Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
File: al1BD0JdNedNRW9_h7ro7ZKzyCk.mft (raw, json)
Hash identifier: bZuTzlRlJ+1s+bX3rdmJ086gSJob0r0YY4RW1SvDUrM=
Subject key identifier: 86:65:63:32:84:F5:1B:9C:B7:43:AF:EB:8E:6C:4B:AD:A4:7B:3E:57
Authority key identifier: 6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29
Certificate issuer: /CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829
Certificate serial: 0196C5A84C3F011E5E1FBCCC5C88F7CEFC58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
Manifest number: 14CA
Signing time: Mon 12 May 2025 18:01:03 +0000
Manifest this update: Mon 12 May 2025 18:01:03 +0000
Manifest next update: Tue 13 May 2025 18:01:03 +0000
Files and hashes: 1: YRcPB026UNAbaic7bC0XnagQJ_8.roa (hash: F5LbuOIZKUKKLsIhj9ecbNiDMJqNxgANq1yR2w3iRxE=)
2: al1BD0JdNedNRW9_h7ro7ZKzyCk.crl (hash: 8aix/ezDV/LO+eb/c1yUeFs9mByPF9rCeosTKFGtYiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:a8:4c:3f:01:1e:5e:1f:bc:cc:5c:88:f7:ce:fc:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829
Validity
Not Before: May 12 18:01:03 2025 GMT
Not After : May 13 18:01:03 2025 GMT
Subject: CN=8665633284f51b9cb743afeb8e6c4bada47b3e57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2a:f3:8c:eb:3e:b9:01:ed:17:bc:af:9a:33:
bb:80:7f:eb:4e:34:b2:3e:2b:17:7d:95:d1:9f:77:
4d:81:c4:fc:5e:99:04:96:de:e8:47:15:d2:47:1a:
35:8d:f9:83:e5:21:1b:cd:d6:9e:38:65:9c:95:f1:
a8:d3:2a:2d:a3:99:66:44:a0:f7:05:77:e5:4c:7d:
05:95:b8:1f:d5:2e:b5:44:ac:d3:b9:14:13:1e:d1:
b9:ca:44:fe:be:de:8c:74:78:56:ab:f9:24:96:74:
f1:4f:d3:56:46:6f:bf:3b:d8:b3:7a:e4:5b:08:11:
b6:72:52:b1:78:ca:58:2e:31:f9:7d:12:19:72:e0:
84:8f:ab:b0:76:ee:dc:3d:06:1b:f2:d6:ac:eb:e5:
72:bb:f5:4c:8c:89:de:3d:e1:f5:ae:d3:44:a3:5a:
18:f0:53:92:ff:e4:1a:4d:fa:71:ce:f5:12:cc:bd:
25:9d:bb:27:0a:6a:b0:30:51:36:d4:3b:fa:8f:f0:
b5:0e:ad:b6:e9:fb:86:08:4e:7d:e0:57:ee:6b:d2:
41:e9:33:2a:b0:8a:b8:66:8f:d7:80:4b:9f:97:da:
ed:31:8d:dd:ed:02:16:d9:66:fe:8a:60:df:7f:f0:
87:5c:8b:2e:05:73:be:d8:ed:c1:a5:15:44:3c:27:
16:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:65:63:32:84:F5:1B:9C:B7:43:AF:EB:8E:6C:4B:AD:A4:7B:3E:57
X509v3 Authority Key Identifier:
keyid:6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:c5:65:98:53:53:b6:e0:25:6c:fe:27:51:94:4c:ef:b8:3d:
b0:15:20:a5:e4:fe:f4:8e:27:18:ea:90:f9:e9:f3:1c:21:2c:
68:d6:a6:f6:e6:ae:42:2c:fc:e4:cb:e5:48:04:a0:e5:df:86:
93:f1:42:25:cd:91:08:5f:c4:47:10:dd:64:b4:32:02:37:67:
b2:29:e4:7e:77:5f:44:44:31:27:7a:00:96:8f:39:7a:85:c7:
47:1b:d1:4e:80:55:74:5f:fd:bd:ce:a5:f2:54:cc:59:75:90:
6f:f4:ed:fd:07:80:01:32:a3:10:36:fa:11:3d:92:75:f2:32:
5f:98:fa:43:d2:4e:4a:3b:20:70:25:a6:39:bc:c7:84:f0:f6:
0d:5d:fe:33:aa:6e:67:c3:02:9f:60:96:d7:43:13:ff:92:3a:
c4:b5:53:f6:5d:a5:12:80:5d:29:0c:38:3a:40:62:3a:14:a6:
8a:89:d8:93:16:5f:0f:45:3d:57:0e:d0:ef:f3:30:b6:94:eb:
0b:29:4a:5a:63:5d:7b:31:ca:bb:50:ae:e9:f6:0c:0c:1e:69:
b9:09:12:0b:f2:d0:cd:ca:42:b8:ca:97:c9:3f:e4:5d:ad:71:
91:2d:07:c6:ed:72:7b:49:98:7c:17:9d:0e:f9:7d:66:50:24:
7d:25:ed:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbFqEw/AR5eH7zMXIj3zvxYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhNWQ0MTBmNDI1ZDM1ZTc0ZDQ1NmY3Zjg3YmFlOGVkOTJi
M2M4MjkwHhcNMjUwNTEyMTgwMTAzWhcNMjUwNTEzMTgwMTAzWjAzMTEwLwYDVQQD
Eyg4NjY1NjMzMjg0ZjUxYjljYjc0M2FmZWI4ZTZjNGJhZGE0N2IzZTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSrzjOs+uQHtF7yvmjO7gH/rTjSy
PisXfZXRn3dNgcT8XpkElt7oRxXSRxo1jfmD5SEbzdaeOGWclfGo0yoto5lmRKD3
BXflTH0Flbgf1S61RKzTuRQTHtG5ykT+vt6MdHhWq/kklnTxT9NWRm+/O9izeuRb
CBG2clKxeMpYLjH5fRIZcuCEj6uwdu7cPQYb8tas6+Vyu/VMjInePeH1rtNEo1oY
8FOS/+QaTfpxzvUSzL0lnbsnCmqwMFE21Dv6j/C1Dq226fuGCE594Ffua9JB6TMq
sIq4Zo/XgEufl9rtMY3d7QIW2Wb+imDff/CHXIsuBXO+2O3BpRVEPCcWwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIZlYzKE9Ruct0Ov645sS62kez5XMB8GA1UdIwQY
MBaAFGpdQQ9CXTXnTUVvf4e66O2Ss8gpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWwxQkQwSmROZWROUlc5X2g3cm83Wkt6eUNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9kNWYxNGYtMjcwNS00MmVjLTkwMGYt
NjkzNGNhZmI2YmNkLzEvYWwxQkQwSmROZWROUlc5X2g3cm83Wkt6eUNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC9kNWYxNGYtMjcwNS00MmVjLTkwMGYtNjkzNGNhZmI2YmNk
LzEvYWwxQkQwSmROZWROUlc5X2g3cm83Wkt6eUNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ8VlmFNT
tuAlbP4nUZRM77g9sBUgpeT+9I4nGOqQ+enzHCEsaNam9uauQiz85MvlSASg5d+G
k/FCJc2RCF/ERxDdZLQyAjdnsinkfndfREQxJ3oAlo85eoXHRxvRToBVdF/9vc6l
8lTMWXWQb/Tt/QeAATKjEDb6ET2SdfIyX5j6Q9JOSjsgcCWmObzHhPD2DV3+M6pu
Z8MCn2CW10MT/5I6xLVT9l2lEoBdKQw4OkBiOhSmionYkxZfD0U9Vw7Q7/MwtpTr
CylKWmNdezHKu1Cu6fYMDB5puQkSC/LQzcpCuMqXyT/kXa1xkS0Hxu1ye0mYfBed
Dvl9ZlAkfSXt3Q==
-----END CERTIFICATE-----
Generated at Tue May 13 00:26:47 2025 by rpki-client