Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
File: rXz7zh1tOmok8lZSBl0xV1go7bU.mft (raw, json)
Hash identifier: ZnqiY3KA/OOdS2P7dDiO8lnNGKFPfpOz6/15VaN+9Ss=
Subject key identifier: C2:DF:A5:E1:3F:8C:98:30:CA:CF:74:90:86:B0:8D:EB:30:4E:8B:61
Authority key identifier: AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
Certificate issuer: /CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Certificate serial: 01958C2901B22E54A1D329C3481603533606
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
Manifest number: 0BA7
Signing time: Wed 12 Mar 2025 21:00:52 +0000
Manifest this update: Wed 12 Mar 2025 21:00:52 +0000
Manifest next update: Thu 13 Mar 2025 21:00:52 +0000
Files and hashes: 1: Im3NuoFQdX7egdBojqG76hMiXq0.roa (hash: MBZCzXbY6/6xAtTJ9sYOEhNyw2Jnz8TgfEJHylhcfdM=)
2: rXz7zh1tOmok8lZSBl0xV1go7bU.crl (hash: 0AzVXuh/beqOJG9BUy1cYG8r40M3QjBK9rFZChoXj1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:01:b2:2e:54:a1:d3:29:c3:48:16:03:53:36:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Validity
Not Before: Mar 12 21:00:52 2025 GMT
Not After : Mar 13 21:00:52 2025 GMT
Subject: CN=c2dfa5e13f8c9830cacf749086b08deb304e8b61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:76:71:89:16:ae:7a:e1:a4:3b:83:ca:50:80:
91:be:91:f0:63:54:e7:0d:e7:98:cb:01:73:ca:c7:
67:d8:da:a2:38:30:44:2f:64:ff:ee:b6:36:ae:2b:
33:86:6f:92:5a:4d:41:d0:99:57:5a:7e:dc:af:25:
e7:f9:56:0e:f6:bb:91:f3:08:63:9e:31:b5:01:2e:
4b:19:63:dc:5c:8b:aa:10:cc:46:37:9f:53:d6:24:
cc:ae:31:76:2c:23:00:53:a5:89:24:cf:67:b6:c6:
ae:2d:f7:5b:79:e6:35:17:4e:b0:d0:80:1a:a8:a7:
49:43:06:3a:e1:ec:c7:71:26:f8:6d:4c:80:cd:5a:
48:e9:91:7e:e2:51:5c:46:8c:f8:56:45:58:a9:2d:
2c:60:56:4f:6c:81:df:34:3a:4f:2e:f0:15:6c:43:
ea:3d:10:1b:a2:0f:49:26:98:5f:d0:1d:50:11:3a:
e7:42:2a:9d:11:d4:a8:3e:cf:da:d4:bf:e2:30:a0:
8b:f3:ff:6b:04:eb:d5:e9:02:2a:ed:f3:47:04:97:
6d:81:65:18:aa:fb:c6:4d:d4:06:3f:90:7a:6f:fd:
f7:2b:2a:4a:4a:97:34:0f:97:e1:7b:9e:2c:ea:e2:
61:f4:94:d3:52:c7:95:3e:fd:42:73:c1:4e:f8:46:
a1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:DF:A5:E1:3F:8C:98:30:CA:CF:74:90:86:B0:8D:EB:30:4E:8B:61
X509v3 Authority Key Identifier:
keyid:AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:1c:74:5f:70:c2:6d:0d:e2:6f:21:71:97:2f:37:b2:58:7a:
ee:e8:fd:a8:35:a2:fa:eb:b2:a4:bf:5a:4f:e5:09:7f:26:99:
