Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
File: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft (raw, json)
Hash identifier: QRJEjvwh7R7bVL+xcotzFfMN+vUPZt40iJ6x7TEpzNY=
Subject key identifier: 2C:67:CD:74:A1:AA:22:73:D4:F8:8F:4E:D7:3B:43:1E:49:E9:A3:D9
Authority key identifier: F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
Certificate issuer: /CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Certificate serial: 0196D250BBCEE4A7BB3ADB669ED219D226C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
Manifest number: 01A5
Signing time: Thu 15 May 2025 05:00:28 +0000
Manifest this update: Thu 15 May 2025 05:00:28 +0000
Manifest next update: Fri 16 May 2025 05:00:28 +0000
Files and hashes: 1: 1-PJ8uFT3vIGcdh8Ryvstj5V11gs.roa (hash: flh68N5wBml9poaLXGZmGeNQ/HSV3CHvsWwwddNW1dc=)
2: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl (hash: 8iDa/xpcr0Xyk1ZYwHmidWWCBA70Xl6K9RzeGLwaRT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 05:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d2:50:bb:ce:e4:a7:bb:3a:db:66:9e:d2:19:d2:26:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Validity
Not Before: May 15 05:00:28 2025 GMT
Not After : May 16 05:00:28 2025 GMT
Subject: CN=2c67cd74a1aa2273d4f88f4ed73b431e49e9a3d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:de:74:87:7c:d4:a2:72:3a:0d:f1:fa:00:be:
9e:7a:59:0c:1e:e5:00:7a:ea:1e:22:0d:5e:86:09:
37:b0:14:6f:be:be:0d:eb:18:e6:ab:1d:90:a3:9e:
db:d2:a7:b7:1e:c2:08:3f:2e:46:75:55:a2:10:16:
9f:84:8d:58:18:c3:d0:9c:93:7f:e8:15:4d:8d:4d:
03:0f:8d:7e:d4:3f:62:0c:d9:47:dd:04:ee:93:93:
d7:9c:8e:0a:53:fe:3b:f0:51:29:25:7f:92:47:69:
21:a1:f6:b5:0c:34:5a:6a:e8:c9:7c:ee:d7:13:f2:
4e:61:c3:dd:12:64:d4:7d:1b:ff:68:c3:b0:7b:32:
50:7e:8d:75:06:53:8c:29:76:f8:9f:b6:b6:ec:f2:
c2:5a:45:9e:eb:58:94:6e:59:08:2d:d6:80:a3:84:
03:02:03:2f:8c:bd:4e:f3:1c:01:59:4c:8b:84:60:
29:ec:72:5d:8d:eb:81:e0:5b:ae:f2:0f:51:c1:cf:
2b:cc:76:01:b8:82:00:e7:73:04:45:1d:58:10:7d:
40:e4:1d:e5:6c:93:81:3d:51:29:0d:d5:6d:e3:5f:
ac:19:43:fe:9e:7e:61:32:df:ee:58:74:52:85:39:
c3:4f:ec:69:58:7c:08:b2:31:57:93:3e:50:1f:46:
42:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:67:CD:74:A1:AA:22:73:D4:F8:8F:4E:D7:3B:43:1E:49:E9:A3:D9
X509v3 Authority Key Identifier:
keyid:F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:96:8f:ba:3d:ab:3e:7a:9d:65:7d:fc:e6:e0:dc:07:2e:b1:
e8:d8:9c:c8:02:4b:89:a1:24:7a:00:21:70:00:4d:6a:ee:c2:
