Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: 7j2NAyUaEab/G+49DfrcIBprVud+VepOewFgUN/fD88=
Subject key identifier: F7:58:A5:03:33:9A:95:BD:95:22:34:19:97:21:CB:9A:E1:8A:1D:42
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 0196ADD6A91899A8088406939EED6D4B92EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 152B
Signing time: Thu 08 May 2025 03:00:48 +0000
Manifest this update: Thu 08 May 2025 03:00:48 +0000
Manifest next update: Fri 09 May 2025 03:00:48 +0000
Files and hashes: 1: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: w7Bm14+De6kcVLmsxqajom0rBZNXpzhJn3aIXuUCJ5E=)
2: h9zvvPI2dBY4jNWQKpPxUoE047A.roa (hash: PkWglafHXDxF9KIzM61BgLg1omYPGots3ZThAKgjHP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ad:d6:a9:18:99:a8:08:84:06:93:9e:ed:6d:4b:92:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: May 8 03:00:48 2025 GMT
Not After : May 9 03:00:48 2025 GMT
Subject: CN=f758a503339a95bd952234199721cb9ae18a1d42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:48:22:05:00:6b:0f:33:2e:0e:38:3d:09:7a:
8d:1a:94:20:b0:f5:8a:1b:66:1f:42:b1:3d:36:1c:
05:b7:65:84:61:21:78:ff:b8:9d:ec:16:4c:66:33:
25:84:af:e9:ba:28:2f:0e:53:12:a9:b0:64:88:4b:
80:81:bf:3a:9d:e2:20:b8:84:ab:e8:09:90:6c:35:
e6:9f:c6:ac:3c:9e:32:3f:9e:30:99:91:9b:e7:cc:
50:a1:1a:9a:07:ce:49:1b:b0:76:18:a9:8f:be:f2:
0f:80:96:a9:70:23:85:10:2c:9f:4d:6d:51:78:0c:
d4:f4:01:6f:53:ee:de:4d:60:6b:59:47:97:30:cc:
f4:6d:4f:bd:0d:a0:54:a7:4a:04:46:51:1c:72:a2:
b3:e2:e8:c5:fa:01:c9:95:3a:b0:ad:c7:90:dc:a5:
aa:fb:90:45:09:6a:13:ff:70:f8:d3:89:0f:5b:ec:
04:43:36:72:68:63:86:cb:15:f3:60:46:05:06:56:
37:ca:9a:26:b2:80:e7:11:8c:91:68:d7:96:2f:c1:
6f:d6:c1:62:fb:e3:42:d7:fa:a2:c6:de:cb:09:a3:
e6:58:3f:fc:09:e1:3a:2a:54:ab:fc:47:d1:39:ec:
fa:9e:79:29:17:9f:70:c7:e4:ba:dc:18:a7:80:56:
77:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:58:A5:03:33:9A:95:BD:95:22:34:19:97:21:CB:9A:E1:8A:1D:42
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:74:f7:a4:bb:2a:64:61:28:c3:79:97:68:52:39:45:5c:3c:
2b:fa:b8:37:08:d1:7c:75:30:76:43:c4:11:8d:49:40:f3:5d:
ef:83:96:28:26:97:e4:1d:55:b4:7e:89:10:b4:15:76:35:ae:
3b:35:da:a7:07:58:3a:99:cb:9f:e2:aa:3e:29:0f:6a:b4:95:
c0:ad:d5:54:2b:7c:6b:23:4a:36:14:44:56:d6:6c:8d:9c:f6:
a3:bd:74:28:94:da:f4:57:03:54:96:83:e6:89:f4:e7:84:3a:
4d:02:3f:42:36:1f:c2:d4:8c:8c:1e:e4:02:b9:ad:f2:3d:e5:
b0:3b:9b:6c:6d:03:aa:40:3e:6a:91:95:9a:b1:85:6c:70:30:
ef:65:e6:8a:81:c9:02:2c:13:8b:49:f0:f2:78:ec:81:dc:05:
d1:d7:52:ca:d0:24:21:6d:68:c5:bf:44:8d:43:bc:2c:52:38:
c9:17:aa:7e:25:85:fe:30:6a:f8:19:77:ec:2d:f6:6d:35:05:
dc:1a:ea:94:a1:4f:24:9b:4f:80:ea:c4:fa:d6:0a:a7:43:46:
48:04:52:5e:3b:a6:59:ce:f7:a7:8b:78:3c:c4:24:2d:69:d8:
62:05:80:d1:7b:93:a7:6b:bc:62:28:50:d9:94:93:33:b8:36:
27:57:6b:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZat1qkYmagIhAaTnu1tS5LuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMjIwM2VjMWU1YTZjMjY2Y2NhMzliOWFmMWFiZTJjYjIw
YjE5NWEwHhcNMjUwNTA4MDMwMDQ4WhcNMjUwNTA5MDMwMDQ4WjAzMTEwLwYDVQQD
EyhmNzU4YTUwMzMzOWE5NWJkOTUyMjM0MTk5NzIxY2I5YWUxOGExZDQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxUgiBQBrDzMuDjg9CXqNGpQgsPWK
G2YfQrE9NhwFt2WEYSF4/7id7BZMZjMlhK/puigvDlMSqbBkiEuAgb86neIguISr
6AmQbDXmn8asPJ4yP54wmZGb58xQoRqaB85JG7B2GKmPvvIPgJapcCOFECyfTW1R
eAzU9AFvU+7eTWBrWUeXMMz0bU+9DaBUp0oERlEccqKz4ujF+gHJlTqwrceQ3KWq
+5BFCWoT/3D404kPW+wEQzZyaGOGyxXzYEYFBlY3ypomsoDnEYyRaNeWL8Fv1sFi
++NC1/qixt7LCaPmWD/8CeE6KlSr/EfROez6nnkpF59wx+S63BingFZ3CwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPdYpQMzmpW9lSI0GZchy5rhih1CMB8GA1UdIwQY
MBaAFG0iA+weWmwmbMo5ua8aviyyCxlaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9mYzUyMmYtYjIwZi00N2FmLTgwYzYt
MWE5Nzk0NGM5MWNhLzEvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9mYzUyMmYtYjIwZi00N2FmLTgwYzYtMWE5Nzk0NGM5MWNh
LzEvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKXT3pLsq
ZGEow3mXaFI5RVw8K/q4NwjRfHUwdkPEEY1JQPNd74OWKCaX5B1VtH6JELQVdjWu
OzXapwdYOpnLn+KqPikParSVwK3VVCt8ayNKNhREVtZsjZz2o710KJTa9FcDVJaD
5on054Q6TQI/QjYfwtSMjB7kArmt8j3lsDubbG0DqkA+apGVmrGFbHAw72XmioHJ
AiwTi0nw8njsgdwF0ddSytAkIW1oxb9EjUO8LFI4yReqfiWF/jBq+Bl37C32bTUF
3BrqlKFPJJtPgOrE+tYKp0NGSARSXjumWc73p4t4PMQkLWnYYgWA0XuTp2u8YihQ
2ZSTM7g2J1dr6g==
-----END CERTIFICATE-----
Generated at Thu May 8 07:24:55 2025 by rpki-client