Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
File: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft (raw, json)
Hash identifier: NWdnG1B3GZGjFJTs6YkQADK9slqZ8jbFb6F79NL5sGo=
Subject key identifier: 89:58:1B:7E:9F:27:9B:8E:5F:8E:E2:14:56:40:4F:E7:6E:85:B9:96
Authority key identifier: 91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
Certificate issuer: /CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Certificate serial: 0196DF3123B15AA26DD8CA30D938707B5D76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
Manifest number: 0562
Signing time: Sat 17 May 2025 17:01:01 +0000
Manifest this update: Sat 17 May 2025 17:01:01 +0000
Manifest next update: Sun 18 May 2025 17:01:01 +0000
Files and hashes: 1: 1-PjUZT902dDkd6VPDrdDPHXwUZw.roa (hash: MHJPB3k7tQCL3suOF/2f4yZcUJ+jnvq9tJxwFWeEEbc=)
2: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl (hash: lQ1S+y304QgcKwOHSexBCz4Qd5kr5KJbiLIEqvPCNAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 18 May 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:df:31:23:b1:5a:a2:6d:d8:ca:30:d9:38:70:7b:5d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Validity
Not Before: May 17 17:01:01 2025 GMT
Not After : May 18 17:01:01 2025 GMT
Subject: CN=89581b7e9f279b8e5f8ee21456404fe76e85b996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c1:6b:2e:bd:4b:b8:99:17:54:86:84:5e:f4:
04:28:b1:9b:2f:30:9c:b5:81:36:7b:fe:bd:39:54:
3c:a0:e6:a3:ac:ee:24:87:81:0c:94:44:08:ff:9f:
3f:be:5d:4a:c3:5c:cd:ad:74:7c:3b:0f:4b:bf:4b:
16:92:5c:01:eb:07:8b:38:f3:88:f5:f6:55:71:40:
c3:d9:ef:e7:84:d0:5d:9a:68:03:85:8b:ed:23:58:
78:9f:85:87:a8:bb:a8:d0:44:c3:f4:08:1e:53:33:
26:71:53:41:a9:1b:7a:ff:7a:7f:71:7a:a4:36:19:
b7:31:68:d7:79:44:a0:5d:8f:f1:9c:fc:0d:fd:25:
eb:f7:41:5e:08:65:66:db:13:20:8f:b0:a9:91:4e:
54:03:36:93:a0:8c:66:9d:54:ff:4b:5a:d3:1f:b1:
83:93:f8:af:51:96:b8:21:d9:4a:a1:ec:99:f6:c5:
09:93:91:e7:e2:ba:e5:4f:65:77:3b:a3:cf:68:6e:
15:54:30:3a:80:dc:7c:16:65:9e:4c:34:e5:38:03:
d7:f1:5e:c5:01:0d:f0:55:a4:8f:81:f3:b7:24:81:
cd:36:52:2b:50:9e:dd:85:cd:5a:5a:67:b9:8d:6c:
12:56:d0:a2:26:9b:84:f6:c7:a9:46:91:40:b2:f0:
cb:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:58:1B:7E:9F:27:9B:8E:5F:8E:E2:14:56:40:4F:E7:6E:85:B9:96
X509v3 Authority Key Identifier:
keyid:91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:c4:31:5c:8a:3c:38:cf:3c:9e:6e:73:95:68:fc:74:e6:e3:
c9:04:b9:c7:aa:b1:b6:2d:f2:e0:b7:7a:55:bb:a7:94:29:49:
dd:f5:97:5f:65:36:68:00:2f:41:40:bb:7d:46:82:32:8c:4f:
a4:5b:f4:f7:ee:f0:1a:46:70:3e:3c:f3:79:30:8d:34:38:b5:
e1:7c:93:7a:4a:dc:99:85:f4:55:08:29:cc:0a:ab:c3:0e:79:
6b:17:f7:94:c2:35:45:8f:9d:aa:6f:af:fc:09:f6:fa:32:0b:
43:44:e7:2b:52:3c:2e:a5:46:db:80:d4:8b:bf:bb:8e:24:ff:
de:bf:34:bc:f7:c7:2c:b9:61:93:a9:fc:b4:e9:29:ab:69:80:
70:16:fa:ff:28:49:20:06:01:2f:15:e4:ce:a7:e1:83:4c:51:
69:cd:d8:8c:a8:74:a0:d3:66:2c:fc:a9:9b:4f:34:22:90:a1:
ab:bf:9a:06:7e:66:c4:41:20:05:6a:83:62:57:00:ad:46:cc:
71:94:29:96:10:ca:6d:b5:a8:f4:d1:98:c4:f6:ee:e0:c4:50:
63:1c:da:3c:77:4f:ab:35:b9:eb:df:a1:0f:af:96:e7:78:f6:
38:6c:ae:ad:46:02:b0:92:58:f4:ea:5e:87:2c:54:96:3d:0c:
db:ea:d1:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbfMSOxWqJt2Mow2Thwe112MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxN2MzM2M3NTk2MTMxOGQ4ZWUzY2IxMzQ2NGE5MGQwMGFi
OGJkMmQwHhcNMjUwNTE3MTcwMTAxWhcNMjUwNTE4MTcwMTAxWjAzMTEwLwYDVQQD
Eyg4OTU4MWI3ZTlmMjc5YjhlNWY4ZWUyMTQ1NjQwNGZlNzZlODViOTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAycFrLr1LuJkXVIaEXvQEKLGbLzCc
tYE2e/69OVQ8oOajrO4kh4EMlEQI/58/vl1Kw1zNrXR8Ow9Lv0sWklwB6weLOPOI
9fZVcUDD2e/nhNBdmmgDhYvtI1h4n4WHqLuo0ETD9AgeUzMmcVNBqRt6/3p/cXqk
Nhm3MWjXeUSgXY/xnPwN/SXr90FeCGVm2xMgj7CpkU5UAzaToIxmnVT/S1rTH7GD
k/ivUZa4IdlKoeyZ9sUJk5Hn4rrlT2V3O6PPaG4VVDA6gNx8FmWeTDTlOAPX8V7F
AQ3wVaSPgfO3JIHNNlIrUJ7dhc1aWme5jWwSVtCiJpuE9sepRpFAsvDLbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIlYG36fJ5uOX47iFFZAT+duhbmWMB8GA1UdIwQY
MBaAFJF8M8dZYTGNjuPLE0ZKkNAKuL0tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1h3engxbGhNWTJPNDhzVFJrcVEwQXE0dlMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9hYzI3M2EtOWM4Yi00ZWY3LWE0MDAt
YzM3NjFhNzVkMDQ3LzEva1h3engxbGhNWTJPNDhzVFJrcVEwQXE0dlMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi9hYzI3M2EtOWM4Yi00ZWY3LWE0MDAtYzM3NjFhNzVkMDQ3
LzEva1h3engxbGhNWTJPNDhzVFJrcVEwQXE0dlMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI8QxXIo8
OM88nm5zlWj8dObjyQS5x6qxti3y4Ld6VbunlClJ3fWXX2U2aAAvQUC7fUaCMoxP
pFv09+7wGkZwPjzzeTCNNDi14XyTekrcmYX0VQgpzAqrww55axf3lMI1RY+dqm+v
/An2+jILQ0TnK1I8LqVG24DUi7+7jiT/3r80vPfHLLlhk6n8tOkpq2mAcBb6/yhJ
IAYBLxXkzqfhg0xRac3YjKh0oNNmLPypm080IpChq7+aBn5mxEEgBWqDYlcArUbM
cZQplhDKbbWo9NGYxPbu4MRQYxzaPHdPqzW569+hD6+W53j2OGyurUYCsJJY9Ope
hyxUlj0M2+rRlQ==
-----END CERTIFICATE-----
Generated at Sat May 17 19:38:59 2025 by rpki-client