49:fc:6f:51:8f:ad:70:49:48:58:cd:ae:b5:e4:5f:10:75:af:
0b:fb:1f:45:d0:b6:63:cd:23:48:54:4e:dd:89:f5:f5:15:72:
3c:41:ff:8a:cd:5a:ef:05:3b:4c:de:f3:0f:d6:f1:88:4f:aa:
e4:97:48:ce:a4:cd:47:8d:d5:f7:4d:9d:c3:b3:63:2e:a6:41:
f0:fa:79:c2:61:bd:af:5d:84:be:3d:07:0a:4f:be:16:e0:fc:
7f:75:a7:06:14:d7:26:6b:96:c9:5f:26:d7:0d:95:11:db:de:
3b:69:85:73:ae:cb:6c:e2:5c:90:3b:13:aa:4a:29:ed:20:ed:
38:69:5b:30:b6:25:05:b7:20:d6:27:70:a2:04:4f:90:fb:e5:
31:98:a8:e5:2e:e0:0b:05:8b:01:21:26:2a:35:c6:9e:1c:0f:
ec:cf:3c:19:b8:ed:cc:6a:80:39:1e:53:d3:ec:7d:02:bb:e3:
29:25:b9:ad:65:c9:eb:d1:b4:0c:91:e8:9a:92:33:f8:04:72:
09:9d:08:41:c5:52:ea:55:9b:8e:07:88:af:02:a5:cb:aa:ce:
65:98:ba:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWMKQGyLlSh0ynDSBYDUzYGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkN2NmYmNlMWQ2ZDNhNmEyNGYyNTY1MjA2NWQzMTU3NTgy
OGVkYjUwHhcNMjUwMzEyMjEwMDUyWhcNMjUwMzEzMjEwMDUyWjAzMTEwLwYDVQQD
EyhjMmRmYTVlMTNmOGM5ODMwY2FjZjc0OTA4NmIwOGRlYjMwNGU4YjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHZxiRaueuGkO4PKUICRvpHwY1Tn
DeeYywFzysdn2NqiODBEL2T/7rY2riszhm+SWk1B0JlXWn7cryXn+VYO9ruR8whj
njG1AS5LGWPcXIuqEMxGN59T1iTMrjF2LCMAU6WJJM9ntsauLfdbeeY1F06w0IAa
qKdJQwY64ezHcSb4bUyAzVpI6ZF+4lFcRoz4VkVYqS0sYFZPbIHfNDpPLvAVbEPq
PRAbog9JJphf0B1QETrnQiqdEdSoPs/a1L/iMKCL8/9rBOvV6QIq7fNHBJdtgWUY
qvvGTdQGP5B6b/33KypKSpc0D5fhe54s6uJh9JTTUseVPv1Cc8FO+EahDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMLfpeE/jJgwys90kIawjeswTothMB8GA1UdIwQY
MBaAFK18+84dbTpqJPJWUgZdMVdYKO21MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclh6N3poMXRPbW9rOGxaU0JsMHhWMWdvN2JVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xMTQzNDAtMmM3MC00MWZjLWFiZTct
MmZhN2M5YjExMWIxLzEvclh6N3poMXRPbW9rOGxaU0JsMHhWMWdvN2JVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8xMTQzNDAtMmM3MC00MWZjLWFiZTctMmZhN2M5YjExMWIx
LzEvclh6N3poMXRPbW9rOGxaU0JsMHhWMWdvN2JVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAphx0X3DC
bQ3ibyFxly83slh67uj9qDWi+uuypL9aT+UJfyaZSfxvUY+tcElIWM2uteRfEHWv
C/sfRdC2Y80jSFRO3Yn19RVyPEH/is1a7wU7TN7zD9bxiE+q5JdIzqTNR43V902d
w7NjLqZB8Pp5wmG9r12Evj0HCk++FuD8f3WnBhTXJmuWyV8m1w2VEdveO2mFc67L
bOJckDsTqkop7SDtOGlbMLYlBbcg1idwogRPkPvlMZio5S7gCwWLASEmKjXGnhwP
7M88GbjtzGqAOR5T0+x9ArvjKSW5rWXJ69G0DJHompIz+ARyCZ0IQcVS6lWbjgeI
rwKly6rOZZi6Sw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:16 2025 by rpki-client