Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/5f8cea-54ba-4965-a454-07a449a50f08/1/xagvOTbyRO3LYBPhIdUadpDRNZk.mft
File: xagvOTbyRO3LYBPhIdUadpDRNZk.mft (raw, json)
Hash identifier: mlX/3373uZXXwn0ptmMF3hoQy0A3t3sbgDGiGZFfnng=
Subject key identifier: 44:18:3A:F0:7B:89:83:29:77:E7:05:05:3F:9B:A7:AA:53:7B:54:FE
Authority key identifier: C5:A8:2F:39:36:F2:44:ED:CB:60:13:E1:21:D5:1A:76:90:D1:35:99
Certificate issuer: /CN=c5a82f3936f244edcb6013e121d51a7690d13599
Certificate serial: 0196439F44E1FCE6478074364B831010D58F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xagvOTbyRO3LYBPhIdUadpDRNZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/5f8cea-54ba-4965-a454-07a449a50f08/1/xagvOTbyRO3LYBPhIdUadpDRNZk.mft
Manifest number: 1245
Signing time: Thu 17 Apr 2025 12:00:33 +0000
Manifest this update: Thu 17 Apr 2025 12:00:33 +0000
Manifest next update: Fri 18 Apr 2025 12:00:33 +0000
Files and hashes: 1: XSbdHCVCRCiTj8mv8uqC5jKu2Wc.roa (hash: 5E+fKGQdMloCaM1N6c8AjIuVH6v9QdhsvGHXvp3zGN0=)
2: xagvOTbyRO3LYBPhIdUadpDRNZk.crl (hash: ZuYhrhadImjQ6Si8JD0veDZcsXzs0CmJOSj6BN7np34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/5f8cea-54ba-4965-a454-07a449a50f08/1/xagvOTbyRO3LYBPhIdUadpDRNZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/5f8cea-54ba-4965-a454-07a449a50f08/1/xagvOTbyRO3LYBPhIdUadpDRNZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/xagvOTbyRO3LYBPhIdUadpDRNZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 12:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:9f:44:e1:fc:e6:47:80:74:36:4b:83:10:10:d5:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a82f3936f244edcb6013e121d51a7690d13599
Validity
Not Before: Apr 17 12:00:33 2025 GMT
Not After : Apr 18 12:00:33 2025 GMT
Subject: CN=44183af07b89832977e705053f9ba7aa537b54fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:0c:28:9d:0e:63:2b:6c:71:25:01:a6:08:7e:
ce:4e:88:1e:48:16:5a:a6:eb:34:95:91:f7:9e:37:
28:51:52:de:ca:f2:f7:c0:3e:92:08:f9:74:f0:6b:
af:40:0d:f9:54:a3:fe:fd:1b:4d:51:eb:24:4a:d6:
c0:03:0a:db:7b:3b:79:db:2d:81:68:15:c2:31:bf:
80:d8:99:bd:98:bb:32:92:d9:6d:43:40:3f:24:eb:
3c:aa:35:25:74:ff:3e:f6:79:e2:50:cb:07:9c:95:
8c:04:2d:bd:d1:29:7a:64:96:75:3c:04:f6:8d:44:
af:f9:0c:8e:7b:83:f1:07:95:5f:bf:0c:69:24:27:
69:f1:3c:9a:ca:22:f3:e7:ef:fe:fb:07:19:f5:93:
d6:2a:15:ca:68:8a:b6:e4:76:94:b2:29:58:62:cb:
2b:45:58:15:d8:f0:33:9f:a0:cb:37:cb:84:0d:86:
60:e2:79:35:29:80:1d:d7:d5:66:64:ac:99:c1:38:
ad:33:49:ff:78:39:07:ef:c8:bd:11:43:18:cf:b7:
65:07:6e:27:23:2b:02:d9:4d:d0:d5:bc:4a:6f:6f:
e4:bc:2a:99:12:95:31:cd:a3:0e:c2:9d:a9:81:ae:
d8:78:c8:ba:b7:77:72:8e:c1:44:5d:a1:9f:5e:e0:
0d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:18:3A:F0:7B:89:83:29:77:E7:05:05:3F:9B:A7:AA:53:7B:54:FE
X509v3 Authority Key Identifier:
