Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
File: mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft (raw, json)
Hash identifier: yyTY7idukexhBeziHhUbAzXkcKE6SdgF7M8Qvl35nVw=
Subject key identifier: B5:DB:4A:74:CA:12:FB:C9:59:37:4B:CC:1B:AC:17:81:35:15:F5:80
Authority key identifier: 99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
Certificate issuer: /CN=991b5422cd5578d4715ebe4c5097202523dd5658
Certificate serial: 0196BD492B4FC115C83A618EC95736D2ED21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
Manifest number: 13BC
Signing time: Sun 11 May 2025 03:00:11 +0000
Manifest this update: Sun 11 May 2025 03:00:11 +0000
Manifest next update: Mon 12 May 2025 03:00:11 +0000
Files and hashes: 1: dUzHcv1qzeux_y2IL7xdvYNLLOQ.roa (hash: nSNOUC9fK3tMm0ddVALi9dbfVwMcfIB34jQG6rm/2t0=)
2: mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl (hash: 7SLnX73M/UeU68egTHabFdWcY7CU8ytcBukxKPuGhL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:49:2b:4f:c1:15:c8:3a:61:8e:c9:57:36:d2:ed:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991b5422cd5578d4715ebe4c5097202523dd5658
Validity
Not Before: May 11 03:00:11 2025 GMT
Not After : May 12 03:00:11 2025 GMT
Subject: CN=b5db4a74ca12fbc959374bcc1bac17813515f580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:71:d5:5c:bc:d3:14:c8:e2:34:c7:b6:6a:dc:
c7:d9:f0:e7:be:a6:e6:c7:1b:15:17:12:f1:69:a8:
40:9a:12:b1:cd:fc:11:b9:f1:c4:b8:9f:b8:2a:69:
85:c7:d7:48:c6:b1:db:68:4d:70:91:69:bd:b6:c0:
9d:02:35:a3:ea:46:5e:43:53:f8:3b:40:8e:ee:a5:
42:be:53:92:7c:5d:6c:71:ff:ce:4d:88:7b:de:94:
4f:64:2c:93:8f:30:12:33:b5:89:f3:ff:47:70:bb:
bf:30:be:4d:a0:47:87:78:98:07:6e:ce:9f:6e:02:
88:38:22:b4:bc:c6:93:f1:26:26:58:06:c9:aa:56:
80:49:50:c8:d2:ee:ca:9d:29:e0:0e:99:79:df:87:
f6:e5:52:fc:24:0c:b4:a8:e2:1a:88:70:28:5e:16:
a0:95:a6:55:0f:81:1d:51:c8:1d:cb:36:13:2f:57:
b2:b1:ab:00:73:35:7d:83:b6:38:d0:a2:20:c6:f6:
bf:b1:3a:2b:b2:7a:33:6f:44:94:53:bf:9a:50:6d:
52:33:86:cc:33:a7:24:81:04:ca:d4:8c:72:fd:e9:
60:bb:ab:06:13:d6:1d:b0:cb:a1:1b:f4:c5:6b:b2:
41:1f:6b:56:87:73:0d:01:2a:98:b6:8e:c9:84:3c:
ef:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:DB:4A:74:CA:12:FB:C9:59:37:4B:CC:1B:AC:17:81:35:15:F5:80
X509v3 Authority Key Identifier:
keyid:99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:fa:54:bd:fd:6c:cd:ad:65:9e:c4:d7:fd:56:ae:4f:a8:7f:
89:7b:78:1c:0b:d9:17:f5:d3:c7:86:25:fe:00:07:de:27:0a:
