Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
File: h5kgiOdlXLE0AgypWw5X1Oba9A8.mft (raw, json)
Hash identifier: 1ST9vO6gZ3wnnx5rAE8bFIxOMZHUz7/Jwvamatz9vsE=
Subject key identifier: 1C:08:A0:D0:C5:C6:B4:4F:FA:B6:62:A3:10:D5:31:9C:98:7E:BC:F6
Authority key identifier: 87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
Certificate issuer: /CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Certificate serial: 01965B034E7E536B1C6E9A4E409204928003
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
Manifest number: 1502
Signing time: Tue 22 Apr 2025 01:01:05 +0000
Manifest this update: Tue 22 Apr 2025 01:01:05 +0000
Manifest next update: Wed 23 Apr 2025 01:01:05 +0000
Files and hashes: 1: h5kgiOdlXLE0AgypWw5X1Oba9A8.crl (hash: Ux3XI//8abs805zMzH6WDoXk677rBumPEMLzHiy3JsE=)
2: vH-eK3MDkjfjQIWGcNruZ1gYj6o.roa (hash: X8Ll3xNOyDNsY8OoD7P2fm6g2ckrfD35bOMThe6H4RM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:03:4e:7e:53:6b:1c:6e:9a:4e:40:92:04:92:80:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Validity
Not Before: Apr 22 01:01:05 2025 GMT
Not After : Apr 23 01:01:05 2025 GMT
Subject: CN=1c08a0d0c5c6b44ffab662a310d5319c987ebcf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:03:4e:91:ab:72:c5:83:19:da:fd:de:57:3c:
0e:3d:b5:46:1b:1c:e5:f8:0b:6f:89:23:68:4d:68:
bd:d9:60:f1:17:9f:89:09:93:f4:c2:23:bd:0f:95:
df:2f:b6:7e:a0:cc:88:cb:6a:f4:69:87:38:d4:ef:
61:bf:d9:04:4c:21:1d:65:33:18:c5:20:cf:77:ad:
23:c1:c9:ee:97:bd:c6:10:7e:c4:14:97:b6:a5:37:
48:bd:ed:09:0b:85:f7:ba:d5:9b:da:c0:4f:d3:db:
d8:ca:b3:81:2a:fd:02:de:6a:4e:61:39:a3:c0:43:
6e:86:e6:8c:c2:15:d4:38:ba:db:7d:e0:94:37:38:
5e:a5:b6:10:bb:6a:58:f9:36:fd:ae:ff:eb:99:d8:
d2:b2:33:cd:95:0a:b0:f9:bf:92:ae:21:75:de:82:
30:9b:60:dd:08:8f:8f:37:79:ee:40:b7:3b:7d:5b:
0b:f2:98:a6:83:7d:c9:69:20:86:8b:d9:2c:44:6c:
2d:ce:09:42:83:6a:95:f2:fb:e9:f9:c0:2c:a3:2d:
f0:28:df:55:ac:9f:19:62:ec:12:cc:94:60:21:c9:
ee:96:4a:f3:21:04:71:52:0a:19:00:b4:ac:2e:8f:
9a:11:b9:08:bd:58:e6:c9:3b:94:78:dc:4c:43:99:
a3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:08:A0:D0:C5:C6:B4:4F:FA:B6:62:A3:10:D5:31:9C:98:7E:BC:F6
X509v3 Authority Key Identifier:
keyid:87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:49:11:69:fe:eb:c6:07:12:29:3d:97:94:d2:f3:1b:c1:65:
02:2e:61:e4:28:ee:9b:0e:75:52:b7:75:66:2f:2f:ee:91:2c:
59:94:27:1e:4b:d8:c4:d6:f0:f9:a6:b8:63:5c:5f:47:92:56:
3c:68:d5:a7:26:0a:49:d7:a1:cf:00:20:0c:7c:3a:bd:a1:7d:
30:9f:f3:3b:ab:f4:da:88:4e:4d:14:49:5a:b0:67:18:25:6b:
78:0c:07:fd:2b:94:7f:25:e6:5b:f8:f3:9d:76:84:fc:f0:bb:
b5:e6:cf:79:e3:2b:ee:d2:78:96:d6:e4:11:9a:1f:87:82:a8:
a2:74:8d:20:34:7c:50:d1:83:1d:71:b2:7e:55:8c:dd:cf:89:
57:5f:4c:ca:ee:b3:48:09:71:63:99:4b:e7:a2:25:c6:98:87:
fb:01:df:ba:07:2b:f1:7f:e5:e8:3d:6c:48:18:ec:aa:d7:c0:
23:2d:16:2a:ac:cf:f0:ab:63:59:ef:d9:39:0b:fb:57:7e:d1:
ad:21:24:8c:b1:4e:65:99:e2:1c:83:5e:57:c2:aa:2b:e4:49:
93:10:55:ba:73:32:83:f9:fd:21:e2:5b:e3:73:64:a2:b2:1b:
2b:50:26:72:41:3d:bb:ed:f8:09:41:63:25:06:cc:61:19:10:
9b:9a:fb:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZbA05+U2scbppOQJIEkoADMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3OTkyMDg4ZTc2NTVjYjEzNDAyMGNhOTViMGU1N2Q0ZTZk
YWY0MGYwHhcNMjUwNDIyMDEwMTA1WhcNMjUwNDIzMDEwMTA1WjAzMTEwLwYDVQQD
EygxYzA4YTBkMGM1YzZiNDRmZmFiNjYyYTMxMGQ1MzE5Yzk4N2ViY2Y2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgNOkatyxYMZ2v3eVzwOPbVGGxzl
+AtviSNoTWi92WDxF5+JCZP0wiO9D5XfL7Z+oMyIy2r0aYc41O9hv9kETCEdZTMY
xSDPd60jwcnul73GEH7EFJe2pTdIve0JC4X3utWb2sBP09vYyrOBKv0C3mpOYTmj
wENuhuaMwhXUOLrbfeCUNzhepbYQu2pY+Tb9rv/rmdjSsjPNlQqw+b+SriF13oIw
m2DdCI+PN3nuQLc7fVsL8pimg33JaSCGi9ksRGwtzglCg2qV8vvp+cAsoy3wKN9V
rJ8ZYuwSzJRgIcnulkrzIQRxUgoZALSsLo+aEbkIvVjmyTuUeNxMQ5mjvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBwIoNDFxrRP+rZioxDVMZyYfrz2MB8GA1UdIwQY
MBaAFIeZIIjnZVyxNAIMqVsOV9Tm2vQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9lMDgzMTgtMjk3NS00MTdhLWI4NjMt
ODVlYTYzYzI0NDc0LzEvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9lMDgzMTgtMjk3NS00MTdhLWI4NjMtODVlYTYzYzI0NDc0
LzEvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhUkRaf7r
xgcSKT2XlNLzG8FlAi5h5Cjumw51Urd1Zi8v7pEsWZQnHkvYxNbw+aa4Y1xfR5JW
PGjVpyYKSdehzwAgDHw6vaF9MJ/zO6v02ohOTRRJWrBnGCVreAwH/SuUfyXmW/jz
nXaE/PC7tebPeeMr7tJ4ltbkEZofh4KoonSNIDR8UNGDHXGyflWM3c+JV19Myu6z
SAlxY5lL56IlxpiH+wHfugcr8X/l6D1sSBjsqtfAIy0WKqzP8KtjWe/ZOQv7V37R
rSEkjLFOZZniHINeV8KqK+RJkxBVunMyg/n9IeJb43NkorIbK1AmckE9u+34CUFj
JQbMYRkQm5r72Q==
-----END CERTIFICATE-----
Generated at Tue Apr 22 05:14:14 2025 by rpki-client