Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: RtvggjHTpR22+UoulCyUTd+8FjOg2fRAFtmFaL0fXEc=
Subject key identifier: 05:39:20:98:54:F1:DA:6C:28:B6:74:C1:7F:E4:A2:40:C6:A1:B5:B1
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 01961923116CB9CC82D6132BB25DA17C35DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 067D
Signing time: Wed 09 Apr 2025 06:00:50 +0000
Manifest this update: Wed 09 Apr 2025 06:00:50 +0000
Manifest next update: Thu 10 Apr 2025 06:00:50 +0000
Files and hashes: 1: ZYhttRWwRR-QF8jloAZFKuhooqE.roa (hash: eO0V42mhSgtEZOqn/NTkR+4pbvAmlZ4nSZ0JyynFqN4=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: DfT37IlTL2EvGtUd0fRCE2PYmBPeZMA5QhSs7MOeeO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 06:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:19:23:11:6c:b9:cc:82:d6:13:2b:b2:5d:a1:7c:35:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Apr 9 06:00:50 2025 GMT
Not After : Apr 10 06:00:50 2025 GMT
Subject: CN=0539209854f1da6c28b674c17fe4a240c6a1b5b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:da:1e:cc:51:75:4a:45:c8:fc:43:55:22:a9:
37:64:eb:53:ea:52:1a:12:8f:ad:07:05:5a:e2:56:
ff:2a:97:b9:4f:ca:80:b1:37:44:c9:35:51:0c:a1:
d4:53:2c:b5:12:74:a8:ce:c2:35:84:c1:35:a5:d6:
64:25:9d:38:86:93:9c:94:cd:1e:4f:ec:ed:a5:23:
8e:c9:2d:51:60:14:aa:c8:3e:39:04:6b:ea:f4:b3:
21:c3:af:af:78:40:00:7d:b1:9e:0f:f0:ad:3d:15:
d4:f0:90:dd:97:94:75:b3:eb:66:f6:7a:f2:0d:5c:
b5:fb:3f:59:c5:04:43:ce:67:ba:9e:26:2d:62:0b:
47:33:33:83:7f:dc:22:e7:cf:cb:0e:d7:86:cf:56:
56:b7:63:cf:fc:bf:cd:eb:46:c4:38:95:82:27:f1:
6e:54:17:5c:f5:5e:40:4a:ba:b2:74:e1:74:6f:04:
7e:59:7f:c2:17:ef:c0:75:41:79:80:bb:98:17:ec:
e2:35:19:c0:b5:ca:8f:d5:f4:31:31:5c:79:b2:0e:
16:2e:af:ef:74:c6:26:8e:30:81:f6:89:07:ff:d0:
a9:46:db:8d:ef:19:6c:4c:ed:dd:89:a4:6e:7d:0e:
5c:c5:1f:9e:f6:6c:95:c0:97:6e:8b:5d:90:4e:b1:
fa:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:39:20:98:54:F1:DA:6C:28:B6:74:C1:7F:E4:A2:40:C6:A1:B5:B1
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:ce:88:e3:a4:f6:c5:45:70:f3:a7:b3:6a:64:15:25:df:6b:
35:1d:08:bb:33:49:87:58:39:88:ef:09:b5:f8:2d:fb:05:89:
12:d8:86:b5:e2:39:e6:f0:76:42:98:e5:0b:f4:93:cd:d0:81:
f1:7e:ac:aa:34:3f:e6:75:1a:63:ed:3d:02:aa:57:1d:f6:41:
60:2b:11:39:7b:59:1d:a5:f3:50:e8:35:09:94:69:4c:32:ef:
e6:c9:18:8a:e1:9c:13:e9:9a:99:7d:28:10:be:16:ba:d8:49:
e7:51:c9:97:14:0a:1e:6a:ca:49:ec:ba:44:8e:79:71:03:31:
7d:80:78:e0:df:cb:de:30:86:d0:a3:ea:05:f9:8f:60:60:a7:
01:a5:fc:fb:b2:81:5d:fd:15:bf:df:0d:74:e6:88:e5:7f:7f:
e7:73:3a:9c:56:a2:f3:1c:ca:2c:99:80:36:93:e6:41:2f:8b:
1e:90:56:c1:a1:6c:20:28:1e:88:66:a3:ee:ed:18:51:83:94:
2c:83:7e:72:af:59:86:6e:57:4d:31:8d:cf:3f:c5:aa:d5:3c:
ba:10:fb:b6:f3:e8:93:ff:e7:3c:b7:98:c1:91:1f:21:0d:6c:
df:51:ae:3e:b9:9b:10:1f:a3:f8:a9:41:ed:9b:c6:84:d1:ed:
bf:14:18:ec
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYZIxFsucyC1hMrsl2hfDXdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0M2M3NDAyMmNiYmYwYjNjZmZmNjAzMWQ2ZDJkZTAzNjlj
OTllNGUwHhcNMjUwNDA5MDYwMDUwWhcNMjUwNDEwMDYwMDUwWjAzMTEwLwYDVQQD
EygwNTM5MjA5ODU0ZjFkYTZjMjhiNjc0YzE3ZmU0YTI0MGM2YTFiNWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9oezFF1SkXI/ENVIqk3ZOtT6lIa
Eo+tBwVa4lb/Kpe5T8qAsTdEyTVRDKHUUyy1EnSozsI1hME1pdZkJZ04hpOclM0e
T+ztpSOOyS1RYBSqyD45BGvq9LMhw6+veEAAfbGeD/CtPRXU8JDdl5R1s+tm9nry
DVy1+z9ZxQRDzme6niYtYgtHMzODf9wi58/LDteGz1ZWt2PP/L/N60bEOJWCJ/Fu
VBdc9V5ASrqydOF0bwR+WX/CF+/AdUF5gLuYF+ziNRnAtcqP1fQxMVx5sg4WLq/v
dMYmjjCB9okH/9CpRtuN7xlsTO3diaRufQ5cxR+e9myVwJdui12QTrH6WQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAU5IJhU8dpsKLZ0wX/kokDGobWxMB8GA1UdIwQY
MBaAFMQ8dAIsu/Czz/9gMdbS3gNpyZ5OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzIt
MjUwZTU1YjlkNGE5LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzItMjUwZTU1YjlkNGE5
LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASs6I46T2
xUVw86ezamQVJd9rNR0IuzNJh1g5iO8Jtfgt+wWJEtiGteI55vB2QpjlC/STzdCB
8X6sqjQ/5nUaY+09AqpXHfZBYCsROXtZHaXzUOg1CZRpTDLv5skYiuGcE+mamX0o
EL4WuthJ51HJlxQKHmrKSey6RI55cQMxfYB44N/L3jCG0KPqBfmPYGCnAaX8+7KB
Xf0Vv98NdOaI5X9/53M6nFai8xzKLJmANpPmQS+LHpBWwaFsICgeiGaj7u0YUYOU
LIN+cq9Zhm5XTTGNzz/FqtU8uhD7tvPok//nPLeYwZEfIQ1s31GuPrmbEB+j+KlB
7ZvGhNHtvxQY7A==
-----END CERTIFICATE-----
Generated at Wed Apr 9 09:12:56 2025 by rpki-client