Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft
File: cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft (raw, json)
Hash identifier: YGz/oRq9O3e7a8fF40rLPXTgeQl8CjSWRrjJZzMLON0=
Subject key identifier: 79:3F:D5:7F:85:92:C3:F1:57:53:E8:BC:41:E8:08:91:C3:3E:75:8F
Authority key identifier: 70:7A:F4:53:46:F0:6B:62:2A:0E:BB:B4:FF:9B:A3:3B:E6:F4:2F:1E
Certificate issuer: /CN=707af45346f06b622a0ebbb4ff9ba33be6f42f1e
Certificate serial: 0196D88A872F462A0294F2ED4BF5EB92BF85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHr0U0bwa2IqDru0_5ujO-b0Lx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft
Manifest number: 134A
Signing time: Fri 16 May 2025 10:01:19 +0000
Manifest this update: Fri 16 May 2025 10:01:19 +0000
Manifest next update: Sat 17 May 2025 10:01:19 +0000
Files and hashes: 1: Dg3_0N_QJLl_z9oMjas8amvsSl4.roa (hash: i//fT7WOmOH7LBZUXbS89Zg6KyN/Hg+cEJQRzh4C3DQ=)
2: cHr0U0bwa2IqDru0_5ujO-b0Lx4.crl (hash: 9/AxfJjZHGWcvrnGCoJdbvsw0yXZ5+/qY0x1uu6end4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHr0U0bwa2IqDru0_5ujO-b0Lx4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d8:8a:87:2f:46:2a:02:94:f2:ed:4b:f5:eb:92:bf:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=707af45346f06b622a0ebbb4ff9ba33be6f42f1e
Validity
Not Before: May 16 10:01:19 2025 GMT
Not After : May 17 10:01:19 2025 GMT
Subject: CN=793fd57f8592c3f15753e8bc41e80891c33e758f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e5:c5:de:5b:9e:4c:31:48:8b:84:66:a4:a6:
cf:b8:0b:6f:e3:39:5d:ec:44:20:01:93:1c:08:da:
01:c1:34:be:47:b7:aa:e0:d9:71:48:f0:f6:6c:5d:
2c:9a:d3:0e:0d:16:d5:6d:a8:df:40:3e:fd:43:15:
7a:df:8d:bd:d3:a7:81:54:9a:8f:97:50:45:05:6c:
a3:9d:34:08:47:07:31:2c:64:b5:ee:de:83:56:71:
c0:9f:da:8b:44:ff:c7:d6:3c:00:b9:e9:b5:8d:67:
38:44:e8:7a:97:bc:b8:79:ba:30:2f:2b:12:fe:44:
c1:6d:d9:c8:72:2d:9e:69:d2:19:36:66:22:69:16:
17:84:14:fc:27:1f:28:6e:19:35:92:13:66:61:b6:
3e:e3:36:91:b6:4d:69:da:a6:90:b8:52:fe:e7:8c:
80:65:2c:3d:c0:79:8d:f2:78:20:9d:d3:9c:b6:d7:
25:24:da:74:56:29:68:3a:1f:54:26:8e:54:cc:71:
da:b3:03:ac:0a:1e:82:c8:ee:9a:30:b2:17:98:11:
fd:5d:0c:39:1a:5c:9e:32:33:3e:04:f7:2b:b1:77:
bc:36:a4:e6:fa:ec:44:99:94:33:64:e1:a4:c8:12:
4f:ab:5e:a7:d5:5f:f8:68:1d:71:76:31:4f:91:6b:
51:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:3F:D5:7F:85:92:C3:F1:57:53:E8:BC:41:E8:08:91:C3:3E:75:8F
X509v3 Authority Key Identifier:
keyid:70:7A:F4:53:46:F0:6B:62:2A:0E:BB:B4:FF:9B:A3:3B:E6:F4:2F:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHr0U0bwa2IqDru0_5ujO-b0Lx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/7920d0-f956-4439-9cd2-4b7808d98664/1/cHr0U0bwa2IqDru0_5ujO-b0Lx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:ec:e4:36:51:e3:cd:3b:ff:ab:39:f6:7c:99:99:73:1f:9f:
ab:da:18:3f:a8:5a:7a:05:c3:e1:2c:a7:cc:c0:fc:50:1f:57:
37:c0:44:b4:da:58:a0:02:63:b0:b8:f4:a2:ba:b3:cf:a4:dc:
0f:d7:58:d4:a0:db:ca:b0:d5:1d:82:59:d0:cc:5c:fb:a3:12:
b8:63:09:35:d9:70:32:97:65:8d:10:78:e7:12:d6:99:91:9e:
85:fb:d0:e6:fe:7c:cc:f4:0e:20:89:f2:9e:24:0e:5a:91:b1:
b5:bd:eb:82:43:9d:9a:e0:a8:28:f9:95:ee:43:27:e0:51:89:
11:4e:61:a1:e4:6d:fa:66:d9:9c:a1:bf:ec:0d:51:19:da:3f:
3d:f0:d8:f2:93:60:00:92:29:fc:e3:a7:af:22:dd:4d:08:78:
33:09:ab:76:34:10:d8:72:2a:a6:48:24:6c:9e:4c:57:bd:49:
88:11:44:34:9f:4e:98:b7:af:83:16:51:8a:12:0c:f8:84:fc:
4e:c1:37:b2:89:3c:5c:d4:6d:99:18:bf:17:d1:56:e4:12:86:
5c:f3:68:e0:13:6f:a1:5d:73:18:c3:80:4d:18:ac:17:dc:37:
03:a0:71:cb:26:e3:5a:2a:5b:cd:0a:65:30:34:d9:9d:61:32:
2f:d8:2b:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbYiocvRioClPLtS/Xrkr+FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwN2FmNDUzNDZmMDZiNjIyYTBlYmJiNGZmOWJhMzNiZTZm
NDJmMWUwHhcNMjUwNTE2MTAwMTE5WhcNMjUwNTE3MTAwMTE5WjAzMTEwLwYDVQQD
Eyg3OTNmZDU3Zjg1OTJjM2YxNTc1M2U4YmM0MWU4MDg5MWMzM2U3NThmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOXF3lueTDFIi4RmpKbPuAtv4zld
7EQgAZMcCNoBwTS+R7eq4NlxSPD2bF0smtMODRbVbajfQD79QxV6342906eBVJqP
l1BFBWyjnTQIRwcxLGS17t6DVnHAn9qLRP/H1jwAuem1jWc4ROh6l7y4ebowLysS
/kTBbdnIci2eadIZNmYiaRYXhBT8Jx8obhk1khNmYbY+4zaRtk1p2qaQuFL+54yA
ZSw9wHmN8nggndOcttclJNp0ViloOh9UJo5UzHHaswOsCh6CyO6aMLIXmBH9XQw5
GlyeMjM+BPcrsXe8NqTm+uxEmZQzZOGkyBJPq16n1V/4aB1xdjFPkWtRSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHk/1X+FksPxV1PovEHoCJHDPnWPMB8GA1UdIwQY
MBaAFHB69FNG8GtiKg67tP+bozvm9C8eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0hyMFUwYndhMklxRHJ1MF81dWpPLWIwTHg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS83OTIwZDAtZjk1Ni00NDM5LTljZDIt
NGI3ODA4ZDk4NjY0LzEvY0hyMFUwYndhMklxRHJ1MF81dWpPLWIwTHg0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS83OTIwZDAtZjk1Ni00NDM5LTljZDItNGI3ODA4ZDk4NjY0
LzEvY0hyMFUwYndhMklxRHJ1MF81dWpPLWIwTHg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArOzkNlHj
zTv/qzn2fJmZcx+fq9oYP6haegXD4SynzMD8UB9XN8BEtNpYoAJjsLj0orqzz6Tc
D9dY1KDbyrDVHYJZ0Mxc+6MSuGMJNdlwMpdljRB45xLWmZGehfvQ5v58zPQOIIny
niQOWpGxtb3rgkOdmuCoKPmV7kMn4FGJEU5hoeRt+mbZnKG/7A1RGdo/PfDY8pNg
AJIp/OOnryLdTQh4MwmrdjQQ2HIqpkgkbJ5MV71JiBFENJ9OmLevgxZRihIM+IT8
TsE3sok8XNRtmRi/F9FW5BKGXPNo4BNvoV1zGMOATRisF9w3A6BxyybjWipbzQpl
MDTZnWEyL9gr4g==
-----END CERTIFICATE-----
Generated at Fri May 16 16:50:10 2025 by rpki-client