5a:ca:0b:c2:c5:13:0f:c5:29:ef:9c:28:06:5b:a5:3c:81:95:
ac:a7:2e:f9:7d:76:dc:c5:35:b2:39:5a:e3:75:85:f3:35:c8:
c8:e0:b4:da:81:0e:96:f5:c7:f6:7b:cd:bc:3e:99:ac:d0:43:
12:ff:a8:d8:79:c3:58:bf:19:43:64:8e:d9:4c:54:ef:4d:43:
c4:44:e0:e1:45:19:83:28:b4:7a:83:d7:b1:38:76:40:21:70:
3d:b3:d4:ca:e8:0d:99:f3:88:12:92:35:2f:55:5d:bc:43:54:
d1:31:e0:e7:92:98:f2:b6:76:73:93:e5:a3:46:50:79:f8:61:
c9:2f:a2:33:b6:d5:53:ee:6b:d6:95:a1:95:04:27:f7:49:cc:
65:16:55:4e:a6:74:48:30:30:20:15:80:f6:c4:d2:92:42:9c:
eb:f4:86:c3:b4:93:85:31:fb:40:f3:77:b4:ff:20:a0:ca:75:
20:cf:2a:27:b7:0b:08:3c:3b:d2:44:28:47:7f:08:48:fc:da:
9a:80:8a:69:05:a7:c0:26:32:5c:b0:75:36:64:fd:74:1b:9e:
48:3f:92:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa9SStPwRXIOmGOyVc20u0hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5MWI1NDIyY2Q1NTc4ZDQ3MTVlYmU0YzUwOTcyMDI1MjNk
ZDU2NTgwHhcNMjUwNTExMDMwMDExWhcNMjUwNTEyMDMwMDExWjAzMTEwLwYDVQQD
EyhiNWRiNGE3NGNhMTJmYmM5NTkzNzRiY2MxYmFjMTc4MTM1MTVmNTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHHVXLzTFMjiNMe2atzH2fDnvqbm
xxsVFxLxaahAmhKxzfwRufHEuJ+4KmmFx9dIxrHbaE1wkWm9tsCdAjWj6kZeQ1P4
O0CO7qVCvlOSfF1scf/OTYh73pRPZCyTjzASM7WJ8/9HcLu/ML5NoEeHeJgHbs6f
bgKIOCK0vMaT8SYmWAbJqlaASVDI0u7KnSngDpl534f25VL8JAy0qOIaiHAoXhag
laZVD4EdUcgdyzYTL1eysasAczV9g7Y40KIgxva/sTorsnozb0SUU7+aUG1SM4bM
M6ckgQTK1Ixy/elgu6sGE9YdsMuhG/TFa7JBH2tWh3MNASqYto7JhDzvWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLXbSnTKEvvJWTdLzBusF4E1FfWAMB8GA1UdIwQY
MBaAFJkbVCLNVXjUcV6+TFCXICUj3VZYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVJ0VUlzMVZlTlJ4WHI1TVVKY2dKU1BkVmxnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy81ODExYzAtNmRhZS00ZGQ0LTk4N2Mt
ZDQ2ZmZjNTAxZjM2LzEvbVJ0VUlzMVZlTlJ4WHI1TVVKY2dKU1BkVmxnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy81ODExYzAtNmRhZS00ZGQ0LTk4N2MtZDQ2ZmZjNTAxZjM2
LzEvbVJ0VUlzMVZlTlJ4WHI1TVVKY2dKU1BkVmxnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhvpUvf1s
za1lnsTX/VauT6h/iXt4HAvZF/XTx4Yl/gAH3icKWsoLwsUTD8Up75woBlulPIGV
rKcu+X123MU1sjla43WF8zXIyOC02oEOlvXH9nvNvD6ZrNBDEv+o2HnDWL8ZQ2SO
2UxU701DxETg4UUZgyi0eoPXsTh2QCFwPbPUyugNmfOIEpI1L1VdvENU0THg55KY
8rZ2c5Plo0ZQefhhyS+iM7bVU+5r1pWhlQQn90nMZRZVTqZ0SDAwIBWA9sTSkkKc
6/SGw7SThTH7QPN3tP8goMp1IM8qJ7cLCDw70kQoR38ISPzamoCKaQWnwCYyXLB1
NmT9dBueSD+SHg==
-----END CERTIFICATE-----
Generated at Sun May 11 06:46:57 2025 by rpki-client