Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
File: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft (raw, json)
Hash identifier: mtD6Vt6//3Im/3Qse4dJsMM3jBS7EhTguOkyuS27+K8=
Subject key identifier: 47:A1:AE:64:45:61:17:1E:28:19:95:97:EF:8A:52:10:3F:A1:2F:73
Authority key identifier: 0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
Certificate issuer: /CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Certificate serial: 0196B6A257DBF2A332B8B5CEBF5EECA7EC4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
Manifest number: 04A3
Signing time: Fri 09 May 2025 20:00:14 +0000
Manifest this update: Fri 09 May 2025 20:00:14 +0000
Manifest next update: Sat 10 May 2025 20:00:14 +0000
Files and hashes: 1: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl (hash: ciffyxr08Fv7ZZzYWnU6e/9RDv6yXdpBqrrYjczzVy4=)
2: qj9pJEL6aLQRmJQwwNdSHRT6Q7o.roa (hash: YXXU3MHXgJerIl9CeLyHeV8Hu3RdrFxQkf90wVwUCHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:a2:57:db:f2:a3:32:b8:b5:ce:bf:5e:ec:a7:ec:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Validity
Not Before: May 9 20:00:14 2025 GMT
Not After : May 10 20:00:14 2025 GMT
Subject: CN=47a1ae644561171e28199597ef8a52103fa12f73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f5:e2:ec:68:a1:41:36:7f:36:d9:6c:d5:bc:
c9:23:57:19:66:d1:e6:6e:7e:1e:d1:f4:04:fc:19:
10:7a:9e:31:f6:62:55:a7:8e:96:9f:6e:fe:2c:24:
dc:dd:18:44:ed:f2:84:60:60:08:fe:42:64:71:c4:
39:f3:4e:7e:67:f5:89:54:13:fe:7f:2b:ae:d1:7a:
1f:de:a2:2c:cf:fe:6c:3d:98:fc:bb:d7:a5:49:5f:
d2:45:6a:b1:20:b0:e0:01:a6:86:da:4d:8e:4a:25:
5a:fc:a1:97:5d:da:aa:04:11:28:b8:19:d5:8f:32:
8b:e7:5d:03:17:d3:5c:f5:84:7d:4e:be:fa:df:2c:
19:6c:a6:c6:2b:70:aa:f1:a8:9c:4f:a9:0e:53:1d:
05:4a:8c:ba:d5:c5:29:e4:99:61:ae:f8:09:45:e3:
5e:1f:22:85:f2:3f:2d:5e:77:50:12:df:27:75:68:
dd:91:9f:52:80:96:28:e1:0a:a9:8f:48:cb:4a:a1:
0f:b1:6d:1b:1a:15:b5:19:ee:c1:92:0b:97:2a:76:
cf:14:38:9a:f5:f7:6f:a8:b9:39:f9:81:a4:54:d0:
82:c2:fc:84:b5:1f:10:c0:18:37:de:b5:8a:e5:ec:
b4:f9:9f:4e:c4:66:fb:d2:0b:ee:c0:0f:5c:2d:f0:
e2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A1:AE:64:45:61:17:1E:28:19:95:97:EF:8A:52:10:3F:A1:2F:73
X509v3 Authority Key Identifier:
keyid:0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:ab:cd:97:6a:cd:1e:0e:17:61:9b:69:c6:a1:7a:67:62:f6:
cf:8c:c6:28:fe:3f:67:87:0e:34:aa:5c:ca:2d:d1:eb:1c:b2:
78:63:27:27:94:b0:76:ec:23:f8:a5:f1:3b:f7:9f:05:08:95:
69:f2:b6:01:48:4b:5c:fc:2a:f0:3a:b1:03:12:62:ed:a0:22:
4b:fa:62:42:c5:8f:27:a5:fb:20:cb:bc:e1:13:a0:c5:15:e8:
53:e4:d1:31:24:71:1c:66:01:ee:2b:de:01:52:c1:82:5c:ea:
e0:e8:23:4e:75:c7:e4:b8:59:a8:49:aa:53:41:85:12:ec:13:
de:b4:76:2f:bf:2b:4a:52:34:2f:04:25:66:9e:c7:88:f9:08:
66:00:a7:43:df:18:c7:36:cc:a3:85:53:f3:fb:2c:c9:93:23:
9c:77:fc:1f:15:ea:4a:0b:33:fa:12:7d:fb:14:82:97:16:4a:
de:42:09:b6:65:c4:86:99:89:75:93:03:e6:af:45:82:57:f0:
d1:41:6f:80:e2:3a:67:32:2a:1e:53:b9:68:6f:9e:f0:a6:67:
e9:6b:b6:3c:2b:3d:45:1c:84:4e:2d:d7:8c:95:76:2d:37:9b:
ce:a8:ef:94:05:ab:de:6b:c9:4a:bf:f7:51:cf:62:50:52:65:
5f:f2:f9:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa2olfb8qMyuLXOv17sp+xOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmYmZlOTM4NWU2YTc1OWY4MzNlNGYwOWEwOWYwZGNmZWQ1
M2IzZTQwHhcNMjUwNTA5MjAwMDE0WhcNMjUwNTEwMjAwMDE0WjAzMTEwLwYDVQQD
Eyg0N2ExYWU2NDQ1NjExNzFlMjgxOTk1OTdlZjhhNTIxMDNmYTEyZjczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6/Xi7GihQTZ/Ntls1bzJI1cZZtHm
bn4e0fQE/BkQep4x9mJVp46Wn27+LCTc3RhE7fKEYGAI/kJkccQ5805+Z/WJVBP+
fyuu0Xof3qIsz/5sPZj8u9elSV/SRWqxILDgAaaG2k2OSiVa/KGXXdqqBBEouBnV
jzKL510DF9Nc9YR9Tr763ywZbKbGK3Cq8aicT6kOUx0FSoy61cUp5JlhrvgJReNe
HyKF8j8tXndQEt8ndWjdkZ9SgJYo4Qqpj0jLSqEPsW0bGhW1Ge7BkguXKnbPFDia
9fdvqLk5+YGkVNCCwvyEtR8QwBg33rWK5ey0+Z9OxGb70gvuwA9cLfDiawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEehrmRFYRceKBmVl++KUhA/oS9zMB8GA1UdIwQY
MBaAFA+/6TheanWfgz5PCaCfDc/tU7PkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDdfcE9GNXFkWi1EUGs4Sm9KOE56LTFUcy1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8yYmI5NDgtNDc4Yy00YTAyLWExOGUt
ZDY0N2RjOGE1NmI2LzEvRDdfcE9GNXFkWi1EUGs4Sm9KOE56LTFUcy1RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8yYmI5NDgtNDc4Yy00YTAyLWExOGUtZDY0N2RjOGE1NmI2
LzEvRDdfcE9GNXFkWi1EUGs4Sm9KOE56LTFUcy1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV6vNl2rN
Hg4XYZtpxqF6Z2L2z4zGKP4/Z4cONKpcyi3R6xyyeGMnJ5Swduwj+KXxO/efBQiV
afK2AUhLXPwq8DqxAxJi7aAiS/piQsWPJ6X7IMu84ROgxRXoU+TRMSRxHGYB7ive
AVLBglzq4OgjTnXH5LhZqEmqU0GFEuwT3rR2L78rSlI0LwQlZp7HiPkIZgCnQ98Y
xzbMo4VT8/ssyZMjnHf8HxXqSgsz+hJ9+xSClxZK3kIJtmXEhpmJdZMD5q9Fglfw
0UFvgOI6ZzIqHlO5aG+e8KZn6Wu2PCs9RRyETi3XjJV2LTebzqjvlAWr3mvJSr/3
Uc9iUFJlX/L5ng==
-----END CERTIFICATE-----
Generated at Sat May 10 05:31:50 2025 by rpki-client