Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
File: 1dzeISXwQFitT0eOF4iEFCzy2tA.mft (raw, json)
Hash identifier: R2IxPkEJ2OLIWBTdWy2UlZdr2ZkJEEhQRRhBlDtaU18=
Subject key identifier: 50:BA:6F:51:67:2A:CC:FE:F5:EF:B4:98:C8:5E:06:73:64:52:B0:99
Authority key identifier: D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0
Certificate issuer: /CN=d5dcde2125f04058ad4f478e178884142cf2dad0
Certificate serial: 019654934986BEB6622F93638A6A316EF5E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
Manifest number: 0EC6
Signing time: Sun 20 Apr 2025 19:01:00 +0000
Manifest this update: Sun 20 Apr 2025 19:01:00 +0000
Manifest next update: Mon 21 Apr 2025 19:01:00 +0000
Files and hashes: 1: 1dzeISXwQFitT0eOF4iEFCzy2tA.crl (hash: z2fK7D5tdQFILQNub3vChRxHPSlSsE6cEiTLC4igo4Y=)
2: 7RKc8XFi1ZBpZ1fyV1l65spfKVc.roa (hash: hdKthzCCiG0nuzNYJsrtq6rpWOtWCqRiyWfbA+gnE5I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 19:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:93:49:86:be:b6:62:2f:93:63:8a:6a:31:6e:f5:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5dcde2125f04058ad4f478e178884142cf2dad0
Validity
Not Before: Apr 20 19:01:00 2025 GMT
Not After : Apr 21 19:01:00 2025 GMT
Subject: CN=50ba6f51672accfef5efb498c85e06736452b099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ab:2b:ac:58:d2:c1:fb:1c:1e:de:97:e6:70:
89:36:93:af:32:b5:2d:6f:a0:b4:6f:95:d5:e4:8c:
d0:84:75:85:f1:4b:26:0f:3a:d1:13:14:74:5b:b5:
c3:e3:0f:e5:89:89:f7:ed:ca:d0:53:dd:ca:03:a5:
34:14:84:72:9c:7b:e3:e2:28:79:bb:3f:0a:c2:b5:
4e:63:2e:07:42:86:77:e2:27:32:e5:8f:39:d1:57:
91:5a:41:16:10:3e:f0:c6:51:2c:a0:38:90:29:bd:
f0:02:fb:53:9f:0b:d2:23:08:78:8f:01:37:35:5c:
e2:12:7f:47:f4:b0:fa:0e:bc:f5:c8:4e:46:5c:07:
f4:3e:fe:73:ec:6f:6f:6e:45:13:fe:60:fd:35:47:
84:86:d3:cc:e3:15:c7:18:0e:fc:82:0a:ec:2b:9b:
5b:79:38:18:f9:21:1f:ba:dd:02:6d:a8:c2:3a:04:
5f:20:6f:f7:08:75:8d:5f:26:62:03:0f:c0:f3:2d:
75:5e:96:df:de:b7:81:bf:9e:0f:6c:e9:42:5f:ad:
49:84:95:8b:6f:e4:e8:02:fe:95:31:50:c2:2d:46:
9a:6f:f6:4e:a4:ae:7f:96:aa:4c:7c:1c:57:b4:48:
f2:33:23:0d:c5:23:17:53:f4:02:8e:2a:17:2e:a3:
0c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:BA:6F:51:67:2A:CC:FE:F5:EF:B4:98:C8:5E:06:73:64:52:B0:99
X509v3 Authority Key Identifier:
keyid:D5:DC:DE:21:25:F0:40:58:AD:4F:47:8E:17:88:84:14:2C:F2:DA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1dzeISXwQFitT0eOF4iEFCzy2tA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/5915c8-003c-4d98-8243-cfdadbdc48ec/1/1dzeISXwQFitT0eOF4iEFCzy2tA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:8a:fc:60:7f:43:ae:71:90:5b:15:38:a2:fc:e5:ba:1e:3c:
