Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
File: mRQlj7nTZXszdhQr_GPazk-CEcQ.mft (raw, json)
Hash identifier: +Jvm1/lAfxuohmVfOEmEOF7ibBkAk1kRzdgZDA+RhTI=
Subject key identifier: 66:A2:7E:12:78:72:9C:15:BC:41:8B:AF:00:2B:5A:2B:8A:CC:E7:F7
Authority key identifier: 99:14:25:8F:B9:D3:65:7B:33:76:14:2B:FC:63:DA:CE:4F:82:11:C4
Certificate issuer: /CN=9914258fb9d3657b3376142bfc63dace4f8211c4
Certificate serial: 0196AD9F744CFF02955DC7B53641064163B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
Manifest number: 152B
Signing time: Thu 08 May 2025 02:00:30 +0000
Manifest this update: Thu 08 May 2025 02:00:30 +0000
Manifest next update: Fri 09 May 2025 02:00:30 +0000
Files and hashes: 1: 2JXcaA80r7d-EIDaMijpbBPasoc.roa (hash: gf95/nywAYIZdNJbfxynwrtY4coqSX3R7aiF8YJONgo=)
2: mRQlj7nTZXszdhQr_GPazk-CEcQ.crl (hash: gWSKLy/jwuwSgZoMaWbTzl98ta2XEZ71MoybbKO4myk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ad:9f:74:4c:ff:02:95:5d:c7:b5:36:41:06:41:63:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9914258fb9d3657b3376142bfc63dace4f8211c4
Validity
Not Before: May 8 02:00:30 2025 GMT
Not After : May 9 02:00:30 2025 GMT
Subject: CN=66a27e1278729c15bc418baf002b5a2b8acce7f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2f:82:59:ac:f1:3d:b9:5f:52:22:92:62:a7:
06:68:a6:56:39:8a:86:5a:6d:c1:4c:15:a3:ba:52:
20:1f:58:53:65:91:04:93:35:3e:e7:c9:08:82:81:
1c:59:55:f8:8a:f4:bb:89:73:cf:92:ec:b0:e2:92:
ee:23:82:aa:66:34:d6:5a:55:3e:2a:40:59:c9:43:
17:85:78:cd:1e:1f:b3:a7:0e:e6:ef:5d:64:3a:8d:
b1:62:70:50:c5:d3:da:c7:90:85:06:d8:6e:1e:a3:
be:77:1a:71:ea:2a:ec:64:48:27:26:ad:18:c9:d0:
ae:c9:5f:4c:d0:1f:7c:74:ad:58:78:71:44:58:79:
7b:71:76:ff:65:5a:1d:be:97:de:4f:87:97:bc:b5:
8f:dc:a7:46:df:23:68:ef:c7:64:d8:29:71:71:d2:
7c:cf:ce:4d:ee:83:29:6e:b7:f9:ba:76:e8:b9:67:
fb:07:cd:93:6a:37:ef:77:e1:ee:8d:bb:b7:9f:8b:
1d:50:67:7d:fc:67:17:fc:54:8e:0f:f0:b4:9c:f9:
ac:9b:3f:4e:e3:0b:d7:f7:ff:14:c8:79:a7:47:91:
40:81:c5:ac:9f:c0:f0:68:53:c1:f3:4e:df:b8:64:
69:68:8c:c7:f1:3a:d8:62:6e:85:75:73:f3:2c:c1:
9e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A2:7E:12:78:72:9C:15:BC:41:8B:AF:00:2B:5A:2B:8A:CC:E7:F7
X509v3 Authority Key Identifier:
keyid:99:14:25:8F:B9:D3:65:7B:33:76:14:2B:FC:63:DA:CE:4F:82:11:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:fe:c3:f7:81:bc:ef:2f:9a:c5:cc:f5:b2:4f:db:14:db:c9:
