Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
File: tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft (raw, json)
Hash identifier: 0RPR/bUqKxBlPxDx0TFtlB54LW2FmcLkb0sq/F1KBes=
Subject key identifier: CD:C1:7B:C5:50:26:1F:DE:DA:DF:C8:5A:0E:48:AB:22:23:7A:07:C7
Authority key identifier: B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
Certificate issuer: /CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Certificate serial: 01964D10741D8D19F5FE0819181B79191A2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
Manifest number: 14FE
Signing time: Sat 19 Apr 2025 08:00:45 +0000
Manifest this update: Sat 19 Apr 2025 08:00:45 +0000
Manifest next update: Sun 20 Apr 2025 08:00:45 +0000
Files and hashes: 1: AwMEJfGD-_TNRZ72c5x-9dIRsd4.roa (hash: 6UVDM1JqxHmjbnJ4pDDIOsD2r8EQyy1bF6KNp9ocKGg=)
2: VJtvXDXYtAcS9C4LIbmlaqXh4Co.roa (hash: THcKGdc9aA5a+OjJYNnV65xxowh1d3kb8KQrHqiCPq4=)
3: fUXrv6-AqG-Sdl9xICl4cQAU7yA.roa (hash: jv2v4x0octz1D9witRg3iiWbwIrgi4wxjje3xLewI+U=)
4: tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl (hash: bFh8wAZNQJ8+QXJUoXUoX8ApQeuV9OVzMWAJpo9oNSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:10:74:1d:8d:19:f5:fe:08:19:18:1b:79:19:1a:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Validity
Not Before: Apr 19 08:00:45 2025 GMT
Not After : Apr 20 08:00:45 2025 GMT
Subject: CN=cdc17bc550261fdedadfc85a0e48ab22237a07c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:92:89:45:99:52:cd:78:9a:3c:aa:b2:e5:93:
cb:3a:41:bf:5f:dc:84:d0:77:2c:d6:72:0a:1a:e2:
d1:ad:bc:9e:cc:05:c6:58:92:f6:92:f0:e0:c5:b0:
68:42:dd:a3:94:54:bc:be:f7:c4:7b:3b:c8:4b:61:
19:b4:c6:51:d9:c3:91:06:55:e3:1d:05:a9:34:3a:
d7:11:bb:2e:17:9f:01:90:a0:3d:77:f3:d7:fe:8c:
f6:ab:d1:20:f5:46:e4:e3:2a:a9:e2:9c:f1:ac:0d:
00:d9:b2:16:5a:1f:ad:2c:91:1e:0c:79:a9:08:7e:
39:e5:34:c2:48:13:d4:a5:c6:4c:94:94:33:61:c6:
97:31:6b:72:3e:8a:7a:ed:16:e8:8d:ef:04:ea:c0:
6e:0e:8e:99:dd:e2:92:ac:52:22:e7:80:66:b6:a8:
87:72:e4:d6:cf:83:1a:31:69:f6:31:34:2e:22:da:
19:d5:e6:cb:d2:4c:01:11:a4:b1:84:3a:bb:3b:12:
4f:8e:e6:ce:ca:06:19:b7:bb:f7:83:0f:9c:a6:6c:
dc:d9:42:e8:1c:63:f9:15:35:7f:ac:0c:a7:3a:fc:
e5:15:48:ed:94:26:fa:63:5e:5f:61:61:9f:e0:21:
a2:b7:15:12:84:0b:6b:3d:66:bb:99:78:ca:74:74:
e3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C1:7B:C5:50:26:1F:DE:DA:DF:C8:5A:0E:48:AB:22:23:7A:07:C7
X509v3 Authority Key Identifier:
keyid:B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:fa:dd:ab:c7:42:59:53:73:e1:40:4b:44:9e:cd:77:41:fc:
e8:5b:46:ae:88:5b:11:11:52:90:5a:27:37:ae:0d:d7:0b:5e:
12:c7:02:0f:83:34:3a:d4:7b:73:52:f0:6f:54:d9:9b:38:95:
a4:81:56:70:54:16:bb:07:66:70:df:4b:ec:68:27:2c:0b:9a:
00:ca:81:c9:6f:ed:c4:1d:7b:57:65:78:7e:ba:8c:94:10:11:
e4:5c:99:a9:15:51:ae:b5:43:39:d8:db:4f:89:01:37:92:d5:
f6:0b:78:f5:8d:e5:8d:35:37:fa:d6:d7:b0:33:99:f2:7b:d8:
8d:2a:19:44:c7:47:c4:f3:24:17:54:d6:db:14:76:fd:1e:37:
75:ec:23:95:e5:30:ff:fa:20:6a:24:68:bf:c2:11:51:8c:49:
25:92:16:f4:b3:c6:03:14:f4:4a:c4:7f:1b:79:71:06:a5:c9:
d2:df:e0:b1:8c:6d:38:95:58:91:f9:6e:c0:c7:cf:e9:22:14:
6c:75:cf:4d:63:18:61:62:5a:f7:20:b8:96:d1:76:df:18:4e:
0c:af:1e:7d:5a:9b:cb:73:a7:66:4f:d9:c0:80:dc:38:30:5d:
c4:b1:f4:75:7d:2c:75:28:db:1f:15:31:a1:c8:82:60:bd:00:
8d:37:3b:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNEHQdjRn1/ggZGBt5GRorMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NDI3ZWE0OWY5NzJkMTljNTYzOTNhNjg5ZTdjYmViOTkw
ZDVkN2EwHhcNMjUwNDE5MDgwMDQ1WhcNMjUwNDIwMDgwMDQ1WjAzMTEwLwYDVQQD
EyhjZGMxN2JjNTUwMjYxZmRlZGFkZmM4NWEwZTQ4YWIyMjIzN2EwN2M3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpKJRZlSzXiaPKqy5ZPLOkG/X9yE
0Hcs1nIKGuLRrbyezAXGWJL2kvDgxbBoQt2jlFS8vvfEezvIS2EZtMZR2cORBlXj
HQWpNDrXEbsuF58BkKA9d/PX/oz2q9Eg9Ubk4yqp4pzxrA0A2bIWWh+tLJEeDHmp
CH455TTCSBPUpcZMlJQzYcaXMWtyPop67Rboje8E6sBuDo6Z3eKSrFIi54BmtqiH
cuTWz4MaMWn2MTQuItoZ1ebL0kwBEaSxhDq7OxJPjubOygYZt7v3gw+cpmzc2ULo
HGP5FTV/rAynOvzlFUjtlCb6Y15fYWGf4CGitxUShAtrPWa7mXjKdHTjGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM3Be8VQJh/e2t/IWg5IqyIjegfHMB8GA1UdIwQY
MBaAFLVCfqSfly0ZxWOTponny+uZDV16MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kMmJiNjgtOWJjNy00NzkxLTg1Mjgt
MGM0OTU0NzdjYTEwLzEvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC9kMmJiNjgtOWJjNy00NzkxLTg1MjgtMGM0OTU0NzdjYTEw
LzEvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWfrdq8dC
WVNz4UBLRJ7Nd0H86FtGrohbERFSkFonN64N1wteEscCD4M0OtR7c1Lwb1TZmziV
pIFWcFQWuwdmcN9L7GgnLAuaAMqByW/txB17V2V4frqMlBAR5FyZqRVRrrVDOdjb
T4kBN5LV9gt49Y3ljTU3+tbXsDOZ8nvYjSoZRMdHxPMkF1TW2xR2/R43dewjleUw
//ogaiRov8IRUYxJJZIW9LPGAxT0SsR/G3lxBqXJ0t/gsYxtOJVYkfluwMfP6SIU
bHXPTWMYYWJa9yC4ltF23xhODK8efVqby3OnZk/ZwIDcODBdxLH0dX0sdSjbHxUx
ociCYL0AjTc7OA==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:16:25 2025 by rpki-client