Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json)
Hash identifier: F2jC9/d5iU3X5tYk+Kv13LlqxTWqGr6Ow1kv1vLU5to=
Subject key identifier: 29:10:4B:EB:C4:F2:50:68:E6:78:77:A4:7D:E2:9E:78:6B:06:C0:76
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 019635E3B0B7E56CC6C1557C9F796D2D24A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
Manifest number: 150B
Signing time: Mon 14 Apr 2025 20:00:36 +0000
Manifest this update: Mon 14 Apr 2025 20:00:36 +0000
Manifest next update: Tue 15 Apr 2025 20:00:36 +0000
Files and hashes: 1: 1-dpFpZ66BUopKTWddAy3aYd5Q58.roa (hash: a/nFyI+oVdi7douUuLnGlPqM2YOH9iXTA2Ltk7+EQUM=)
2: DL1hBwC058Ly5gbOYmTudqMnhLY.roa (hash: ZP95RnK2lnoKaBDaVLfKRWdtbqYZIJodq0FZ93fqmj4=)
3: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: Dy9ZDoe7p/ZzCDVV9RUYpwXqeZlA1OnsQZoubXrYxkQ=)
4: TSdQZeiJv87sxq_OJ-PJSQE8GTQ.roa (hash: zeHI0YzPke/O83NDkRPiKpR8/sA4EMZWB7tgWAf8HNc=)
5: YG4GH2kbor4nZ_HdlU4bXsM_ISU.roa (hash: orPHPnq001m59xqGhWWhOTcNNv+UhgU5D7ZAydlYwJ0=)
6: _YciLAUMll_l6Ad-S-3jEr-WUP0.roa (hash: YLNVgwBOiutPhe7HbfVw0eYS7E9cfJJEs9zT8+FOZFI=)
7: ct-_W27EwoC0fOGDJoYPaUOCh1k.roa (hash: Ry7d3ypfHQ+1XBY6nTPep5IZIfXf1osPEMavue76/1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 20:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:35:e3:b0:b7:e5:6c:c6:c1:55:7c:9f:79:6d:2d:24:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Apr 14 20:00:36 2025 GMT
Not After : Apr 15 20:00:36 2025 GMT
Subject: CN=29104bebc4f25068e67877a47de29e786b06c076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f4:05:6a:fb:87:fa:8a:44:ec:60:53:f7:c8:
46:c1:d5:13:ee:51:f4:1e:5c:39:46:11:41:9a:96:
d8:33:c1:3c:d7:9c:09:b5:67:05:7d:ec:81:61:48:
fd:8c:d5:41:8d:87:df:f1:04:ef:d4:8e:47:8e:5e:
88:3c:56:09:70:2f:ae:16:97:6a:ff:8f:16:29:b3:
80:71:37:23:6d:7f:ce:78:52:0f:c5:d7:07:17:8b:
bb:01:9c:12:0a:3b:29:82:ee:39:f5:ff:b4:85:eb:
63:60:a0:57:8b:26:48:13:21:ee:20:5d:de:c2:25:
a9:da:b2:83:93:76:52:d0:20:94:3c:36:5b:4c:01:
67:15:5f:28:ce:7e:e7:b6:84:0f:cd:9c:e4:d1:16:
37:71:f5:42:df:4f:56:85:a7:87:39:1f:89:cb:97:
1f:c3:37:c7:57:75:df:c3:25:7d:62:1c:ab:ec:e4:
f0:1d:34:31:29:c2:3a:cd:7c:e3:70:9f:1f:dd:04:
0f:ab:7d:8b:f8:23:65:9d:6c:96:e4:8d:dc:ca:45:
ae:05:c4:ea:a3:27:94:91:c1:30:ee:67:59:27:80:
2f:c6:04:ee:90:cb:ff:4f:6e:f6:34:ad:31:24:9f:
84:f5:9e:d6:16:b1:f6:b3:03:cb:b2:95:b4:a1:a1:
29:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:10:4B:EB:C4:F2:50:68:E6:78:77:A4:7D:E2:9E:78:6B:06:C0:76