6d:bf:3e:c5:eb:ca:5a:5b:66:94:40:f2:04:b9:af:c6:9d:44:
83:a1:62:ee:0b:27:82:88:dd:6e:51:06:41:c5:fd:41:a5:40:
22:8b:da:fe:de:ab:12:3e:3e:3c:45:fb:09:b5:48:d3:1e:d3:
dd:aa:7c:02:87:0c:bf:47:46:ba:bc:58:8a:88:e6:e6:a3:6c:
83:6e:e6:3e:fe:04:72:33:17:8f:0a:c6:72:b3:c4:4e:d7:68:
84:e6:2e:a7:e4:68:2a:1f:49:eb:a1:03:90:44:34:c6:59:e9:
d8:e1:07:bc:38:a4:20:e0:dd:c6:04:af:e4:1c:d1:8a:8b:fa:
e7:4f:09:5b:8f:3b:1c:31:d9:8b:8a:36:8c:4d:7e:e8:77:6f:
b1:d9:b5:ae:35:80:ad:0d:3e:25:da:3f:91:18:4a:18:35:09:
5a:26:96:ca:91:56:2e:e1:c2:db:3a:7b:63:b5:26:a8:7d:bf:
c1:fe:c7:c0:a1:2b:23:38:bc:82:71:6c:67:50:28:5c:20:85:
c7:bd:7c:de:9b:25:00:90:07:a3:29:d4:15:93:7a:05:1a:b2:
01:ab:0a:58:cb:da:20:e8:6c:40:e8:c0:27:4a:2a:10:4a:79:
6e:2c:10:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZUk0mGvrZiL5NjimoxbvXoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1ZGNkZTIxMjVmMDQwNThhZDRmNDc4ZTE3ODg4NDE0MmNm
MmRhZDAwHhcNMjUwNDIwMTkwMTAwWhcNMjUwNDIxMTkwMTAwWjAzMTEwLwYDVQQD
Eyg1MGJhNmY1MTY3MmFjY2ZlZjVlZmI0OThjODVlMDY3MzY0NTJiMDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA06srrFjSwfscHt6X5nCJNpOvMrUt
b6C0b5XV5IzQhHWF8UsmDzrRExR0W7XD4w/liYn37crQU93KA6U0FIRynHvj4ih5
uz8KwrVOYy4HQoZ34icy5Y850VeRWkEWED7wxlEsoDiQKb3wAvtTnwvSIwh4jwE3
NVziEn9H9LD6Drz1yE5GXAf0Pv5z7G9vbkUT/mD9NUeEhtPM4xXHGA78ggrsK5tb
eTgY+SEfut0CbajCOgRfIG/3CHWNXyZiAw/A8y11Xpbf3reBv54PbOlCX61JhJWL
b+ToAv6VMVDCLUaab/ZOpK5/lqpMfBxXtEjyMyMNxSMXU/QCjioXLqMM5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFC6b1FnKsz+9e+0mMheBnNkUrCZMB8GA1UdIwQY
MBaAFNXc3iEl8EBYrU9HjheIhBQs8trQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWR6ZUlTWHdRRml0VDBlT0Y0aUVGQ3p5MnRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy81OTE1YzgtMDAzYy00ZDk4LTgyNDMt
Y2ZkYWRiZGM0OGVjLzEvMWR6ZUlTWHdRRml0VDBlT0Y0aUVGQ3p5MnRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy81OTE1YzgtMDAzYy00ZDk4LTgyNDMtY2ZkYWRiZGM0OGVj
LzEvMWR6ZUlTWHdRRml0VDBlT0Y0aUVGQ3p5MnRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHor8YH9D
rnGQWxU4ovzluh48bb8+xevKWltmlEDyBLmvxp1Eg6Fi7gsngojdblEGQcX9QaVA
Iova/t6rEj4+PEX7CbVI0x7T3ap8AocMv0dGurxYiojm5qNsg27mPv4EcjMXjwrG
crPETtdohOYup+RoKh9J66EDkEQ0xlnp2OEHvDikIODdxgSv5BzRiov6508JW487
HDHZi4o2jE1+6Hdvsdm1rjWArQ0+Jdo/kRhKGDUJWiaWypFWLuHC2zp7Y7UmqH2/
wf7HwKErIzi8gnFsZ1AoXCCFx7183pslAJAHoynUFZN6BRqyAasKWMvaIOhsQOjA
J0oqEEp5biwQ0Q==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:56:10 2025 by rpki-client