Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
File: N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft (raw, json)
Hash identifier: IXlaw6aeLWEsrIZfzOrZ/Arhjgdwwk9Ca5L2u2Q4Wng=
Subject key identifier: A8:97:FA:8D:1D:8C:2F:D9:31:7C:53:E0:C8:79:F9:C4:10:FD:A5:A7
Authority key identifier: 37:63:E4:5B:81:64:93:CC:DB:DD:4B:07:70:8A:21:FB:73:A1:E5:99
Certificate issuer: /CN=3763e45b816493ccdbdd4b07708a21fb73a1e599
Certificate serial: 0196C45E0893C7C4A21EBE2B3DB1965809CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
Manifest number: 05EA
Signing time: Mon 12 May 2025 12:00:18 +0000
Manifest this update: Mon 12 May 2025 12:00:18 +0000
Manifest next update: Tue 13 May 2025 12:00:18 +0000
Files and hashes: 1: M2-x0b6h_vGkWR8MeQS23lu97CU.roa (hash: 3mmEcfVqYQ+5prex0V/rqUj30uad1M5q1mUqvz+8XW8=)
2: N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl (hash: zteIPjI5/uyCH+PCpzUOphbQfjPCQN7ly28wRTwycPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 12:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:5e:08:93:c7:c4:a2:1e:be:2b:3d:b1:96:58:09:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3763e45b816493ccdbdd4b07708a21fb73a1e599
Validity
Not Before: May 12 12:00:18 2025 GMT
Not After : May 13 12:00:18 2025 GMT
Subject: CN=a897fa8d1d8c2fd9317c53e0c879f9c410fda5a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8a:8f:f0:29:94:05:c9:ec:66:36:9a:70:93:
60:93:2f:59:fe:40:95:97:cd:e6:6d:34:91:0c:31:
68:cc:dd:fa:d7:98:52:08:b1:dd:a6:b1:2f:34:d3:
c3:9f:b0:fe:c5:f4:6e:f3:15:84:ef:5f:ba:26:c5:
7a:52:04:7f:c9:5d:d3:33:e1:22:ee:d9:aa:16:07:
7f:f3:cf:bf:d8:68:11:e6:98:90:d8:df:cd:f3:9a:
52:96:6f:6e:3b:d5:bc:e0:80:49:56:35:d2:3e:b6:
ad:48:40:01:cd:d0:74:ae:a5:13:45:a9:a2:c1:3d:
8e:94:0b:e0:88:b8:fa:0a:64:69:55:54:dc:ae:0e:
6d:57:1f:0a:2f:e4:4b:4e:16:53:bd:3f:ca:a4:90:
36:d1:9e:b3:f2:40:f5:ab:8a:0e:8a:44:df:41:66:
db:7b:54:ae:e1:c4:a7:b8:98:98:37:46:ae:45:cc:
2f:30:04:a6:b0:c3:66:bb:a0:5f:2f:6d:f1:51:82:
8c:a0:9f:6f:77:eb:d4:ab:c7:5c:7f:04:44:62:ee:
63:00:c1:ac:07:29:10:f1:eb:ac:df:92:61:8c:0f:
cf:80:ed:46:b9:c1:32:2f:d2:2c:65:98:cc:d9:5a:
1c:24:f8:2b:76:1d:f7:09:ff:0e:d0:fd:70:99:09:
a9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:97:FA:8D:1D:8C:2F:D9:31:7C:53:E0:C8:79:F9:C4:10:FD:A5:A7
X509v3 Authority Key Identifier:
keyid:37:63:E4:5B:81:64:93:CC:DB:DD:4B:07:70:8A:21:FB:73:A1:E5:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:b0:af:9b:33:a8:55:93:eb:cf:d3:c5:57:1f:11:05:06:d3:
