Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
File: xTG2PRGmzC0c5p4TEch6waanBzM.mft (raw, json)
Hash identifier: 3gI4y9KB4fFS0/mKY3B6M0n1ZvrLNjz9meI6kbkkl+0=
Subject key identifier: C1:1C:8F:09:9C:1E:4E:CD:2C:71:1B:90:5E:11:3C:08:37:2D:3D:E2
Authority key identifier: C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
Certificate issuer: /CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Certificate serial: 01960C435E8C8B11B3BCE22C59F7616119FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
Manifest number: 0D5C
Signing time: Sun 06 Apr 2025 18:01:03 +0000
Manifest this update: Sun 06 Apr 2025 18:01:03 +0000
Manifest next update: Mon 07 Apr 2025 18:01:03 +0000
Files and hashes: 1: 3cKiOm3cqL9AuF9PS6f53tN4Gdg.roa (hash: HiF4cbbVkgMNvvCZGg36cGuMWinu6Z8X1/cmYfYlH0w=)
2: 7dlaDlkKgi4dAirWDUWBZGBGqcU.roa (hash: p1fbv33BP/4U3m5pS2Ws4rI2vfUa3r6QuSWQWQR+Iw4=)
3: xTG2PRGmzC0c5p4TEch6waanBzM.crl (hash: A2HQJDpkoWbASu1D4ktqS+j9CFDEA1/6dAGXTChnUcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0c:43:5e:8c:8b:11:b3:bc:e2:2c:59:f7:61:61:19:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Validity
Not Before: Apr 6 18:01:03 2025 GMT
Not After : Apr 7 18:01:03 2025 GMT
Subject: CN=c11c8f099c1e4ecd2c711b905e113c08372d3de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:31:6c:e4:c4:a8:aa:de:64:da:cd:ac:eb:1d:
c1:b6:c7:14:0f:fe:0d:c2:c9:64:0b:43:3d:98:9f:
7f:8a:31:21:70:53:83:b9:7e:cc:bc:ba:94:5a:cf:
92:04:8a:ef:d5:db:3a:2e:bd:af:b5:3b:04:59:31:
6e:88:34:88:4d:c6:9d:2d:06:5e:c3:05:5f:d5:99:
45:20:e7:9c:32:4b:fc:32:80:7d:ad:14:98:9e:ac:
d2:f4:69:2b:2f:c1:71:1b:c4:89:7c:d3:41:83:9d:
5d:4c:0b:f7:ef:31:16:d2:46:ef:49:3a:1e:a7:0b:
00:ca:ae:39:f0:dc:26:51:97:e1:61:ef:b9:f2:65:
94:7b:d0:a4:27:26:56:10:eb:bd:f5:05:47:8a:22:
be:c1:6e:b9:90:77:d3:b5:08:7e:76:8a:fb:2d:18:
f6:85:61:fd:43:fa:57:c2:4e:bd:d0:91:36:70:ac:
17:37:03:91:38:b4:41:af:da:44:62:b1:fa:50:bb:
87:81:19:29:c2:c7:c3:39:c8:45:ac:b0:7a:38:5c:
57:8e:71:23:19:41:00:48:b3:c7:b6:ee:0e:90:52:
b3:eb:b0:4b:20:67:47:eb:c2:a6:86:ec:f4:57:a5:
cd:45:1d:17:57:ef:85:74:7e:e9:25:9c:a3:46:cf:
32:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:1C:8F:09:9C:1E:4E:CD:2C:71:1B:90:5E:11:3C:08:37:2D:3D:E2
X509v3 Authority Key Identifier:
keyid:C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:33:13:68:b4:5e:5d:81:81:bb:9c:d0:fc:e9:5f:a0:7f:3d:
ca:e2:a4:0b:ff:30:7e:1d:10:00:58:d8:f3:52:d3:65:d3:f8:
ec:d8:bd:41:9d:0e:44:06:87:2f:cb:04:b0:f5:80:1f:2a:16:
42:ae:11:c0:7e:01:d7:4c:45:62:2b:9b:63:82:e5:5d:d7:b4:
3c:8d:7a:a5:98:82:d0:7e:af:18:8c:6a:72:19:3d:b1:fe:f5:
fc:7e:7e:15:d7:40:31:db:37:90:2e:17:fe:08:8a:3f:07:33:
2f:74:d5:53:e7:4f:32:22:9d:74:74:d9:c7:06:c6:8d:3a:ca:
59:64:fd:1f:33:0e:6d:83:4b:e1:fb:33:0c:d9:0b:e0:33:98:
98:cd:6f:f3:fb:f8:02:ba:a7:ab:62:3d:0d:7e:2f:70:cb:44:
ec:94:38:95:6c:68:93:b4:2a:e9:3d:45:74:8c:dc:aa:25:a7:
de:21:e2:2b:ed:2e:fd:9c:f6:cf:d3:e3:8a:4d:a3:31:27:f1:
9e:9e:1a:cc:f3:be:f5:93:af:af:d0:7a:85:c9:46:5f:83:02:
7d:c5:06:f0:e5:81:58:48:b3:42:bc:fa:9b:dd:2e:fc:98:08:
e9:33:56:47:e3:29:33:05:b9:21:f0:ee:bd:cd:20:d6:59:8c:
3d:6a:e7:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYMQ16MixGzvOIsWfdhYRn7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1MzFiNjNkMTFhNmNjMmQxY2U2OWUxMzExYzg3YWMxYTZh
NzA3MzMwHhcNMjUwNDA2MTgwMTAzWhcNMjUwNDA3MTgwMTAzWjAzMTEwLwYDVQQD
EyhjMTFjOGYwOTljMWU0ZWNkMmM3MTFiOTA1ZTExM2MwODM3MmQzZGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwDFs5MSoqt5k2s2s6x3BtscUD/4N
wslkC0M9mJ9/ijEhcFODuX7MvLqUWs+SBIrv1ds6Lr2vtTsEWTFuiDSITcadLQZe
wwVf1ZlFIOecMkv8MoB9rRSYnqzS9GkrL8FxG8SJfNNBg51dTAv37zEW0kbvSToe
pwsAyq458NwmUZfhYe+58mWUe9CkJyZWEOu99QVHiiK+wW65kHfTtQh+dor7LRj2
hWH9Q/pXwk690JE2cKwXNwOROLRBr9pEYrH6ULuHgRkpwsfDOchFrLB6OFxXjnEj
GUEASLPHtu4OkFKz67BLIGdH68Kmhuz0V6XNRR0XV++FdH7pJZyjRs8yOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMEcjwmcHk7NLHEbkF4RPAg3LT3iMB8GA1UdIwQY
MBaAFMUxtj0RpswtHOaeExHIesGmpwczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFRHMlBSR216QzBjNXA0VEVjaDZ3YWFuQnpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84Njg5OGUtZTZlNi00Yjg4LTg4MTEt
ZGI4Y2FiY2VlMjFlLzEveFRHMlBSR216QzBjNXA0VEVjaDZ3YWFuQnpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC84Njg5OGUtZTZlNi00Yjg4LTg4MTEtZGI4Y2FiY2VlMjFl
LzEveFRHMlBSR216QzBjNXA0VEVjaDZ3YWFuQnpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMzMTaLRe
XYGBu5zQ/OlfoH89yuKkC/8wfh0QAFjY81LTZdP47Ni9QZ0ORAaHL8sEsPWAHyoW
Qq4RwH4B10xFYiubY4LlXde0PI16pZiC0H6vGIxqchk9sf71/H5+FddAMds3kC4X
/giKPwczL3TVU+dPMiKddHTZxwbGjTrKWWT9HzMObYNL4fszDNkL4DOYmM1v8/v4
Arqnq2I9DX4vcMtE7JQ4lWxok7Qq6T1FdIzcqiWn3iHiK+0u/Zz2z9Pjik2jMSfx
np4azPO+9ZOvr9B6hclGX4MCfcUG8OWBWEizQrz6m90u/JgI6TNWR+MpMwW5IfDu
vc0g1lmMPWrnPA==
-----END CERTIFICATE-----
Generated at Mon Apr 7 02:12:31 2025 by rpki-client