Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
File: DA96BN1ySaXRS33gVCpBlzgABsw.mft (raw, json)
Hash identifier: h7OFhCgI/qy0yS64foh6f49oRMpk7MtQm0pKIOwGy0Q=
Subject key identifier: 5E:F3:13:91:36:6B:76:F7:53:1F:5F:1D:4F:64:97:D6:7D:37:DF:60
Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
Certificate issuer: /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Certificate serial: 01963D9CE8660DE9788594C660B0189D194C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
Manifest number: 108F
Signing time: Wed 16 Apr 2025 08:00:15 +0000
Manifest this update: Wed 16 Apr 2025 08:00:15 +0000
Manifest next update: Thu 17 Apr 2025 08:00:15 +0000
Files and hashes: 1: DA96BN1ySaXRS33gVCpBlzgABsw.crl (hash: rDAQdyqP7fW7BZ4uZxba8MEgbIEV1ZtgXrYosv6h+Fo=)
2: Ub0-2eebJKS-_wvCTAHAPvwqWX4.roa (hash: 0xujblS4gzQTs2C+FBv84ZMPXRiL3fTGBn6jldT/5T8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3d:9c:e8:66:0d:e9:78:85:94:c6:60:b0:18:9d:19:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Validity
Not Before: Apr 16 08:00:15 2025 GMT
Not After : Apr 17 08:00:15 2025 GMT
Subject: CN=5ef31391366b76f7531f5f1d4f6497d67d37df60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:77:f5:f3:ef:c3:55:9f:50:d5:f5:a6:43:6e:
49:80:4b:78:91:9b:27:27:83:3d:76:7e:dc:4b:7c:
45:f4:9b:83:60:42:38:81:e7:f1:dd:17:b9:f8:d3:
b9:d3:fb:d3:9e:71:65:ee:70:ab:bb:e5:17:8f:1e:
0f:22:cf:3d:23:a4:40:9b:46:88:4a:84:7f:65:25:
f2:25:5f:21:55:4b:28:85:df:45:e8:47:87:fc:46:
3a:f3:c0:7c:89:78:f1:eb:57:4f:9d:02:d3:f5:91:
8e:48:02:45:d8:6b:b2:19:be:8d:9d:f3:13:02:67:
c0:7c:f6:3d:87:f8:28:b6:da:42:ad:3b:a1:36:9b:
1e:0c:3d:c0:5c:3c:2d:18:4f:42:85:8a:fc:8d:eb:
f3:51:81:8a:97:7f:1b:ee:24:7b:6c:38:cf:7c:ba:
c7:8c:3a:43:15:14:1e:b3:4e:07:ec:6e:c1:9e:c3:
41:fc:45:eb:22:d7:52:39:1e:2b:e4:ba:ea:59:f8:
be:86:92:64:53:44:b5:32:8c:4a:d3:c6:61:f5:c1:
22:68:61:64:10:88:f4:47:31:55:00:bf:19:b2:0b:
dd:8b:e5:32:79:0d:a7:9a:a3:32:2f:e9:f6:58:2b:
41:d5:fd:53:98:2e:a0:a7:c7:db:fe:d0:87:b5:d6:
0b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F3:13:91:36:6B:76:F7:53:1F:5F:1D:4F:64:97:D6:7D:37:DF:60
X509v3 Authority Key Identifier:
keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:95:e3:3f:89:5a:01:6c:c9:a0:de:0e:ba:4a:68:0e:f1:e7:
aa:74:f6:a8:44:de:b2:77:8a:12:12:f2:86:52:5a:b9:58:fd:
b4:e9:6f:86:cb:54:03:02:dd:81:60:9a:bd:1f:3e:12:ed:90:
8b:c8:53:c4:56:8d:6d:c1:d3:f5:0c:fb:c6:ef:65:e4:11:28:
26:6c:9a:aa:b5:10:c1:35:d3:fc:b6:9d:0f:b2:08:fa:eb:76:
a9:13:92:15:ea:14:c1:0d:2c:1a:45:54:72:dd:87:52:50:14:
48:07:5f:06:82:9c:96:7a:c9:73:29:c8:20:a3:68:26:05:5d:
32:c3:2a:d6:1e:e2:f1:66:05:db:4d:06:6a:9b:cb:a7:20:25:
de:d1:90:86:7f:78:2d:3b:45:ba:27:bb:a0:2b:35:cc:27:81:
ba:44:7b:03:ee:58:b1:5b:51:50:87:2e:31:7f:e4:0b:47:5e:
e8:79:cd:2b:ed:09:9b:91:11:f5:b0:ba:98:ed:58:65:18:5f:
2c:fe:b6:f3:67:ac:91:06:dd:0b:c5:38:74:df:16:e0:de:14:
d5:6c:34:71:1c:80:a5:c3:f0:2b:3f:70:42:24:dc:d9:ef:59:
99:97:45:88:d1:ae:80:73:41:b1:6f:51:eb:77:2d:60:ba:ba:
8f:9e:78:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY9nOhmDel4hZTGYLAYnRlMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjMGY3YTA0ZGQ3MjQ5YTVkMTRiN2RlMDU0MmE0MTk3Mzgw
MDA2Y2MwHhcNMjUwNDE2MDgwMDE1WhcNMjUwNDE3MDgwMDE1WjAzMTEwLwYDVQQD
Eyg1ZWYzMTM5MTM2NmI3NmY3NTMxZjVmMWQ0ZjY0OTdkNjdkMzdkZjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13f18+/DVZ9Q1fWmQ25JgEt4kZsn
J4M9dn7cS3xF9JuDYEI4gefx3Re5+NO50/vTnnFl7nCru+UXjx4PIs89I6RAm0aI
SoR/ZSXyJV8hVUsohd9F6EeH/EY688B8iXjx61dPnQLT9ZGOSAJF2GuyGb6NnfMT
AmfAfPY9h/gottpCrTuhNpseDD3AXDwtGE9ChYr8jevzUYGKl38b7iR7bDjPfLrH
jDpDFRQes04H7G7BnsNB/EXrItdSOR4r5LrqWfi+hpJkU0S1MoxK08Zh9cEiaGFk
EIj0RzFVAL8Zsgvdi+UyeQ2nmqMyL+n2WCtB1f1TmC6gp8fb/tCHtdYLLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF7zE5E2a3b3Ux9fHU9kl9Z9N99gMB8GA1UdIwQY
MBaAFAwPegTdckml0Ut94FQqQZc4AAbMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREE5NkJOMXlTYVhSUzMzZ1ZDcEJsemdBQnN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8xMWRiMTQtZTg0NS00ZTRmLWE2OTIt
YTNjYmVmZmY3Nzc3LzEvREE5NkJOMXlTYVhSUzMzZ1ZDcEJsemdBQnN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8xMWRiMTQtZTg0NS00ZTRmLWE2OTItYTNjYmVmZmY3Nzc3
LzEvREE5NkJOMXlTYVhSUzMzZ1ZDcEJsemdBQnN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN5XjP4la
AWzJoN4OukpoDvHnqnT2qETesneKEhLyhlJauVj9tOlvhstUAwLdgWCavR8+Eu2Q
i8hTxFaNbcHT9Qz7xu9l5BEoJmyaqrUQwTXT/LadD7II+ut2qROSFeoUwQ0sGkVU
ct2HUlAUSAdfBoKclnrJcynIIKNoJgVdMsMq1h7i8WYF200GapvLpyAl3tGQhn94
LTtFuie7oCs1zCeBukR7A+5YsVtRUIcuMX/kC0de6HnNK+0Jm5ER9bC6mO1YZRhf
LP6282eskQbdC8U4dN8W4N4U1Ww0cRyApcPwKz9wQiTc2e9ZmZdFiNGugHNBsW9R
63ctYLq6j554kg==
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:09:06 2025 by rpki-client