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:9d:3b:48:be:af:63:61:f2:08:2c:e8:bf:f6:64:89:1a:69:
fa:d3:97:34:c4:c6:22:a4:7c:08:19:c2:8f:1d:d5:b9:70:dc:
31:13:56:9d:10:e5:ed:b4:6c:ff:4d:48:04:3a:90:b2:3d:42:
65:03:fc:de:4c:76:41:7b:54:2b:b4:2a:39:4e:95:94:99:f9:
f7:51:43:8a:93:6f:cc:76:e1:be:e5:e9:d7:21:99:4e:ad:f1:
53:ed:38:63:47:2d:5f:d6:ec:5a:52:a5:5f:9e:e0:e2:96:ce:
1d:4f:27:e6:7d:14:f8:b0:5b:57:e3:0c:18:3d:0f:cf:6c:c8:
24:db:d6:e3:5f:98:fc:dd:73:75:4d:f0:92:0e:68:4a:55:76:
f1:c9:d0:51:95:47:3e:ee:60:df:78:b4:5c:b5:a1:6b:86:e5:
a9:f6:cf:83:24:6b:b2:98:f7:c9:8b:9d:ea:f4:40:72:1c:47:
65:64:1b:da:67:f7:a0:13:e5:00:80:7f:b1:2a:88:4c:c1:8e:
67:fa:7b:0a:80:5d:c9:1d:6f:33:66:61:44:00:40:58:f9:95:
f0:1b:bc:ac:92:b2:bc:0a:de:c5:46:97:a7:b5:69:18:78:5d:
ab:1e:0e:83:00:ec:ea:6c:bc:3f:6c:d7:43:e0:1a:dc:c0:ee:
44:fb:cc:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY147C35WzGwVV8n3ltLSSoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiNTI5YTRkMjJmYWVmMjMxMzVkNmVmZjg5MTIyNjY2MjNj
NDkyNTUwHhcNMjUwNDE0MjAwMDM2WhcNMjUwNDE1MjAwMDM2WjAzMTEwLwYDVQQD
EygyOTEwNGJlYmM0ZjI1MDY4ZTY3ODc3YTQ3ZGUyOWU3ODZiMDZjMDc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vQFavuH+opE7GBT98hGwdUT7lH0
Hlw5RhFBmpbYM8E815wJtWcFfeyBYUj9jNVBjYff8QTv1I5Hjl6IPFYJcC+uFpdq
/48WKbOAcTcjbX/OeFIPxdcHF4u7AZwSCjspgu459f+0hetjYKBXiyZIEyHuIF3e
wiWp2rKDk3ZS0CCUPDZbTAFnFV8ozn7ntoQPzZzk0RY3cfVC309WhaeHOR+Jy5cf
wzfHV3XfwyV9Yhyr7OTwHTQxKcI6zXzjcJ8f3QQPq32L+CNlnWyW5I3cykWuBcTq
oyeUkcEw7mdZJ4AvxgTukMv/T272NK0xJJ+E9Z7WFrH2swPLspW0oaEpoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCkQS+vE8lBo5nh3pH3innhrBsB2MB8GA1UdIwQY
MBaAFEtSmk0i+u8jE11u/4kSJmYjxJJVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8xZDliMDUtZWM2MS00YzMzLWEwOTct
MzZhZTc2ZWU5ODNlLzEvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8xZDliMDUtZWM2MS00YzMzLWEwOTctMzZhZTc2ZWU5ODNl
LzEvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALp07SL6v
Y2HyCCzov/ZkiRpp+tOXNMTGIqR8CBnCjx3VuXDcMRNWnRDl7bRs/01IBDqQsj1C
ZQP83kx2QXtUK7QqOU6VlJn591FDipNvzHbhvuXp1yGZTq3xU+04Y0ctX9bsWlKl
X57g4pbOHU8n5n0U+LBbV+MMGD0Pz2zIJNvW41+Y/N1zdU3wkg5oSlV28cnQUZVH
Pu5g33i0XLWha4blqfbPgyRrspj3yYud6vRAchxHZWQb2mf3oBPlAIB/sSqITMGO
Z/p7CoBdyR1vM2ZhRABAWPmV8Bu8rJKyvArexUaXp7VpGHhdqx4OgwDs6my8P2zX
Q+Aa3MDuRPvMIw==
-----END CERTIFICATE-----
Generated at Tue Apr 15 04:17:57 2025 by rpki-client