Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
File: doZr5p83cHIKbcxHkuaA_H9zIaE.mft (raw, json)
Hash identifier: au238pzCh/zQNZemA9xPoZFArbisF32Cgo5zxfwA0Gg=
Subject key identifier: 31:FE:1A:7A:21:BA:4E:90:AE:FD:5C:D7:A1:5C:85:18:C0:37:70:0F
Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Certificate serial: 0196CA96EE514CBF57359BCF285FA6726784
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
Manifest number: 153D
Signing time: Tue 13 May 2025 17:00:11 +0000
Manifest this update: Tue 13 May 2025 17:00:11 +0000
Manifest next update: Wed 14 May 2025 17:00:11 +0000
Files and hashes: 1: VGNUuwe-hqqAy7oOkHM2nEayK1o.roa (hash: PbhbER0ewQHcNx+5Jye/cmyEemdCt4HhzE4je62M8OM=)
2: doZr5p83cHIKbcxHkuaA_H9zIaE.crl (hash: Bj7mm79tqzUjO2aedj/oRKhByAXKuj3PTDpMpiCjNyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:96:ee:51:4c:bf:57:35:9b:cf:28:5f:a6:72:67:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Validity
Not Before: May 13 17:00:11 2025 GMT
Not After : May 14 17:00:11 2025 GMT
Subject: CN=31fe1a7a21ba4e90aefd5cd7a15c8518c037700f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:26:5f:8f:54:75:23:a7:8a:48:3d:86:7c:dd:
85:67:2a:49:c8:49:36:3a:2b:20:4f:1a:2d:ae:72:
c7:4a:1a:29:35:18:78:f9:37:8b:88:2e:df:a2:42:
38:e5:50:c7:8c:4c:ac:ec:f8:21:0b:46:bb:4c:6a:
e5:43:7f:98:ce:02:52:94:cf:56:df:87:94:ec:07:
5b:d1:13:69:9f:e2:e9:36:73:bb:94:35:9d:80:7a:
8e:50:88:80:c0:1a:20:43:0d:89:9c:47:ec:b5:a3:
18:31:14:59:a9:3d:83:d9:a3:37:e1:c5:de:db:d7:
eb:f4:e6:3d:be:99:6a:a9:c0:7f:63:ac:77:4e:84:
1f:fb:bb:ba:1f:2d:23:9c:5e:f4:e4:9f:e1:ab:1a:
4b:2a:d2:99:7c:7b:79:60:b2:cb:93:8c:31:93:0e:
7f:f1:54:b9:a6:1b:66:b8:23:dc:d9:72:38:4f:51:
b6:78:3a:de:44:9a:a6:92:2c:27:28:c0:0d:e3:d5:
71:e2:2a:88:ff:41:03:9b:3c:0b:d5:d4:f7:25:7a:
f6:f1:66:df:af:f9:c2:70:cf:df:5e:c0:f0:62:0e:
58:e3:67:63:86:62:5b:7a:71:c3:d9:01:83:e9:c6:
9d:72:92:0f:68:a3:23:a6:85:b7:98:91:ef:30:9b:
b3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:FE:1A:7A:21:BA:4E:90:AE:FD:5C:D7:A1:5C:85:18:C0:37:70:0F
X509v3 Authority Key Identifier:
keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:96:43:e6:29:c2:de:f1:6b:31:90:aa:fe:d2:c9:b4:22:ee:
d3:79:4d:45:c2:0d:7e:79:fd:16:08:51:52:1a:55:45:e0:9c:
b9:05:99:e9:40:94:97:de:d1:0f:04:94:3e:c1:2b:40:30:fa:
e9:bb:7a:e9:83:61:df:13:d9:8c:6c:42:16:a5:61:99:cd:a9:
9a:ad:05:c3:41:46:de:f0:4b:fc:1c:92:b6:0b:80:db:b6:a7:
37:a0:ca:91:db:8a:38:38:15:77:dc:d8:a3:ad:b0:f7:1f:aa:
ac:bd:c0:ec:f0:c0:73:93:55:e4:7c:a7:0e:59:ea:95:03:66:
5e:12:1e:26:4e:82:64:db:3b:f7:3c:90:87:ca:2f:bb:1d:36:
ce:af:0b:4f:d6:fd:33:43:8a:9d:5f:97:ac:7f:d7:a8:82:0b:
2b:bc:d5:c1:2a:a4:6a:d4:21:a6:f1:55:94:85:d2:9e:55:b6:
3d:3e:e7:6c:ac:21:2c:a7:12:84:ee:2c:57:6a:f6:74:62:b3:
c2:bf:29:4a:e2:cb:17:49:48:2c:b1:23:f9:62:09:e4:ae:a0:
7f:3e:d4:f3:47:6c:24:1a:4d:99:a0:be:3e:00:9f:0d:31:6b:
a1:04:68:79:5c:16:fb:04:27:0c:94:fb:26:ac:47:70:40:ca:
d2:5a:51:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbKlu5RTL9XNZvPKF+mcmeEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2ODY2YmU2OWYzNzcwNzIwYTZkY2M0NzkyZTY4MGZjN2Y3
MzIxYTEwHhcNMjUwNTEzMTcwMDExWhcNMjUwNTE0MTcwMDExWjAzMTEwLwYDVQQD
EygzMWZlMWE3YTIxYmE0ZTkwYWVmZDVjZDdhMTVjODUxOGMwMzc3MDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0iZfj1R1I6eKSD2GfN2FZypJyEk2
OisgTxotrnLHShopNRh4+TeLiC7fokI45VDHjEys7PghC0a7TGrlQ3+YzgJSlM9W
34eU7Adb0RNpn+LpNnO7lDWdgHqOUIiAwBogQw2JnEfstaMYMRRZqT2D2aM34cXe
29fr9OY9vplqqcB/Y6x3ToQf+7u6Hy0jnF705J/hqxpLKtKZfHt5YLLLk4wxkw5/
8VS5phtmuCPc2XI4T1G2eDreRJqmkiwnKMAN49Vx4iqI/0EDmzwL1dT3JXr28Wbf
r/nCcM/fXsDwYg5Y42djhmJbenHD2QGD6cadcpIPaKMjpoW3mJHvMJuz5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDH+Gnohuk6Qrv1c16FchRjAN3APMB8GA1UdIwQY
MBaAFHaGa+afN3ByCm3MR5LmgPx/cyGhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG9acjVwODNjSElLYmN4SGt1YUFfSDl6SWFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi8yNTgxMmQtOGNkNy00NzA3LThiZGIt
Y2ZhNTA0MmRjOTVjLzEvZG9acjVwODNjSElLYmN4SGt1YUFfSDl6SWFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi8yNTgxMmQtOGNkNy00NzA3LThiZGItY2ZhNTA0MmRjOTVj
LzEvZG9acjVwODNjSElLYmN4SGt1YUFfSDl6SWFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcpZD5inC
3vFrMZCq/tLJtCLu03lNRcINfnn9FghRUhpVReCcuQWZ6UCUl97RDwSUPsErQDD6
6bt66YNh3xPZjGxCFqVhmc2pmq0Fw0FG3vBL/ByStguA27anN6DKkduKODgVd9zY
o62w9x+qrL3A7PDAc5NV5HynDlnqlQNmXhIeJk6CZNs79zyQh8ovux02zq8LT9b9
M0OKnV+XrH/XqIILK7zVwSqkatQhpvFVlIXSnlW2PT7nbKwhLKcShO4sV2r2dGKz
wr8pSuLLF0lILLEj+WIJ5K6gfz7U80dsJBpNmaC+PgCfDTFroQRoeVwW+wQnDJT7
JqxHcEDK0lpRBg==
-----END CERTIFICATE-----
Generated at Wed May 14 02:29:39 2025 by rpki-client