keyid:C5:A8:2F:39:36:F2:44:ED:CB:60:13:E1:21:D5:1A:76:90:D1:35:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xagvOTbyRO3LYBPhIdUadpDRNZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/5f8cea-54ba-4965-a454-07a449a50f08/1/xagvOTbyRO3LYBPhIdUadpDRNZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/5f8cea-54ba-4965-a454-07a449a50f08/1/xagvOTbyRO3LYBPhIdUadpDRNZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:53:41:d3:75:c4:e6:f6:21:bd:d0:89:06:aa:62:d6:18:24:
45:17:fa:1c:86:df:ca:91:e1:52:47:48:0c:b1:b1:00:c8:41:
1d:1d:ec:f3:7d:ee:96:01:f5:81:39:20:6c:8c:8f:20:d3:fa:
7b:22:22:a7:74:f1:31:b8:a9:78:12:9e:89:96:9d:be:b6:98:
cd:cc:e1:c8:76:8f:72:f4:a4:16:7b:11:19:0a:69:5d:9e:89:
4f:1e:06:1c:7b:7d:07:84:c6:4a:7f:ff:4e:10:f9:80:86:57:
4e:8b:b7:3c:e7:aa:34:6e:82:72:d2:ea:e7:5c:00:2d:b9:c1:
14:ad:97:57:51:d6:4e:46:5e:51:69:76:2e:e7:9a:dd:a2:3d:
d9:18:41:46:43:2f:a3:52:e8:2a:c9:c4:d6:7c:4a:8f:15:b3:
e7:3b:c7:53:9f:fb:03:65:d8:0a:67:30:d8:ee:2f:ed:2f:43:
aa:1d:1a:0c:9b:56:49:47:9f:92:2a:12:78:1d:c0:74:f6:5a:
b5:09:56:5a:e6:64:19:c7:1c:f7:2b:4d:bb:5d:f4:0d:1b:3e:
cd:f3:c6:2a:7b:ee:ce:c3:41:df:5c:d2:80:d0:b5:f5:cd:de:
c2:9c:87:d1:0c:86:db:b0:38:0f:65:49:8e:b6:60:9e:ac:cf:
f5:27:d6:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZDn0Th/OZHgHQ2S4MQENWPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTgyZjM5MzZmMjQ0ZWRjYjYwMTNlMTIxZDUxYTc2OTBk
MTM1OTkwHhcNMjUwNDE3MTIwMDMzWhcNMjUwNDE4MTIwMDMzWjAzMTEwLwYDVQQD
Eyg0NDE4M2FmMDdiODk4MzI5NzdlNzA1MDUzZjliYTdhYTUzN2I1NGZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7QwonQ5jK2xxJQGmCH7OTogeSBZa
pus0lZH3njcoUVLeyvL3wD6SCPl08GuvQA35VKP+/RtNUeskStbAAwrbezt52y2B
aBXCMb+A2Jm9mLsyktltQ0A/JOs8qjUldP8+9nniUMsHnJWMBC290Sl6ZJZ1PAT2
jUSv+QyOe4PxB5VfvwxpJCdp8TyayiLz5+/++wcZ9ZPWKhXKaIq25HaUsilYYssr
RVgV2PAzn6DLN8uEDYZg4nk1KYAd19VmZKyZwTitM0n/eDkH78i9EUMYz7dlB24n
IysC2U3Q1bxKb2/kvCqZEpUxzaMOwp2pga7YeMi6t3dyjsFEXaGfXuANAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEQYOvB7iYMpd+cFBT+bp6pTe1T+MB8GA1UdIwQY
MBaAFMWoLzk28kTty2AT4SHVGnaQ0TWZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFndk9UYnlSTzNMWUJQaElkVWFkcERSTlprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS81ZjhjZWEtNTRiYS00OTY1LWE0NTQt
MDdhNDQ5YTUwZjA4LzEveGFndk9UYnlSTzNMWUJQaElkVWFkcERSTlprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS81ZjhjZWEtNTRiYS00OTY1LWE0NTQtMDdhNDQ5YTUwZjA4
LzEveGFndk9UYnlSTzNMWUJQaElkVWFkcERSTlprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK1NB03XE
5vYhvdCJBqpi1hgkRRf6HIbfypHhUkdIDLGxAMhBHR3s833ulgH1gTkgbIyPINP6
eyIip3TxMbipeBKeiZadvraYzczhyHaPcvSkFnsRGQppXZ6JTx4GHHt9B4TGSn//
ThD5gIZXTou3POeqNG6CctLq51wALbnBFK2XV1HWTkZeUWl2Luea3aI92RhBRkMv
o1LoKsnE1nxKjxWz5zvHU5/7A2XYCmcw2O4v7S9Dqh0aDJtWSUefkioSeB3AdPZa
tQlWWuZkGccc9ytNu130DRs+zfPGKnvuzsNB31zSgNC19c3ewpyH0QyG27A4D2VJ
jrZgnqzP9SfWew==
-----END CERTIFICATE-----
Generated at Thu Apr 17 20:03:17 2025 by rpki-client