d6:cf:cc:51:21:2c:34:4f:f9:6b:f0:a8:58:75:24:2a:35:21:
28:a4:ee:1b:3a:db:d6:53:4a:e4:89:8f:dc:3e:1f:b2:5e:e4:
5b:cf:e5:ce:5f:a7:f4:63:02:6d:80:d4:9a:24:dc:ce:e2:72:
f4:96:36:cf:f3:39:be:cd:e1:b0:b0:51:72:3c:1c:80:96:04:
1a:a4:f0:60:3a:23:db:85:dd:83:05:c4:ba:0c:2e:1f:d6:3f:
74:41:16:89:e3:ec:93:8b:3c:5e:0c:63:dd:32:95:eb:b2:2e:
83:fd:19:42:13:02:42:c3:45:6c:d5:88:50:f8:13:de:00:c3:
94:50:9c:d8:31:17:29:56:9b:51:7a:f4:91:3e:c4:67:7f:58:
ac:da:c7:23:83:84:cb:b2:34:9d:af:52:af:7e:6c:25:23:5e:
30:56:1a:0e:ce:88:91:b0:30:cd:6a:71:8e:a4:d5:d2:33:48:
b0:96:2f:c9:25:0c:14:3e:17:8f:a8:33:f0:8d:10:3e:a8:eb:
56:03:eb:19:c2:2e:01:f8:93:ce:c8:b2:a5:4d:78:f5:79:bc:
c8:e7:ac:6b:9e:86:23:10:bd:96:cf:da:bf:27:b1:85:fe:ad:
e4:4f:ad:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbEXgiTx8SiHr4rPbGWWAnNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3NjNlNDViODE2NDkzY2NkYmRkNGIwNzcwOGEyMWZiNzNh
MWU1OTkwHhcNMjUwNTEyMTIwMDE4WhcNMjUwNTEzMTIwMDE4WjAzMTEwLwYDVQQD
EyhhODk3ZmE4ZDFkOGMyZmQ5MzE3YzUzZTBjODc5ZjljNDEwZmRhNWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYqP8CmUBcnsZjaacJNgky9Z/kCV
l83mbTSRDDFozN3615hSCLHdprEvNNPDn7D+xfRu8xWE71+6JsV6UgR/yV3TM+Ei
7tmqFgd/88+/2GgR5piQ2N/N85pSlm9uO9W84IBJVjXSPratSEABzdB0rqUTRami
wT2OlAvgiLj6CmRpVVTcrg5tVx8KL+RLThZTvT/KpJA20Z6z8kD1q4oOikTfQWbb
e1Su4cSnuJiYN0auRcwvMASmsMNmu6BfL23xUYKMoJ9vd+vUq8dcfwREYu5jAMGs
BykQ8eus35JhjA/PgO1GucEyL9IsZZjM2VocJPgrdh33Cf8O0P1wmQmpAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKiX+o0djC/ZMXxT4Mh5+cQQ/aWnMB8GA1UdIwQY
MBaAFDdj5FuBZJPM291LB3CKIftzoeWZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjJQa1c0RmtrOHpiM1VzSGNJb2gtM09oNVprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9hZGJiNDctNTcyYS00OWNjLWE2ZDAt
NTFmZjIwZjlmZWY5LzEvTjJQa1c0RmtrOHpiM1VzSGNJb2gtM09oNVprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9hZGJiNDctNTcyYS00OWNjLWE2ZDAtNTFmZjIwZjlmZWY5
LzEvTjJQa1c0RmtrOHpiM1VzSGNJb2gtM09oNVprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAarCvmzOo
VZPrz9PFVx8RBQbT1s/MUSEsNE/5a/CoWHUkKjUhKKTuGzrb1lNK5ImP3D4fsl7k
W8/lzl+n9GMCbYDUmiTczuJy9JY2z/M5vs3hsLBRcjwcgJYEGqTwYDoj24XdgwXE
ugwuH9Y/dEEWiePsk4s8Xgxj3TKV67Iug/0ZQhMCQsNFbNWIUPgT3gDDlFCc2DEX
KVabUXr0kT7EZ39YrNrHI4OEy7I0na9Sr35sJSNeMFYaDs6IkbAwzWpxjqTV0jNI
sJYvySUMFD4Xj6gz8I0QPqjrVgPrGcIuAfiTzsiypU149Xm8yOesa56GIxC9ls/a
vyexhf6t5E+taA==
-----END CERTIFICATE-----
Generated at Mon May 12 20:26:49 2025 by rpki-client