvIl4G/9IcDr/k6WQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL5bPh44kDL6gdjnt+y3XngRaemTMB8GA1UdIwQY
MBaAFHDckngIuaZ+fLobp077W/bBLIlbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY055U2VBaTVwbjU4dWh1blR2dGI5c0VzaVZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy84OGE1ODAtNWRjMS00Yzg2LTkyYzUt
NWVlYmIxMjU5ZGM5LzEvY055U2VBaTVwbjU4dWh1blR2dGI5c0VzaVZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy84OGE1ODAtNWRjMS00Yzg2LTkyYzUtNWVlYmIxMjU5ZGM5
LzEvY055U2VBaTVwbjU4dWh1blR2dGI5c0VzaVZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkZcyJ/Wl
tLfY5pSlGwwjPK3y3914Fj+sfj2KTG5ywdp+WjCKOzjfajSW6LXlU4FO0GioZXUJ
OUWEV4UQqT60As+/ya84aiqC83CNzzrsloghn5Gtn60DjNvWH1B3fx8Rm13OV04O
xQHJ+sPfDZX5L2hKI/BfanHlsMZ1Y07FWoi4PZNCFZ+1PZWjxezUDKlVF57reVsg
uI6EMutrd98MiMvxbLCrGLc9Nx1RUj9+W3x/55Noy0hjMLnYXtV8JHLUGMEAj7db
RAQfeMbtN2ytMk8+f+nuctuVsjESVxSYfPUsB3O+tbDxCqPLTRgANndbcxk0NJrv
eoaegWGKOfPGwg==
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:13:13 2025 by rpki-client