Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
File: tDpxymDXTkXSuXSKsQZlKf0BM34.mft (raw, json)
Hash identifier: YZkIKs1nYSZmM5nQJu4/hheNJkJ3Hly+G876jkmE8pU=
Subject key identifier: F2:7F:42:6B:2D:BD:53:03:45:27:68:48:46:13:A7:26:A2:97:66:9B
Authority key identifier: B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
Certificate issuer: /CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Certificate serial: 01965538763CD197AA87F6F1423B8D90BDE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 22:01:25 +0000
Manifest this update: Sun 20 Apr 2025 22:01:25 +0000
Manifest next update: Mon 21 Apr 2025 22:01:25 +0000
Files and hashes: 1: M5_-d1GdbRA2RUGO5npOtRSNEB8.roa (hash: DYZ2j8UdvivRy1b6Q4G0ZdvY6U48+tpNnHP/gql8rCo=)
2: tDpxymDXTkXSuXSKsQZlKf0BM34.crl (hash: gWOkhZgNkls8KtxHggvVbIf7rjV0azQaRlu2oDzdMyQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:76:3c:d1:97:aa:87:f6:f1:42:3b:8d:90:bd:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Validity
Not Before: Apr 20 22:01:25 2025 GMT
Not After : Apr 21 22:01:25 2025 GMT
Subject: CN=f27f426b2dbd5303452768484613a726a297669b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:23:aa:e5:bb:ea:a7:37:c2:a8:a0:45:d2:db:
86:d6:ad:92:cf:1c:40:7e:4c:f5:5c:26:dd:a4:36:
8c:0d:aa:8d:83:7d:85:51:fd:b9:b9:23:44:05:e6:
c4:1c:86:6e:dc:2b:51:14:2c:76:f7:60:cf:71:21:
78:99:d0:4e:90:0c:25:e8:ab:bd:ef:5b:82:ea:d5:
4f:7d:84:02:e5:4e:ac:ba:14:14:7a:78:de:51:78:
29:3f:b6:6c:6a:24:01:78:f6:63:c8:0d:c1:97:1c:
9b:0a:76:be:36:38:8d:f7:ec:da:1e:27:b9:1a:c5:
49:f3:27:00:2c:e2:f9:04:aa:21:e4:76:14:73:42:
62:45:94:6d:3a:5f:5a:aa:e1:98:5c:c1:91:b4:23:
69:eb:53:c1:13:3d:30:57:94:d6:57:a7:d7:69:d0:
ec:e0:c9:ae:57:9c:c8:56:4d:31:5a:d8:47:e5:b8:
10:d7:e3:00:d3:8b:5a:06:75:ea:e6:52:e6:48:00:
eb:90:6b:1e:04:ce:f5:b0:15:5b:78:e0:cd:e6:fe:
59:df:18:81:e7:d8:91:67:06:f8:d2:a3:98:e3:85:
e9:91:86:38:f6:9a:4c:ec:d0:ce:dd:eb:ac:07:98:
86:7c:95:ba:a9:fa:a7:f1:ad:49:c7:7d:34:7b:b0:
35:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:7F:42:6B:2D:BD:53:03:45:27:68:48:46:13:A7:26:A2:97:66:9B
X509v3 Authority Key Identifier:
keyid:B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:3e:86:7f:78:4c:8f:e4:b4:d4:0c:94:68:91:db:a7:f3:80:
17:3a:ff:f1:d6:54:73:1d:27:89:d6:32:68:20:c6:cf:90:aa:
f9:76:da:e7:53:24:44:fd:cd:db:b3:81:4f:92:aa:cb:72:5d:
