Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
File: lRibFY2NYBG6X5YlLTAmanDT4GY.mft (raw, json)
Hash identifier: 3GZCcogYTOUnMlcDfRJBeMvt6pFH0OxQZju4TC9ySU0=
Subject key identifier: DA:7D:A3:54:21:B9:40:8C:41:84:0B:78:3E:7E:79:47:FC:BF:59:30
Authority key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
Certificate issuer: /CN=95189b158d8d6011ba5f96252d30266a70d3e066
Certificate serial: 01964DEBF95B70C8F753468726EE38ACD3D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 12:00:32 +0000
Manifest this update: Sat 19 Apr 2025 12:00:32 +0000
Manifest next update: Sun 20 Apr 2025 12:00:32 +0000
Files and hashes: 1: alfL1bRTQjOY-E2KjHP8N4Ulue0.roa (hash: ybSj2AdhAA+9tbRInXwXzkVBfMf3WHllqssGw6/wFUI=)
2: lRibFY2NYBG6X5YlLTAmanDT4GY.crl (hash: /euggKiU2O2UNavNNObNRfGKoSKeZt47Xi5eFpgrt3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 12:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:eb:f9:5b:70:c8:f7:53:46:87:26:ee:38:ac:d3:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95189b158d8d6011ba5f96252d30266a70d3e066
Validity
Not Before: Apr 19 12:00:32 2025 GMT
Not After : Apr 20 12:00:32 2025 GMT
Subject: CN=da7da35421b9408c41840b783e7e7947fcbf5930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1a:e3:ee:eb:40:b5:9e:d6:63:32:ec:e9:58:
17:aa:fe:89:4a:65:3f:a2:f1:9f:36:90:ea:09:cd:
23:3e:ec:84:98:02:a1:9f:91:0f:ca:65:70:c1:07:
85:8b:af:03:66:72:a8:fb:b3:45:b7:bc:9f:26:95:
10:2f:fb:0c:d6:ba:9a:4b:5c:b8:bf:cc:e2:a6:72:
0f:35:61:7b:cf:f6:cc:f0:ad:e7:c0:6e:47:59:9d:
a6:14:75:ed:2d:3f:1d:d1:b0:58:81:a8:6b:06:03:
41:78:8b:7a:fe:19:e1:d9:2f:38:74:ef:6e:76:53:
7a:45:b6:17:d3:72:74:26:e4:82:28:ad:63:d8:10:
88:52:c0:90:a7:e6:e0:22:ff:92:b2:a0:18:c0:ec:
5c:00:53:75:ea:76:c5:09:86:93:f6:ff:92:ef:af:
9e:97:fd:55:1c:27:8b:25:a4:2d:2a:9c:20:46:36:
b1:3d:7e:0b:6f:37:a1:66:82:69:2d:50:d0:5e:72:
f8:7b:f3:82:40:6b:b8:f7:50:ac:25:a4:86:70:6a:
5f:c2:a5:85:f0:cc:fe:e2:9d:0f:de:fc:74:46:d3:
8e:69:c9:51:0e:90:db:8c:04:25:c8:23:c9:9d:f1:
83:58:1a:dd:35:74:42:cb:51:52:1c:d8:a3:74:25:
db:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:7D:A3:54:21:B9:40:8C:41:84:0B:78:3E:7E:79:47:FC:BF:59:30
X509v3 Authority Key Identifier:
keyid:95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:dc:93:0a:53:89:23:e0:51:6d:a3:01:22:83:04:6e:cb:5d:
22:b8:ab:7b:a1:ed:3c:81:e0:b9:7d:99:6f:08:6a:f8:65:02:
fc:e3:15:19:a2:2b:b8:10:11:f0:bb:db:77:a5:d8:81:c0:82:
84:39:33:08:62:71:7b:36:24:c7:a2:75:68:6c:87:d8:1c:e5:
2d:f4:eb:1f:18:a1:72:dd:5e:f2:7a:7d:81:cb:3f:4f:28:90:
eb:9d:2c:f1:33:2b:1d:e6:3a:e1:01:67:46:c2:80:c8:06:4c:
be:3b:03:eb:2f:45:6a:1c:c0:ad:05:43:ba:60:ff:18:14:38:
e6:57:de:3b:2a:c4:cd:a7:ff:74:a3:f3:0b:c2:66:6c:3e:ec:
ba:46:77:57:12:fa:56:14:c9:34:54:33:16:85:71:0b:5c:9a:
0b:36:f6:ae:b4:ca:0c:ac:00:7d:b0:83:38:f0:65:13:68:c3:
5c:22:13:80:17:3f:94:b1:b7:96:e7:0b:85:8a:8e:eb:54:5b:
0b:f6:dd:84:b0:c4:19:6c:5d:77:21:c8:94:62:27:d5:86:71:
f2:65:ab:65:3d:48:13:49:c9:f5:44:0b:82:c0:17:3a:7c:22:
ef:dd:c7:ca:0d:6c:49:d0:bc:2d:6a:b2:15:99:5b:5d:4e:6a:
8f:d9:18:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZN6/lbcMj3U0aHJu44rNPWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MTg5YjE1OGQ4ZDYwMTFiYTVmOTYyNTJkMzAyNjZhNzBk
M2UwNjYwHhcNMjUwNDE5MTIwMDMyWhcNMjUwNDIwMTIwMDMyWjAzMTEwLwYDVQQD
EyhkYTdkYTM1NDIxYjk0MDhjNDE4NDBiNzgzZTdlNzk0N2ZjYmY1OTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxrj7utAtZ7WYzLs6VgXqv6JSmU/
ovGfNpDqCc0jPuyEmAKhn5EPymVwwQeFi68DZnKo+7NFt7yfJpUQL/sM1rqaS1y4
v8zipnIPNWF7z/bM8K3nwG5HWZ2mFHXtLT8d0bBYgahrBgNBeIt6/hnh2S84dO9u
dlN6RbYX03J0JuSCKK1j2BCIUsCQp+bgIv+SsqAYwOxcAFN16nbFCYaT9v+S76+e
l/1VHCeLJaQtKpwgRjaxPX4LbzehZoJpLVDQXnL4e/OCQGu491CsJaSGcGpfwqWF
8Mz+4p0P3vx0RtOOaclRDpDbjAQlyCPJnfGDWBrdNXRCy1FSHNijdCXbJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNp9o1QhuUCMQYQLeD5+eUf8v1kwMB8GA1UdIwQY
MBaAFJUYmxWNjWARul+WJS0wJmpw0+BmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kMjdhZDAtNTVjMi00OTA0LWE4YzUt
YWNlMTgwZmY5YjE5LzEvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9kMjdhZDAtNTVjMi00OTA0LWE4YzUtYWNlMTgwZmY5YjE5
LzEvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAadyTClOJ
I+BRbaMBIoMEbstdIrire6HtPIHguX2Zbwhq+GUC/OMVGaIruBAR8Lvbd6XYgcCC
hDkzCGJxezYkx6J1aGyH2BzlLfTrHxihct1e8np9gcs/TyiQ650s8TMrHeY64QFn
RsKAyAZMvjsD6y9FahzArQVDumD/GBQ45lfeOyrEzaf/dKPzC8JmbD7sukZ3VxL6
VhTJNFQzFoVxC1yaCzb2rrTKDKwAfbCDOPBlE2jDXCITgBc/lLG3lucLhYqO61Rb
C/bdhLDEGWxddyHIlGIn1YZx8mWrZT1IE0nJ9UQLgsAXOnwi793Hyg1sSdC8LWqy
FZlbXU5qj9kYoQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 18:00:06 2025 by rpki-client