Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
File: unnFAIApfLnMDMk07jifUMPnPUo.mft (raw, json)
Hash identifier: dNHlrJeJLc1y8toWwe5JoljB9QAWbUe/awfZaTkYYfU=
Subject key identifier: 94:A2:07:05:FB:2D:C7:A6:6C:CA:8E:34:AF:CD:C1:94:C8:F2:7B:4D
Authority key identifier: BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
Certificate issuer: /CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Certificate serial: 0196C8DFF2BE6028BC7C092AA7B54B771F96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
Manifest number: 0408
Signing time: Tue 13 May 2025 09:00:41 +0000
Manifest this update: Tue 13 May 2025 09:00:41 +0000
Manifest next update: Wed 14 May 2025 09:00:41 +0000
Files and hashes: 1: CpPRk_TNW4CH4jbImpFoaI2OcL4.roa (hash: eYYsy6V5aRdmdwv40uWtw/bgoED55t23eDlp8kMf818=)
2: unnFAIApfLnMDMk07jifUMPnPUo.crl (hash: rb0hOcr0htXQV7n2JExl9CjBh1CZKciByV3/gHvDafg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:df:f2:be:60:28:bc:7c:09:2a:a7:b5:4b:77:1f:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Validity
Not Before: May 13 09:00:41 2025 GMT
Not After : May 14 09:00:41 2025 GMT
Subject: CN=94a20705fb2dc7a66cca8e34afcdc194c8f27b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5d:fa:fa:c7:90:78:cd:14:d4:ab:93:41:ff:
3c:94:b9:49:51:0b:35:5f:3e:25:ce:c4:a5:1e:a6:
eb:b4:d1:62:f7:9d:aa:80:ce:cc:33:63:1a:85:04:
ae:df:6a:5e:7c:88:01:5b:2b:27:75:29:47:40:05:
10:a9:04:e5:e0:b7:25:df:db:5c:3a:cc:40:7e:a9:
53:b9:29:57:98:cb:86:b2:2a:d4:a5:2b:1f:75:f4:
d7:65:46:d7:b0:25:be:96:68:36:80:d0:23:d4:e1:
7a:b1:4e:70:91:c3:d0:a0:fe:26:6a:2c:14:6f:e9:
67:a6:27:a7:1e:54:ef:dd:0d:20:89:34:5e:ae:83:
d2:9b:97:e5:f6:d3:a6:be:31:35:b2:e2:aa:c2:ee:
3b:92:45:5e:3b:bb:38:87:95:88:0e:26:dc:1a:d5:
ef:45:28:5f:42:6e:b5:b0:3b:ac:20:c3:dc:87:6c:
0e:86:47:43:22:05:16:52:9a:97:c6:35:f7:0f:0b:
2b:b2:e9:1c:8c:34:cc:df:9b:e0:9d:44:5c:fd:ca:
0c:86:d1:0c:e0:5d:3d:04:85:5b:99:4c:e4:66:cb:
87:1c:dd:0c:04:1a:99:1a:f0:e3:8b:9c:5c:fa:dd:
cb:1e:df:ad:0d:f8:df:79:c5:27:84:87:f3:b9:b2:
f5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:A2:07:05:FB:2D:C7:A6:6C:CA:8E:34:AF:CD:C1:94:C8:F2:7B:4D
X509v3 Authority Key Identifier:
keyid:BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:89:fe:8b:8b:36:b3:2a:82:14:e2:f4:9e:76:03:f8:0f:96:
31:46:03:73:1f:f1:1d:5e:e6:d9:42:38:8a:0c:57:55:e2:c0:
7e:71:ae:2b:b0:8c:6a:e2:40:81:26:72:29:c9:f1:aa:af:03:
a8:0d:73:9d:15:03:df:7c:91:6b:78:c8:e4:a8:a2:db:e9:02:
76:8d:f4:7c:ff:b1:1c:f0:5e:65:2d:b7:0a:b4:64:99:89:10:
9a:d8:10:11:6d:ae:69:7a:46:de:4b:d2:a3:54:ef:8b:f6:87:
1d:e0:19:a8:80:fc:3d:f2:9d:99:7d:f0:31:c3:a6:66:ac:c2:
3b:f6:29:17:62:fb:02:02:53:44:81:7a:1e:9c:80:f9:5f:51:
b5:76:d1:1c:64:29:1f:a4:cd:08:44:01:68:3b:45:a5:b1:00:
7f:da:e1:25:2f:2b:67:23:15:e1:d0:0f:fb:8a:93:91:50:5d:
ad:13:f7:b3:14:9d:14:98:b5:77:61:56:8a:1c:65:09:c7:eb:
52:9d:49:5b:9f:8a:23:8b:85:69:1a:7c:e4:00:37:2f:c3:3a:
2c:2d:db:83:c7:ff:ca:10:44:34:47:46:1d:ef:76:f6:91:83:
ac:cc:4f:93:45:11:11:94:36:48:d9:52:62:e2:4a:4b:7b:5b:
fa:65:e5:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbI3/K+YCi8fAkqp7VLdx+WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNzljNTAwODAyOTdjYjljYzBjYzkzNGVlMzg5ZjUwYzNl
NzNkNGEwHhcNMjUwNTEzMDkwMDQxWhcNMjUwNTE0MDkwMDQxWjAzMTEwLwYDVQQD
Eyg5NGEyMDcwNWZiMmRjN2E2NmNjYThlMzRhZmNkYzE5NGM4ZjI3YjRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm136+seQeM0U1KuTQf88lLlJUQs1
Xz4lzsSlHqbrtNFi952qgM7MM2MahQSu32pefIgBWysndSlHQAUQqQTl4Lcl39tc
OsxAfqlTuSlXmMuGsirUpSsfdfTXZUbXsCW+lmg2gNAj1OF6sU5wkcPQoP4maiwU
b+lnpienHlTv3Q0giTReroPSm5fl9tOmvjE1suKqwu47kkVeO7s4h5WIDibcGtXv
RShfQm61sDusIMPch2wOhkdDIgUWUpqXxjX3DwsrsukcjDTM35vgnURc/coMhtEM
4F09BIVbmUzkZsuHHN0MBBqZGvDji5xc+t3LHt+tDfjfecUnhIfzubL1zwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJSiBwX7LcembMqONK/NwZTI8ntNMB8GA1UdIwQY
MBaAFLp5xQCAKXy5zAzJNO44n1DD5z1KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW5uRkFJQXBmTG5NRE1rMDdqaWZVTVBuUFVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9hNjIxYTgtZTA3OS00YTE0LTk4YmEt
ZTM2YTk3OTNlYTZkLzEvdW5uRkFJQXBmTG5NRE1rMDdqaWZVTVBuUFVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9hNjIxYTgtZTA3OS00YTE0LTk4YmEtZTM2YTk3OTNlYTZk
LzEvdW5uRkFJQXBmTG5NRE1rMDdqaWZVTVBuUFVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKIn+i4s2
syqCFOL0nnYD+A+WMUYDcx/xHV7m2UI4igxXVeLAfnGuK7CMauJAgSZyKcnxqq8D
qA1znRUD33yRa3jI5Kii2+kCdo30fP+xHPBeZS23CrRkmYkQmtgQEW2uaXpG3kvS
o1Tvi/aHHeAZqID8PfKdmX3wMcOmZqzCO/YpF2L7AgJTRIF6HpyA+V9RtXbRHGQp
H6TNCEQBaDtFpbEAf9rhJS8rZyMV4dAP+4qTkVBdrRP3sxSdFJi1d2FWihxlCcfr
Up1JW5+KI4uFaRp85AA3L8M6LC3bg8f/yhBENEdGHe929pGDrMxPk0UREZQ2SNlS
YuJKS3tb+mXllA==
-----END CERTIFICATE-----
Generated at Tue May 13 13:19:30 2025 by rpki-client