Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
File: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft (raw, json)
Hash identifier: 6DYgBO/dKwiSM/BaWRVh+ankZ4Gn78j0+SLA84HgL94=
Subject key identifier: 03:52:61:8B:83:CA:A5:A3:2F:D1:A8:E7:30:67:38:07:39:E3:1B:86
Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe
Certificate serial: 0196A98BE885B084E9D76FF11725A0B37DBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
Manifest number: 09AB
Signing time: Wed 07 May 2025 07:00:40 +0000
Manifest this update: Wed 07 May 2025 07:00:40 +0000
Manifest next update: Thu 08 May 2025 07:00:40 +0000
Files and hashes: 1: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl (hash: w8y0ZVhBeUNcxkweBSX79teyI03ecevRvk8UbO3KSF0=)
2: r2nr9uHWjEIdTibij9wAoHFt-FM.roa (hash: 9uPtC9m4AAQGXek/5tdGjDekJKVu5XPicOZ4ymE6WZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 07:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:8b:e8:85:b0:84:e9:d7:6f:f1:17:25:a0:b3:7d:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe
Validity
Not Before: May 7 07:00:40 2025 GMT
Not After : May 8 07:00:40 2025 GMT
Subject: CN=0352618b83caa5a32fd1a8e73067380739e31b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:91:5f:20:4e:68:ae:14:6e:d9:bc:9d:39:77:
55:29:8f:5a:4f:50:d6:ae:e9:c2:49:03:80:d4:97:
5a:e4:ed:d6:84:e1:f2:c0:ab:95:81:3f:da:6c:8e:
7d:49:76:6b:5b:c7:82:2c:12:47:9c:0c:5b:0e:89:
1f:a2:48:19:e9:76:06:51:58:6a:ae:7d:b2:c9:82:
15:df:4b:6c:a8:57:98:75:e9:2e:ad:aa:9f:1a:b5:
36:a2:39:3a:79:c2:ab:1f:89:3d:cb:c5:3a:8d:e1:
b6:4b:5e:be:63:31:7f:6d:9d:82:eb:fb:6f:9b:37:
63:5d:bf:13:51:c1:64:f7:34:f8:12:7b:8b:78:40:
74:3c:5b:2e:10:3f:78:cc:cf:f1:6d:56:1b:e3:50:
98:a3:60:84:ef:95:90:e9:61:55:2e:f2:0b:2c:e6:
5a:fb:f6:f8:21:90:3b:e7:59:69:5a:49:56:a9:83:
a2:6c:45:1f:6c:f7:c5:08:7d:d0:23:46:0a:20:54:
57:d1:7a:9e:6b:0b:c7:14:0f:7b:a6:c8:c3:b9:07:
d9:a9:78:2a:27:e2:f2:e1:f8:43:d8:9f:30:d9:7c:
f0:ad:55:c1:8f:e1:69:07:59:49:08:4d:ae:11:65:
55:a7:91:05:97:60:94:e1:74:fb:da:fd:3b:48:7a:
12:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:52:61:8B:83:CA:A5:A3:2F:D1:A8:E7:30:67:38:07:39:E3:1B:86
X509v3 Authority Key Identifier:
keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:9f:be:91:01:3f:e5:cf:70:18:9d:05:79:f4:99:31:49:2e:
3b:f0:40:3e:04:63:c2:e6:fb:67:c3:cc:7b:b1:c0:34:dc:b3:
f1:1c:2c:eb:fe:16:f6:6f:29:e7:7e:c0:60:3e:48:c2:98:94:
6d:17:00:99:dc:51:90:d8:40:db:f5:1b:88:94:13:6c:57:6a:
30:d3:a2:8c:2e:20:3e:b6:95:d9:dc:4a:e8:0d:b7:04:fd:9f:
f5:7a:69:a2:6d:56:e2:3f:ef:50:d2:ee:df:81:f6:09:03:d0:
9d:11:48:4d:e3:a5:1b:04:e9:68:7f:71:c1:76:bc:52:e3:63:
4e:c0:d5:4d:c4:ee:f1:b4:5e:97:7c:3a:5c:3f:e2:4e:3b:b8:
ca:4a:09:22:8d:c5:7d:39:cd:df:4c:77:e5:95:cf:c5:27:fd:
b4:d9:1f:2f:ed:03:d7:f0:cf:11:e4:d5:9e:f0:d7:97:bc:12:
05:be:69:97:2d:21:12:60:5d:9f:bd:ed:f2:2a:83:46:f1:11:
2f:4b:1d:e6:2c:47:1b:99:26:ae:4e:56:f3:51:f9:a0:62:6a:
7c:57:1b:be:21:5c:1a:d1:75:05:be:05:25:d0:e9:09:f7:78:
cf:57:d1:04:ce:4d:75:22:46:85:ea:ba:34:95:7f:c4:9f:39:
79:6e:c2:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZapi+iFsITp12/xFyWgs32/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MWJiNDkwZTA5ZGYxNDY3ZTRlZWM0M2Q4ZjIwNDg0Y2Vl
ODM5ZmUwHhcNMjUwNTA3MDcwMDQwWhcNMjUwNTA4MDcwMDQwWjAzMTEwLwYDVQQD
EygwMzUyNjE4YjgzY2FhNWEzMmZkMWE4ZTczMDY3MzgwNzM5ZTMxYjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJFfIE5orhRu2bydOXdVKY9aT1DW
runCSQOA1Jda5O3WhOHywKuVgT/abI59SXZrW8eCLBJHnAxbDokfokgZ6XYGUVhq
rn2yyYIV30tsqFeYdekuraqfGrU2ojk6ecKrH4k9y8U6jeG2S16+YzF/bZ2C6/tv
mzdjXb8TUcFk9zT4EnuLeEB0PFsuED94zM/xbVYb41CYo2CE75WQ6WFVLvILLOZa
+/b4IZA751lpWklWqYOibEUfbPfFCH3QI0YKIFRX0XqeawvHFA97psjDuQfZqXgq
J+Ly4fhD2J8w2XzwrVXBj+FpB1lJCE2uEWVVp5EFl2CU4XT72v07SHoS6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFANSYYuDyqWjL9Go5zBnOAc54xuGMB8GA1UdIwQY
MBaAFJUbtJDgnfFGfk7sQ9jyBITO6Dn+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTct
MWRiNGVkMTMxYmMzLzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTctMWRiNGVkMTMxYmMz
LzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYJ++kQE/
5c9wGJ0FefSZMUkuO/BAPgRjwub7Z8PMe7HANNyz8Rws6/4W9m8p537AYD5IwpiU
bRcAmdxRkNhA2/UbiJQTbFdqMNOijC4gPraV2dxK6A23BP2f9Xppom1W4j/vUNLu
34H2CQPQnRFITeOlGwTpaH9xwXa8UuNjTsDVTcTu8bRel3w6XD/iTju4ykoJIo3F
fTnN30x35ZXPxSf9tNkfL+0D1/DPEeTVnvDXl7wSBb5ply0hEmBdn73t8iqDRvER
L0sd5ixHG5kmrk5W81H5oGJqfFcbviFcGtF1Bb4FJdDpCfd4z1fRBM5NdSJGheq6
NJV/xJ85eW7Cpw==
-----END CERTIFICATE-----
Generated at Wed May 7 10:04:42 2025 by rpki-client