Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json)
Hash identifier: ZBVjHpwnO05Fg6g5KvKlyowrVzK6OfdDpU1y23mhnk4=
Subject key identifier: F8:7E:7A:32:A4:A6:29:1F:E1:68:46:37:4C:29:81:8A:42:BE:40:7B
Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Certificate serial: 0196BFDD0E2B15F87087464A852EF5017F28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
Manifest number: 09BF
Signing time: Sun 11 May 2025 15:00:57 +0000
Manifest this update: Sun 11 May 2025 15:00:57 +0000
Manifest next update: Mon 12 May 2025 15:00:57 +0000
Files and hashes: 1: VRTGeEzF5FtK76qOfPyLSRNqkOo.roa (hash: pOO7nnFTp0Qht5tDg13SMXctJEqxWl0GtVbovHy2WzY=)
2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: wLOmAqqAHeW9VMBA8UKBGN7roInjlJJgmUm8y9RY8YU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 15:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:dd:0e:2b:15:f8:70:87:46:4a:85:2e:f5:01:7f:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Validity
Not Before: May 11 15:00:57 2025 GMT
Not After : May 12 15:00:57 2025 GMT
Subject: CN=f87e7a32a4a6291fe16846374c29818a42be407b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:01:78:1b:71:db:8f:f6:7d:2a:cb:91:10:16:
f2:31:37:49:77:a6:71:ef:30:1f:ef:d3:4f:7d:ba:
0b:35:c3:4d:fa:b4:b1:73:1d:c0:09:1c:ce:44:76:
95:3b:54:e3:f6:ca:e2:92:d5:6f:d8:95:ab:54:74:
fd:e3:f6:d0:0e:7d:1d:69:b5:8b:0f:9f:14:a6:8a:
93:ad:9a:81:28:39:70:fa:d0:4d:1e:4a:fd:17:5b:
a6:c6:74:f1:8c:3c:6d:e6:ec:59:58:96:70:f3:66:
a2:06:75:d0:dc:2b:a8:20:86:9e:74:a0:ac:4b:48:
3a:34:b7:41:fd:b6:a2:d0:b1:e8:78:9f:89:fc:3a:
e7:3f:72:2a:f4:c0:c4:01:5c:c1:5b:fc:3d:0e:47:
fb:55:71:64:56:ec:ae:04:69:5f:24:fd:9e:9f:99:
90:85:37:2d:95:8f:2d:c1:50:41:f2:60:f0:52:73:
3b:0a:94:9e:18:0f:23:52:20:0a:e1:4e:03:52:9c:
6f:80:13:b0:5a:37:9d:24:73:90:75:ff:4b:7b:ea:
f4:9b:3a:a0:e4:3b:46:fd:7d:90:a9:2e:58:33:b9:
d6:f4:20:82:97:f2:e9:ad:41:ea:d2:78:04:9e:32:
8d:48:53:2e:a5:45:f0:a4:1f:9c:b4:1a:b6:30:51:
e2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:7E:7A:32:A4:A6:29:1F:E1:68:46:37:4C:29:81:8A:42:BE:40:7B
X509v3 Authority Key Identifier:
keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:c1:24:d3:a2:dc:11:03:e2:55:34:c9:88:3d:a6:54:32:76:
49:26:bd:7b:36:36:53:dc:b9:b0:bf:19:49:bc:19:27:cd:91:
2e:06:96:cd:67:7b:4a:dc:4f:1c:a7:04:95:ae:e0:41:11:77:
a0:c5:65:f4:a1:8e:d1:0f:86:76:01:14:ef:7e:2d:6d:69:06:
84:b0:cc:16:94:ca:c8:ca:9c:d7:83:35:19:e6:38:73:59:4b:
3d:31:31:b2:93:85:23:29:36:2a:b2:d0:dd:10:0d:d6:5e:61:
56:be:8a:ea:44:35:d5:98:0f:a7:20:3a:42:3b:85:62:ec:f8:
92:40:ff:30:40:3b:1e:93:9e:f2:0f:ac:61:d2:a8:f4:f8:37:
07:e6:ad:36:f8:ea:e2:5a:df:0b:43:c8:8e:a6:e1:84:0b:07:
aa:5d:dd:83:9c:4b:6b:20:58:98:e5:ab:8c:76:de:bf:5a:96:
0f:9e:8a:a3:06:6a:5d:3c:ae:62:cb:54:f9:5d:21:73:25:c7:
cb:1c:8c:56:0a:81:9a:6d:f2:9d:50:04:d8:f5:92:33:33:af:
ba:2e:a6:3e:b6:49:8b:e8:fe:01:f2:0c:a4:07:a9:70:67:38:
4d:30:d4:dc:20:84:67:ef:69:c8:10:b5:44:f5:60:92:1d:39:
ae:d1:77:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa/3Q4rFfhwh0ZKhS71AX8oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkNTlmNDkwZDNiNjliMjJlMWUyN2MzMjZiYWY3MjMxMTA1
NmRkYjgwHhcNMjUwNTExMTUwMDU3WhcNMjUwNTEyMTUwMDU3WjAzMTEwLwYDVQQD
EyhmODdlN2EzMmE0YTYyOTFmZTE2ODQ2Mzc0YzI5ODE4YTQyYmU0MDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswF4G3Hbj/Z9KsuREBbyMTdJd6Zx
7zAf79NPfboLNcNN+rSxcx3ACRzORHaVO1Tj9sriktVv2JWrVHT94/bQDn0dabWL
D58UpoqTrZqBKDlw+tBNHkr9F1umxnTxjDxt5uxZWJZw82aiBnXQ3CuoIIaedKCs
S0g6NLdB/bai0LHoeJ+J/DrnP3Iq9MDEAVzBW/w9Dkf7VXFkVuyuBGlfJP2en5mQ
hTctlY8twVBB8mDwUnM7CpSeGA8jUiAK4U4DUpxvgBOwWjedJHOQdf9Le+r0mzqg
5DtG/X2QqS5YM7nW9CCCl/LprUHq0ngEnjKNSFMupUXwpB+ctBq2MFHi3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPh+ejKkpikf4WhGN0wpgYpCvkB7MB8GA1UdIwQY
MBaAFF1Z9JDTtpsi4eJ8MmuvcjEQVt24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8yYWViNzktMzU4Mi00ZWJmLWIxOWEt
NzkzNDhlODM2NmJjLzEvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS8yYWViNzktMzU4Mi00ZWJmLWIxOWEtNzkzNDhlODM2NmJj
LzEvWFZuMGtOTzJteUxoNG53eWE2OXlNUkJXM2JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe8Ek06Lc
EQPiVTTJiD2mVDJ2SSa9ezY2U9y5sL8ZSbwZJ82RLgaWzWd7StxPHKcEla7gQRF3
oMVl9KGO0Q+GdgEU734tbWkGhLDMFpTKyMqc14M1GeY4c1lLPTExspOFIyk2KrLQ
3RAN1l5hVr6K6kQ11ZgPpyA6QjuFYuz4kkD/MEA7HpOe8g+sYdKo9Pg3B+atNvjq
4lrfC0PIjqbhhAsHql3dg5xLayBYmOWrjHbev1qWD56KowZqXTyuYstU+V0hcyXH
yxyMVgqBmm3ynVAE2PWSMzOvui6mPrZJi+j+AfIMpAepcGc4TTDU3CCEZ+9pyBC1
RPVgkh05rtF3nw==
-----END CERTIFICATE-----
Generated at Sun May 11 19:26:33 2025 by rpki-client