aa:8e:24:66:86:e9:d5:53:be:ff:06:16:7e:fe:4c:1a:c5:63:
da:74:88:36:25:18:b8:3f:a8:c0:71:7a:ad:72:98:60:b2:3a:
98:c2:08:5a:59:b9:62:71:37:98:d8:06:61:94:38:3f:67:10:
e0:7f:42:b5:dc:e7:5a:fb:63:03:59:e9:08:c9:16:b1:75:39:
f1:5f:58:2f:a5:74:d6:b4:49:d6:75:4c:79:1f:2d:7e:03:1a:
60:68:3d:46:e3:21:b8:63:71:7b:2f:d9:14:bd:cc:bc:75:39:
c1:f7:f2:54:55:40:f6:e0:9a:e5:08:19:58:4d:f3:e8:77:72:
8f:7b:58:f5:91:26:e8:ab:1b:c1:b4:a9:05:a9:e9:73:e6:3e:
03:ac:2e:5f:2c:9b:62:93:4e:84:c8:d9:8c:24:15:48:e8:de:
69:d5:87:e5:3f:e2:17:da:d9:5b:28:f3:d7:d0:61:cc:d5:37:
cc:c5:0f:d4:4d:51:57:c2:be:62:f4:fe:4b:ec:29:57:b6:72:
5b:41:ae:74:5f:8c:7b:64:d0:78:24:5e:00:2c:c1:0d:12:b8:
c6:21:da:2b
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZbSULvO5Ke7OttmntIZ0ibDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5ODY2OWQzMWExNGRiZGM1MDc3MTU5Y2YwYTY1MzUzYmZi
ZmEyMGEwHhcNMjUwNTE1MDUwMDI4WhcNMjUwNTE2MDUwMDI4WjAzMTEwLwYDVQQD
EygyYzY3Y2Q3NGExYWEyMjczZDRmODhmNGVkNzNiNDMxZTQ5ZTlhM2Q5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyN50h3zUonI6DfH6AL6eelkMHuUA
euoeIg1ehgk3sBRvvr4N6xjmqx2Qo57b0qe3HsIIPy5GdVWiEBafhI1YGMPQnJN/
6BVNjU0DD41+1D9iDNlH3QTuk5PXnI4KU/478FEpJX+SR2khofa1DDRaaujJfO7X
E/JOYcPdEmTUfRv/aMOwezJQfo11BlOMKXb4n7a27PLCWkWe61iUblkILdaAo4QD
AgMvjL1O8xwBWUyLhGAp7HJdjeuB4Fuu8g9Rwc8rzHYBuIIA53MERR1YEH1A5B3l
bJOBPVEpDdVt41+sGUP+nn5hMt/uWHRShTnDT+xpWHwIsjFXkz5QH0ZCuwIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFCxnzXShqiJz1PiPTtc7Qx5J6aPZMB8GA1UdIwQY
MBaAFPmGadMaFNvcUHcVnPCmU1O/v6IKMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1ZWnAweG9VMjl4UWR4V2M4S1pUVTctX29nby5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcvMmI0MTdkLTI4NjktNDExZi1hZWRh
LTRhMDViYWM1MjY1Zi8xLzEtWVpwMHhvVTI5eFFkeFdjOEtaVFU3LV9vZ28ubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxULzA3LzJiNDE3ZC0yODY5LTQxMWYtYWVkYS00YTA1YmFjNTI2
NWYvMS8xLVlacDB4b1UyOXhRZHhXYzhLWlRVNy1fb2dvLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqpaP
uj2rPnqdZX385uDcBy6x6NicyAJLiaEkegAhcABNau7Cqo4kZobp1VO+/wYWfv5M
GsVj2nSINiUYuD+owHF6rXKYYLI6mMIIWlm5YnE3mNgGYZQ4P2cQ4H9CtdznWvtj
A1npCMkWsXU58V9YL6V01rRJ1nVMeR8tfgMaYGg9RuMhuGNxey/ZFL3MvHU5wffy
VFVA9uCa5QgZWE3z6Hdyj3tY9ZEm6KsbwbSpBanpc+Y+A6wuXyybYpNOhMjZjCQV
SOjeadWH5T/iF9rZWyjz19BhzNU3zMUP1E1RV8K+YvT+S+wpV7ZyW0GudF+Me2TQ
eCReACzBDRK4xiHaKw==
-----END CERTIFICATE-----
Generated at Thu May 15 11:29:59 2025 by rpki-client