Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
File: cd9sdT6ghb7zcrOSYw90uldpbuU.mft (raw, json)
Hash identifier: L7oBqF49F60ONRJxsAx8S/v0m8cs5Re8prFzWKxMolA=
Subject key identifier: AC:BB:05:73:D0:44:C4:B4:3B:30:8F:D8:95:79:24:8A:21:55:37:7F
Authority key identifier: 71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5
Certificate issuer: /CN=71df6c753ea085bef372b392630f74ba57696ee5
Certificate serial: 0196A277DF11C27D3DEB37B03CD9D58534E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
Manifest number: 1236
Signing time: Mon 05 May 2025 22:01:26 +0000
Manifest this update: Mon 05 May 2025 22:01:26 +0000
Manifest next update: Tue 06 May 2025 22:01:26 +0000
Files and hashes: 1: 26OroNSilLDsLnRmS90OawnRg8M.roa (hash: 2vZiL1ss373Q0TX+B8Q8SMDZKCr1m9fpyjjeqgVg0rI=)
2: cd9sdT6ghb7zcrOSYw90uldpbuU.crl (hash: 9OYHUDLK88YbQZr/PnV/DjZa+XwXRAF8jeSCeUMQWlY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 22:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:77:df:11:c2:7d:3d:eb:37:b0:3c:d9:d5:85:34:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71df6c753ea085bef372b392630f74ba57696ee5
Validity
Not Before: May 5 22:01:26 2025 GMT
Not After : May 6 22:01:26 2025 GMT
Subject: CN=acbb0573d044c4b43b308fd89579248a2155377f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:bb:92:df:44:79:4c:ac:f4:10:9d:23:b4:e3:
34:96:3f:9c:a2:2c:41:ec:f5:72:52:a9:2f:e9:53:
49:01:10:11:27:4a:02:c8:8d:19:b2:ce:d1:04:97:
e6:41:be:45:10:e4:7e:d2:2d:69:b9:e9:4b:a6:75:
68:3c:14:77:f3:8e:f5:bf:09:21:b0:b1:84:d3:03:
8e:33:93:45:9d:44:55:65:72:77:e8:23:23:dc:fc:
08:c5:78:39:8d:7d:b6:c5:c9:cb:d8:e7:0a:a8:bd:
56:ca:32:9a:5d:05:85:05:fe:70:54:3c:f0:c7:7f:
29:c1:2b:12:10:70:cf:e5:62:97:b5:84:b0:9c:f0:
50:f0:ba:ea:cf:5c:0a:ef:6e:90:01:f6:0e:09:55:
f2:d8:b6:fd:81:02:80:d5:ef:35:de:7b:99:b7:43:
32:2b:17:45:4d:33:5a:b7:c7:90:a0:8c:61:96:9a:
ae:b0:54:5f:5c:e7:16:2f:6b:42:75:a1:66:6c:fa:
62:2c:d9:fa:03:0a:7a:d9:62:44:55:39:83:91:68:
db:0b:36:88:59:fc:a2:38:98:c9:30:12:a5:f1:4c:
6f:80:9e:0b:6c:27:6f:06:86:15:d2:e4:16:d7:b0:
cc:7b:d7:4d:13:12:62:38:ba:61:5c:5a:de:b8:35:
05:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:BB:05:73:D0:44:C4:B4:3B:30:8F:D8:95:79:24:8A:21:55:37:7F
X509v3 Authority Key Identifier:
keyid:71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:81:f5:0b:77:b9:54:c0:76:8d:07:67:38:da:19:d9:22:0b:
f7:8a:27:c0:58:27:9e:94:97:03:66:f4:6e:c3:31:d9:75:5c:
44:4a:82:79:09:44:43:89:1a:1c:a0:20:59:81:13:ad:33:ef:
85:5f:f8:95:c6:cd:68:77:7e:86:08:2b:00:42:eb:36:95:68:
10:84:42:f0:9a:c8:78:ea:f0:74:88:c7:15:ae:35:00:36:5b:
81:ca:d1:4f:d0:47:1f:e8:33:50:91:cc:ca:bf:47:7a:5f:ad:
6f:72:a4:31:cf:6c:73:3d:94:7e:9f:59:4c:67:85:66:56:93:
3c:df:a0:bf:17:e9:30:b6:0b:0e:f1:2c:8d:6d:ae:70:48:99:
33:7a:ea:e6:a9:ee:38:14:8e:20:a1:51:90:c5:4a:18:1e:6a:
08:a0:8e:0b:c4:91:b9:66:14:5b:0a:0a:02:4b:3d:9a:c3:42:
e0:e9:09:e1:01:7c:1e:5c:1a:59:a4:77:32:89:e1:12:35:56:
4c:22:ef:09:10:5b:af:bd:86:7d:90:43:ba:ac:a2:98:85:b9:
ba:be:66:62:70:36:ea:c2:65:9c:b2:db:c1:96:00:53:78:d2:
95:b1:62:8f:ce:d4:3c:47:12:cd:c5:f4:37:a0:b0:c1:4e:1c:
72:be:7a:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaid98Rwn096zewPNnVhTTiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxZGY2Yzc1M2VhMDg1YmVmMzcyYjM5MjYzMGY3NGJhNTc2
OTZlZTUwHhcNMjUwNTA1MjIwMTI2WhcNMjUwNTA2MjIwMTI2WjAzMTEwLwYDVQQD
EyhhY2JiMDU3M2QwNDRjNGI0M2IzMDhmZDg5NTc5MjQ4YTIxNTUzNzdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjLuS30R5TKz0EJ0jtOM0lj+coixB
7PVyUqkv6VNJARARJ0oCyI0Zss7RBJfmQb5FEOR+0i1puelLpnVoPBR38471vwkh
sLGE0wOOM5NFnURVZXJ36CMj3PwIxXg5jX22xcnL2OcKqL1WyjKaXQWFBf5wVDzw
x38pwSsSEHDP5WKXtYSwnPBQ8Lrqz1wK726QAfYOCVXy2Lb9gQKA1e813nuZt0My
KxdFTTNat8eQoIxhlpqusFRfXOcWL2tCdaFmbPpiLNn6Awp62WJEVTmDkWjbCzaI
WfyiOJjJMBKl8UxvgJ4LbCdvBoYV0uQW17DMe9dNExJiOLphXFreuDUFBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKy7BXPQRMS0OzCP2JV5JIohVTd/MB8GA1UdIwQY
MBaAFHHfbHU+oIW+83KzkmMPdLpXaW7lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9jNTk0ODQtYjA3YS00Y2ExLWFiY2Qt
YTgzODQ1Y2FhYzIxLzEvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy9jNTk0ODQtYjA3YS00Y2ExLWFiY2QtYTgzODQ1Y2FhYzIx
LzEvY2Q5c2RUNmdoYjd6Y3JPU1l3OTB1bGRwYnVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUYH1C3e5
VMB2jQdnONoZ2SIL94onwFgnnpSXA2b0bsMx2XVcREqCeQlEQ4kaHKAgWYETrTPv
hV/4lcbNaHd+hggrAELrNpVoEIRC8JrIeOrwdIjHFa41ADZbgcrRT9BHH+gzUJHM
yr9Hel+tb3KkMc9scz2Ufp9ZTGeFZlaTPN+gvxfpMLYLDvEsjW2ucEiZM3rq5qnu
OBSOIKFRkMVKGB5qCKCOC8SRuWYUWwoKAks9msNC4OkJ4QF8HlwaWaR3MonhEjVW
TCLvCRBbr72GfZBDuqyimIW5ur5mYnA26sJlnLLbwZYAU3jSlbFij87UPEcSzcX0
N6CwwU4ccr563w==
-----END CERTIFICATE-----
Generated at Tue May 6 05:56:49 2025 by rpki-client