Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
File: rKZqWTivVnqeKbT3bxFWB8K4qiA.mft (raw, json)
Hash identifier: QxL2s3hvZRfLUoEHrKND7fQhl4Z8HsSc0tdMxW1iHEM=
Subject key identifier: 24:0D:A9:F1:98:22:04:DD:D1:35:72:19:25:DC:69:C7:AC:FD:64:F0
Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Certificate serial: 0196BC372476D77272F2E370E683F79B7988
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
Manifest number: 1547
Signing time: Sat 10 May 2025 22:00:52 +0000
Manifest this update: Sat 10 May 2025 22:00:52 +0000
Manifest next update: Sun 11 May 2025 22:00:52 +0000
Files and hashes: 1: A6WXTZEzXmIQ_NgfUonzU2PUwgA.roa (hash: woiA9rRwDxAjmj0pEa4K5XOpCIKapMbaEdUIwATG6G0=)
2: nna5EA2g1qX6KviopTAzfZKYgqM.roa (hash: +1+cT+lcsXs8CMprSc3uLnHvYXXY0ACjWW6HRhv0N78=)
3: pnVgolr6kqtefIzFBQ25v9r89oU.roa (hash: VJuUTV8i4Al97i+L0IwbQC+Q7J6nmykHVnDUwxHzy7o=)
4: rKZqWTivVnqeKbT3bxFWB8K4qiA.crl (hash: indlhHd49sEFyxaZuj8mVUbgJi/MPrIlGF/PdBWFV5I=)
5: xNEUjA7ITLvBkxdzmbme9661TlQ.roa (hash: 1h+l7pX24LlIz83Xj6rt/K305QYrLmEd1uwS9wbn8l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:37:24:76:d7:72:72:f2:e3:70:e6:83:f7:9b:79:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Validity
Not Before: May 10 22:00:52 2025 GMT
Not After : May 11 22:00:52 2025 GMT
Subject: CN=240da9f1982204ddd135721925dc69c7acfd64f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ef:71:14:ba:b1:b8:cc:8d:b3:97:d9:6c:be:
a9:3c:c3:df:25:88:a5:d5:4e:39:2e:c4:8b:fb:6a:
00:45:24:5d:f7:3e:fe:e9:17:11:1a:8e:53:93:47:
83:50:6a:52:cc:2d:19:a5:c3:59:0d:ac:87:ff:60:
a2:5d:61:83:98:ef:b8:e6:13:1b:52:8c:e1:9b:f9:
f2:a2:0c:3f:6b:b5:a1:78:62:20:16:f0:ec:8f:98:
e6:4c:33:ea:57:e3:69:7b:6e:39:84:ee:9b:95:e3:
a3:8b:18:73:bb:e8:15:ec:31:fe:37:fa:43:f4:7d:
3a:37:34:12:84:03:c0:c1:71:b8:73:35:88:56:2f:
5d:74:85:d6:03:50:3b:76:58:ef:09:99:04:ad:42:
e2:42:13:45:3e:cc:e6:30:67:b5:ac:ab:4b:38:d8:
6d:bc:7d:2b:4e:54:38:d6:46:06:5f:1a:7f:c2:68:
c2:99:1a:6c:dd:46:86:e8:a5:58:fa:81:19:34:16:
5e:76:01:90:29:c2:ac:cb:a4:8b:6f:24:2f:80:d6:
28:95:74:62:14:a8:bb:77:90:3c:e7:10:f1:f4:db:
97:cd:70:07:da:01:4c:da:91:9b:03:ca:50:c5:32:
59:42:62:20:a1:88:19:08:2b:4f:3b:51:c3:66:d0:
7d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:0D:A9:F1:98:22:04:DD:D1:35:72:19:25:DC:69:C7:AC:FD:64:F0
X509v3 Authority Key Identifier:
keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:e5:c0:16:50:a1:17:5e:c3:ba:10:ba:3b:52:69:92:e5:b7:
40:7d:09:e4:c5:42:21:ea:89:b0:16:1c:52:a0:46:62:37:b3:
17:de:b2:c7:63:d9:1a:c3:23:29:ad:bf:92:49:39:3e:41:1b:
58:8a:e5:a1:c1:c3:68:79:b2:e1:b6:0a:0a:e7:22:a7:31:ae:
32:b9:b6:e0:e6:13:35:a1:70:35:b2:8d:32:82:f3:be:1b:0a:
61:2a:d5:8c:7d:3f:8c:db:83:92:bc:ad:b7:1a:d0:eb:54:ec:
92:ce:d2:1b:39:10:5d:55:1d:62:b2:ef:23:df:41:4f:3b:91:
3b:0e:95:ff:79:f4:e9:b3:c4:ad:9d:6b:c2:f9:4a:1f:f1:5e:
e5:73:8a:07:65:ab:97:34:6f:aa:b7:9f:32:38:47:7b:c7:73:
da:3d:da:d2:9d:2a:2a:e2:a2:f1:b0:db:46:35:85:68:8a:50:
a7:1a:f5:6b:d9:be:6a:39:92:93:f7:7d:cd:ed:20:76:0a:a9:
73:69:29:80:4f:10:ce:9a:0a:42:ab:e6:0f:54:a2:31:44:2f:
00:bd:fc:7a:09:6a:cb:1e:a4:09:f2:86:93:2b:d8:02:99:04:
0a:6d:08:2a:b3:17:1c:a1:09:b8:03:ef:a0:c3:f8:eb:fd:74:
c6:28:3f:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa8NyR213Jy8uNw5oP3m3mIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjYTY2YTU5MzhhZjU2N2E5ZTI5YjRmNzZmMTE1NjA3YzJi
OGFhMjAwHhcNMjUwNTEwMjIwMDUyWhcNMjUwNTExMjIwMDUyWjAzMTEwLwYDVQQD
EygyNDBkYTlmMTk4MjIwNGRkZDEzNTcyMTkyNWRjNjljN2FjZmQ2NGYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2O9xFLqxuMyNs5fZbL6pPMPfJYil
1U45LsSL+2oARSRd9z7+6RcRGo5Tk0eDUGpSzC0ZpcNZDayH/2CiXWGDmO+45hMb
Uozhm/nyogw/a7WheGIgFvDsj5jmTDPqV+Npe245hO6bleOjixhzu+gV7DH+N/pD
9H06NzQShAPAwXG4czWIVi9ddIXWA1A7dljvCZkErULiQhNFPszmMGe1rKtLONht
vH0rTlQ41kYGXxp/wmjCmRps3UaG6KVY+oEZNBZedgGQKcKsy6SLbyQvgNYolXRi
FKi7d5A85xDx9NuXzXAH2gFM2pGbA8pQxTJZQmIgoYgZCCtPO1HDZtB9zQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCQNqfGYIgTd0TVyGSXcaces/WTwMB8GA1UdIwQY
MBaAFKymalk4r1Z6nim0928RVgfCuKogMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcktacVdUaXZWbnFlS2JUM2J4RldCOEs0cWlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xNTA4OWItMThkNy00ZmYwLTlkMjgt
YjliNjU0MDJiOTI4LzEvcktacVdUaXZWbnFlS2JUM2J4RldCOEs0cWlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi8xNTA4OWItMThkNy00ZmYwLTlkMjgtYjliNjU0MDJiOTI4
LzEvcktacVdUaXZWbnFlS2JUM2J4RldCOEs0cWlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADuXAFlCh
F17DuhC6O1JpkuW3QH0J5MVCIeqJsBYcUqBGYjezF96yx2PZGsMjKa2/kkk5PkEb
WIrlocHDaHmy4bYKCucipzGuMrm24OYTNaFwNbKNMoLzvhsKYSrVjH0/jNuDkryt
txrQ61Tsks7SGzkQXVUdYrLvI99BTzuROw6V/3n06bPErZ1rwvlKH/Fe5XOKB2Wr
lzRvqrefMjhHe8dz2j3a0p0qKuKi8bDbRjWFaIpQpxr1a9m+ajmSk/d9ze0gdgqp
c2kpgE8QzpoKQqvmD1SiMUQvAL38eglqyx6kCfKGkyvYApkECm0IKrMXHKEJuAPv
oMP46/10xig/Zw==
-----END CERTIFICATE-----
Generated at Sun May 11 04:06:26 2025 by rpki-client