Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: ulLDVuUCT1kTTo8ZgTAfAhgq7eSg9Y2hE54Dhn6Lx3w=
Subject key identifier: 8F:41:46:27:6D:FB:E6:91:8C:EE:A5:3A:3F:AD:12:48:38:00:2E:75
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 0196A91DCE3BC23B8441152CA177453C6C0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: 01D2
Signing time: Wed 07 May 2025 05:00:24 +0000
Manifest this update: Wed 07 May 2025 05:00:24 +0000
Manifest next update: Thu 08 May 2025 05:00:24 +0000
Files and hashes: 1: ZWC54UPrMHyZ6gth2IDDnRYsMDY.roa (hash: 4Yk1QA2QugshfW9geeysUTQ4Sub4Aja/bv1m3JJnrLU=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: DGQ2ACS9kHiUTTU+plZ7mxQVEdwmWwTWwjQCGLmV7Uk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:1d:ce:3b:c2:3b:84:41:15:2c:a1:77:45:3c:6c:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: May 7 05:00:24 2025 GMT
Not After : May 8 05:00:24 2025 GMT
Subject: CN=8f4146276dfbe6918ceea53a3fad124838002e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6a:3a:4b:f8:3b:ff:07:ec:6f:92:40:8f:a1:
f4:cf:10:75:92:94:58:30:a2:9b:0b:62:5b:06:47:
5f:db:6f:52:ae:4a:f3:65:4c:c1:61:dc:c4:d5:7d:
f9:e5:b7:27:73:66:f0:0e:0a:c3:51:2a:78:a0:09:
0f:a1:98:93:ea:68:02:e3:96:71:46:19:50:e5:45:
36:24:d2:f3:af:45:01:32:0c:21:68:bc:f4:f4:c3:
7b:91:e2:1c:30:53:16:60:fc:61:24:ad:8f:7c:b8:
11:62:e1:2a:86:9d:00:64:8b:0c:73:30:1d:61:ff:
14:8c:6b:0c:c1:3d:c5:4e:b9:20:ba:bb:d2:ae:9a:
01:e4:a8:e3:f3:fa:d2:23:ff:ab:17:e7:7d:37:97:
b5:7e:98:0e:32:53:ae:56:b6:fd:fc:74:f7:59:4f:
c5:30:da:95:15:6f:9e:dc:06:dc:2f:ce:83:fc:c2:
ba:c1:a0:f2:e8:94:53:77:41:bf:4c:af:89:a0:b5:
e5:d5:7e:d7:56:76:a1:7c:52:f4:a6:0a:0b:0a:9f:
33:6f:7e:64:c6:b4:3f:dd:66:db:9d:c0:c4:d3:0f:
a7:50:b1:d0:bb:35:e1:5f:1f:46:25:71:76:be:28:
56:42:a4:75:51:cc:f3:b7:50:0c:38:6d:69:53:6b:
82:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:41:46:27:6D:FB:E6:91:8C:EE:A5:3A:3F:AD:12:48:38:00:2E:75
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:34:52:4c:a5:ee:f4:ed:5b:b0:7f:d0:49:4e:83:7a:9f:9e:
39:45:a2:97:06:b1:e8:ad:ab:f1:47:a5:ea:80:14:d3:0b:9f:
c5:2b:cc:f5:c4:04:b0:4f:9f:4a:e5:75:d3:b4:b0:65:3d:65:
7d:67:2b:56:15:83:73:20:da:36:b6:31:a5:21:c0:ab:a4:65:
81:c7:be:c1:05:26:14:3a:98:b6:f5:5a:f3:a5:a3:1a:3a:96:
68:d6:b3:3a:9a:9f:90:86:8a:4d:e5:35:2c:36:ed:14:ff:9c:
47:85:44:ff:0b:33:d5:33:b0:76:8a:d0:09:9b:16:9f:1e:19:
fd:ea:d7:ab:2d:51:0f:f4:3c:45:b5:49:a3:46:83:d8:d7:4a:
c6:0b:e4:a4:c0:5b:de:52:29:be:70:18:7b:6b:58:bf:df:1e:
37:73:a3:62:cf:f5:14:f0:94:43:74:9a:ca:9c:5b:91:b4:08:
2f:c3:e4:09:60:e0:47:f2:b4:4a:6f:cf:8c:bd:0a:c2:64:00:
32:3f:a9:67:10:9c:3d:b0:56:50:a1:32:62:6d:c1:a9:4b:96:
dc:d4:34:63:e5:d5:88:2a:a0:3d:c8:18:7f:00:a9:b4:23:77:
33:2d:4e:b7:c1:d8:bd:ef:a0:16:07:00:0f:d4:72:8d:30:09:
52:6b:6f:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZapHc47wjuEQRUsoXdFPGwOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyOGVmMWY0Zjg4Mjc4ZjRkZjE5ZTczZTMzODFjZWNkNzhl
MDY5YzEwHhcNMjUwNTA3MDUwMDI0WhcNMjUwNTA4MDUwMDI0WjAzMTEwLwYDVQQD
Eyg4ZjQxNDYyNzZkZmJlNjkxOGNlZWE1M2EzZmFkMTI0ODM4MDAyZTc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymo6S/g7/wfsb5JAj6H0zxB1kpRY
MKKbC2JbBkdf229SrkrzZUzBYdzE1X355bcnc2bwDgrDUSp4oAkPoZiT6mgC45Zx
RhlQ5UU2JNLzr0UBMgwhaLz09MN7keIcMFMWYPxhJK2PfLgRYuEqhp0AZIsMczAd
Yf8UjGsMwT3FTrkgurvSrpoB5Kjj8/rSI/+rF+d9N5e1fpgOMlOuVrb9/HT3WU/F
MNqVFW+e3AbcL86D/MK6waDy6JRTd0G/TK+JoLXl1X7XVnahfFL0pgoLCp8zb35k
xrQ/3WbbncDE0w+nULHQuzXhXx9GJXF2vihWQqR1Uczzt1AMOG1pU2uCOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI9BRidt++aRjO6lOj+tEkg4AC51MB8GA1UdIwQY
MBaAFLKO8fT4gnj03xnnPjOBzs144GnBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc283eDlQaUNlUFRmR2VjLU00SE96WGpnYWNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8xZjA1MWItZTczNS00OWI4LWJjNmQt
OWVmMGE1OTkyN2IxLzEvc283eDlQaUNlUFRmR2VjLU00SE96WGpnYWNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS8xZjA1MWItZTczNS00OWI4LWJjNmQtOWVmMGE1OTkyN2Ix
LzEvc283eDlQaUNlUFRmR2VjLU00SE96WGpnYWNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjTRSTKXu
9O1bsH/QSU6Dep+eOUWilwax6K2r8Uel6oAU0wufxSvM9cQEsE+fSuV107SwZT1l
fWcrVhWDcyDaNrYxpSHAq6Rlgce+wQUmFDqYtvVa86WjGjqWaNazOpqfkIaKTeU1
LDbtFP+cR4VE/wsz1TOwdorQCZsWnx4Z/erXqy1RD/Q8RbVJo0aD2NdKxgvkpMBb
3lIpvnAYe2tYv98eN3OjYs/1FPCUQ3SaypxbkbQIL8PkCWDgR/K0Sm/PjL0KwmQA
Mj+pZxCcPbBWUKEyYm3BqUuW3NQ0Y+XViCqgPcgYfwCptCN3My1Ot8HYve+gFgcA
D9RyjTAJUmtvkg==
-----END CERTIFICATE-----
Generated at Wed May 7 12:19:49 2025 by rpki-client