27:db:c6:64:d7:b1:db:32:4e:1d:b0:6e:77:9f:19:94:ba:3f:
ea:17:1a:75:9a:96:e9:91:03:2f:1c:39:bc:b9:7c:2c:b4:90:
64:29:0f:a9:a0:ef:4c:6b:6d:6b:4c:12:b6:71:77:c0:47:5c:
c0:8c:c6:51:51:01:0b:fd:68:f9:26:f3:6c:d0:7f:28:0d:1e:
6a:63:e8:5b:ad:34:c7:86:ee:de:f2:46:79:60:09:75:4f:7e:
99:44:91:b3:6c:bc:a4:53:cd:4c:0c:57:d8:63:19:83:94:9f:
4f:53:41:5e:e7:a5:7e:f9:92:41:65:42:cf:31:97:6c:14:cf:
8a:f4:40:79:10:cb:8a:5a:d7:7f:57:f2:4a:b8:ca:ae:31:2b:
2d:9e:b4:1e:21:c1:46:b7:99:26:8f:f8:da:37:fd:7a:b4:7e:
ff:ae:81:a9:56:f5:0d:af:b1:8a:9f:62:bb:ec:14:53:ce:37:
73:d4:4d:66:0c:fc:45:af:4e:1f:91:37:b5:8c:66:a3:0f:ea:
62:bf:86:10:70:a1:ac:fd:d4:2a:ba:49:13:0d:95:99:32:b5:
ca:f5:f3:b4:68:55:d9:68:90:ce:f7:a0:75:58:20:68:3f:45:
a0:43:a9:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZatn3RM/wKVXce1NkEGQWO3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5MTQyNThmYjlkMzY1N2IzMzc2MTQyYmZjNjNkYWNlNGY4
MjExYzQwHhcNMjUwNTA4MDIwMDMwWhcNMjUwNTA5MDIwMDMwWjAzMTEwLwYDVQQD
Eyg2NmEyN2UxMjc4NzI5YzE1YmM0MThiYWYwMDJiNWEyYjhhY2NlN2Y3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvi+CWazxPblfUiKSYqcGaKZWOYqG
Wm3BTBWjulIgH1hTZZEEkzU+58kIgoEcWVX4ivS7iXPPkuyw4pLuI4KqZjTWWlU+
KkBZyUMXhXjNHh+zpw7m711kOo2xYnBQxdPax5CFBthuHqO+dxpx6irsZEgnJq0Y
ydCuyV9M0B98dK1YeHFEWHl7cXb/ZVodvpfeT4eXvLWP3KdG3yNo78dk2ClxcdJ8
z85N7oMpbrf5unbouWf7B82Tajfvd+Hujbu3n4sdUGd9/GcX/FSOD/C0nPmsmz9O
4wvX9/8UyHmnR5FAgcWsn8DwaFPB807fuGRpaIzH8TrYYm6FdXPzLMGeNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGaifhJ4cpwVvEGLrwArWiuKzOf3MB8GA1UdIwQY
MBaAFJkUJY+502V7M3YUK/xj2s5PghHEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVJRbGo3blRaWHN6ZGhRcl9HUGF6ay1DRWNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS84NjY0MWUtNjY5Yy00YThkLWFlMGIt
ZmUzNDFiMzAwNWUzLzEvbVJRbGo3blRaWHN6ZGhRcl9HUGF6ay1DRWNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS84NjY0MWUtNjY5Yy00YThkLWFlMGItZmUzNDFiMzAwNWUz
LzEvbVJRbGo3blRaWHN6ZGhRcl9HUGF6ay1DRWNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJf7D94G8
7y+axcz1sk/bFNvJJ9vGZNex2zJOHbBud58ZlLo/6hcadZqW6ZEDLxw5vLl8LLSQ
ZCkPqaDvTGtta0wStnF3wEdcwIzGUVEBC/1o+SbzbNB/KA0eamPoW600x4bu3vJG
eWAJdU9+mUSRs2y8pFPNTAxX2GMZg5SfT1NBXuelfvmSQWVCzzGXbBTPivRAeRDL
ilrXf1fySrjKrjErLZ60HiHBRreZJo/42jf9erR+/66BqVb1Da+xip9iu+wUU843
c9RNZgz8Ra9OH5E3tYxmow/qYr+GEHChrP3UKrpJEw2VmTK1yvXztGhV2WiQzveg
dVggaD9FoEOpRw==
-----END CERTIFICATE-----
Generated at Thu May 8 07:28:47 2025 by rpki-client