fe:89:92:3a:e0:ce:dd:56:62:8f:0c:1c:0d:ac:29:99:b9:3b:
1b:1d:cb:6d:b5:d3:ea:4d:38:b3:e0:5a:c9:fa:a6:c6:53:59:
53:08:28:e1:02:77:92:6a:85:5c:fc:7e:1f:89:2f:db:56:dd:
bc:80:78:e9:f9:ce:d5:62:51:c3:1b:12:20:f7:a4:9b:6d:2a:
37:53:75:58:ce:f2:74:6f:0c:f9:19:a6:07:ae:0b:5e:8d:d6:
80:1b:9d:e2:c0:e5:b1:2f:b2:2b:50:4d:88:3e:08:3c:2c:0a:
ac:33:59:dd:48:c8:e6:b2:aa:96:93:9b:f5:ca:f0:cf:4a:fa:
15:43:48:5c:f2:28:86:a8:83:2a:07:7d:67:d5:e6:c0:5c:91:
93:e4:72:03:4f:ea:f8:54:b6:38:47:f6:0d:b7:04:1d:f2:d4:
b9:12:e0:7d:7b:44:2f:57:33:ba:ef:15:5a:4f:7d:5a:9e:76:
1d:45:4c:7a:8f:50:db:99:ac:b7:88:3f:ab:57:97:77:68:2f:
7f:48:73:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVOHY80Zeqh/bxQjuNkL3oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0M2E3MWNhNjBkNzRlNDVkMmI5NzQ4YWIxMDY2NTI5ZmQw
MTMzN2UwHhcNMjUwNDIwMjIwMTI1WhcNMjUwNDIxMjIwMTI1WjAzMTEwLwYDVQQD
EyhmMjdmNDI2YjJkYmQ1MzAzNDUyNzY4NDg0NjEzYTcyNmEyOTc2NjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCOq5bvqpzfCqKBF0tuG1q2SzxxA
fkz1XCbdpDaMDaqNg32FUf25uSNEBebEHIZu3CtRFCx292DPcSF4mdBOkAwl6Ku9
71uC6tVPfYQC5U6suhQUenjeUXgpP7ZsaiQBePZjyA3BlxybCna+NjiN9+zaHie5
GsVJ8ycALOL5BKoh5HYUc0JiRZRtOl9aquGYXMGRtCNp61PBEz0wV5TWV6fXadDs
4MmuV5zIVk0xWthH5bgQ1+MA04taBnXq5lLmSADrkGseBM71sBVbeODN5v5Z3xiB
59iRZwb40qOY44XpkYY49ppM7NDO3eusB5iGfJW6qfqn8a1Jx300e7A18QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPJ/QmstvVMDRSdoSEYTpyail2abMB8GA1UdIwQY
MBaAFLQ6ccpg105F0rl0irEGZSn9ATN+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERweHltRFhUa1hTdVhTS3NRWmxLZjBCTTM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS84Y2VmNmYtZmUwOS00ZWY2LThiZjEt
Nzk4YWM0OTI4ZWQ2LzEvdERweHltRFhUa1hTdVhTS3NRWmxLZjBCTTM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS84Y2VmNmYtZmUwOS00ZWY2LThiZjEtNzk4YWM0OTI4ZWQ2
LzEvdERweHltRFhUa1hTdVhTS3NRWmxLZjBCTTM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqD6Gf3hM
j+S01AyUaJHbp/OAFzr/8dZUcx0nidYyaCDGz5Cq+Xba51MkRP3N27OBT5Kqy3Jd
/omSOuDO3VZijwwcDawpmbk7Gx3LbbXT6k04s+BayfqmxlNZUwgo4QJ3kmqFXPx+
H4kv21bdvIB46fnO1WJRwxsSIPekm20qN1N1WM7ydG8M+RmmB64LXo3WgBud4sDl
sS+yK1BNiD4IPCwKrDNZ3UjI5rKqlpOb9crwz0r6FUNIXPIohqiDKgd9Z9XmwFyR
k+RyA0/q+FS2OEf2DbcEHfLUuRLgfXtEL1czuu8VWk99Wp52HUVMeo9Q25mst4g/
q1eXd2gvf0hziQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 04:23:28 2025 by rpki-client