Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
File: r7oQsKZ20-H6tWUoQw-siRoINlI.mft (raw, json)
Hash identifier: r+JpKhQb5ukELUhsDJJJfc+q/yYdqUaiUKk83TJ2di0=
Subject key identifier: C3:99:7E:93:FE:72:6E:84:C2:98:DE:15:30:AB:89:75:40:DA:0E:49
Authority key identifier: AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
Certificate issuer: /CN=afba10b0a676d3e1fab56528430fac891a083652
Certificate serial: 0196534957FE57FCA9494F0AA280771DB98F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 13:00:37 +0000
Manifest this update: Sun 20 Apr 2025 13:00:37 +0000
Manifest next update: Mon 21 Apr 2025 13:00:37 +0000
Files and hashes: 1: KrPbG6M_7Mm1PtcHhZI4wknQI1M.roa (hash: tjtqRRJLnNhIS/xM5FVWwtZTtirmBRvu7piQDYGy3mE=)
2: r7oQsKZ20-H6tWUoQw-siRoINlI.crl (hash: 4ufLEgBt77YQaR8n2rspXW/Sxf/pZZv9QiMAMzP46Xg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:57:fe:57:fc:a9:49:4f:0a:a2:80:77:1d:b9:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afba10b0a676d3e1fab56528430fac891a083652
Validity
Not Before: Apr 20 13:00:37 2025 GMT
Not After : Apr 21 13:00:37 2025 GMT
Subject: CN=c3997e93fe726e84c298de1530ab897540da0e49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b9:5c:2f:08:9c:f4:c1:a6:4d:93:a3:28:e5:
d7:c2:2c:e2:f3:1d:9b:fd:d1:58:16:c7:01:85:2a:
8f:31:5b:61:50:04:5d:0c:96:af:9d:af:db:91:e6:
a1:eb:41:67:d2:cc:f9:a4:c2:c5:38:52:eb:c3:16:
0f:f5:e8:19:df:69:26:58:4e:1a:dd:d2:3a:ec:04:
10:7b:1d:df:c2:d8:e2:e4:32:a4:b8:16:ca:b5:26:
18:22:49:af:6c:f6:1c:57:7c:f8:ca:b8:9f:52:17:
d7:1b:4e:f1:25:82:fc:80:99:60:cb:f8:c6:56:1d:
bc:b5:d1:1d:02:02:72:1d:6c:1d:f5:d8:62:ac:7f:
5c:aa:e9:fd:15:10:fd:3a:38:d1:92:19:88:dd:0e:
af:85:00:c8:9f:14:af:e9:a5:d9:32:61:52:be:33:
0c:5e:26:cf:69:5c:74:c2:54:f4:c2:37:ea:81:d0:
a5:2e:d4:3f:cc:6f:96:54:46:cc:95:f0:f3:c7:ae:
39:b2:6b:24:fd:3d:83:79:42:ae:80:fc:21:93:9f:
25:bd:8a:7e:97:b6:f6:8d:76:27:94:27:02:02:42:
f0:6e:49:d6:30:39:ff:c5:c6:b5:cc:26:0f:eb:c8:
66:d9:63:0c:1d:53:b9:7b:69:c4:bd:30:23:6b:8f:
b0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:99:7E:93:FE:72:6E:84:C2:98:DE:15:30:AB:89:75:40:DA:0E:49
X509v3 Authority Key Identifier:
keyid:AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:b3:85:f5:09:98:47:27:cf:0a:cb:3d:bf:45:60:b3:c5:b5:
02:1e:79:af:d7:74:a8:6e:23:20:5f:af:47:85:44:d1:67:05:
82:90:6b:bc:dd:c7:70:0e:3c:62:df:8a:af:7a:00:ae:d6:7a:
b1:3b:32:6e:8a:c5:61:a4:c2:06:7f:96:d0:ad:7b:98:54:29:
36:6d:d4:19:4d:92:4f:d7:49:51:0d:14:fc:fc:19:d0:e3:85:
f8:30:d8:be:cc:21:5a:dd:91:c7:ba:db:7b:c6:02:43:5f:47:
42:f9:29:68:15:d2:63:b5:5c:53:09:89:5d:df:78:06:13:b0:
de:5b:f7:a6:1b:05:90:aa:f5:7b:c3:5c:69:66:98:ba:4b:04:
61:d2:a8:03:f7:b8:76:65:ba:8f:5b:f1:83:44:6a:13:55:8e:
dc:34:87:e2:e0:f6:3c:39:ec:bc:06:17:de:66:e5:e6:79:9e:
9f:11:b7:fc:ff:ef:f9:49:46:23:b8:b6:85:f2:47:c5:64:bc:
9e:58:15:be:9f:33:00:bc:59:fa:dd:6f:d9:a4:8b:11:b1:fa:
4e:2a:c2:1e:4a:35:f3:3d:ab:ed:80:e6:8c:9e:a6:54:69:f1:
56:3a:a7:af:05:e9:a7:28:59:5b:9c:27:47:85:3c:d5:85:41:
a6:31:87:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZTSVf+V/ypSU8KooB3HbmPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmYmExMGIwYTY3NmQzZTFmYWI1NjUyODQzMGZhYzg5MWEw
ODM2NTIwHhcNMjUwNDIwMTMwMDM3WhcNMjUwNDIxMTMwMDM3WjAzMTEwLwYDVQQD
EyhjMzk5N2U5M2ZlNzI2ZTg0YzI5OGRlMTUzMGFiODk3NTQwZGEwZTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwblcLwic9MGmTZOjKOXXwizi8x2b
/dFYFscBhSqPMVthUARdDJavna/bkeah60Fn0sz5pMLFOFLrwxYP9egZ32kmWE4a
3dI67AQQex3fwtji5DKkuBbKtSYYIkmvbPYcV3z4yrifUhfXG07xJYL8gJlgy/jG
Vh28tdEdAgJyHWwd9dhirH9cqun9FRD9OjjRkhmI3Q6vhQDInxSv6aXZMmFSvjMM
XibPaVx0wlT0wjfqgdClLtQ/zG+WVEbMlfDzx645smsk/T2DeUKugPwhk58lvYp+
l7b2jXYnlCcCAkLwbknWMDn/xca1zCYP68hm2WMMHVO5e2nEvTAja4+wZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMOZfpP+cm6EwpjeFTCriXVA2g5JMB8GA1UdIwQY
MBaAFK+6ELCmdtPh+rVlKEMPrIkaCDZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xYTljOWYtMGMwNy00Nzc2LWFlNjUt
ZTAyN2RjYjFkMTg2LzEvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8xYTljOWYtMGMwNy00Nzc2LWFlNjUtZTAyN2RjYjFkMTg2
LzEvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANbOF9QmY
RyfPCss9v0Vgs8W1Ah55r9d0qG4jIF+vR4VE0WcFgpBrvN3HcA48Yt+Kr3oArtZ6
sTsyborFYaTCBn+W0K17mFQpNm3UGU2ST9dJUQ0U/PwZ0OOF+DDYvswhWt2Rx7rb
e8YCQ19HQvkpaBXSY7VcUwmJXd94BhOw3lv3phsFkKr1e8NcaWaYuksEYdKoA/e4
dmW6j1vxg0RqE1WO3DSH4uD2PDnsvAYX3mbl5nmenxG3/P/v+UlGI7i2hfJHxWS8
nlgVvp8zALxZ+t1v2aSLEbH6TirCHko18z2r7YDmjJ6mVGnxVjqnrwXppyhZW5wn
R4U81YVBpjGHmQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 17:38:21 2025 by rpki-client