Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
File: 7FNfTIaAzg26SgPZXmZck8yZzrk.mft (raw, json)
Hash identifier: WooePpiazJI7Xl+0IQe3FpFgvGl7IAWmmphKaEYfr3Q=
Subject key identifier: D7:A2:5F:74:EA:74:06:C7:FF:50:FA:1C:6B:1B:F2:32:9A:A7:3A:72
Authority key identifier: EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9
Certificate issuer: /CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9
Certificate serial: 0196A42E902F43628B272E9FFDBF6669F9DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
Manifest number: 9A
Signing time: Tue 06 May 2025 06:00:37 +0000
Manifest this update: Tue 06 May 2025 06:00:37 +0000
Manifest next update: Wed 07 May 2025 06:00:37 +0000
Files and hashes: 1: 7FNfTIaAzg26SgPZXmZck8yZzrk.crl (hash: QTJ3sCFvN8UPdhIk5kYgwmeSz7Yo4x16GLgs/nreQtw=)
2: xmQ5skD8YtPqUxW5yzoA6bHhREg.roa (hash: JOTsRiuQWzCXcl+Wr2hE6xVJO7LXDTormwzqqmVX6eE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:2e:90:2f:43:62:8b:27:2e:9f:fd:bf:66:69:f9:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9
Validity
Not Before: May 6 06:00:37 2025 GMT
Not After : May 7 06:00:37 2025 GMT
Subject: CN=d7a25f74ea7406c7ff50fa1c6b1bf2329aa73a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:92:42:0d:1d:be:4c:d6:f8:01:ff:78:ff:92:
01:e1:1d:72:25:db:71:17:ff:a2:a4:de:76:15:cd:
c3:47:50:53:aa:15:97:d7:36:26:3b:af:58:20:cc:
95:e0:68:f2:93:03:f2:18:99:9b:d0:ac:92:f7:57:
01:93:80:ed:27:da:12:57:ea:f1:e7:96:19:d5:b0:
c8:4f:9c:aa:29:e7:5c:88:a2:84:c2:13:14:c1:47:
07:9c:b9:a9:68:f8:c8:1b:01:8d:51:29:30:52:7b:
cc:d6:4a:d2:cf:c0:dd:46:5b:17:d1:83:6a:ef:6d:
ae:d0:a0:7a:33:40:a1:6e:e9:ec:46:16:d9:d2:ab:
cd:59:8c:52:0d:2d:42:2c:7b:29:73:c3:af:f3:2a:
10:87:d2:5f:47:60:18:34:c5:ef:4a:ca:f1:3d:f8:
86:c4:e9:12:d2:12:bd:ca:c0:d7:e8:4b:72:f1:bd:
4b:50:23:69:eb:8b:60:68:91:14:c8:7d:9a:32:76:
5d:43:48:a4:6a:a3:bc:c0:24:21:cf:c8:da:c3:dc:
cd:f9:75:7d:81:84:6a:79:a1:db:be:e6:93:6e:5e:
83:a8:2b:14:58:e0:64:22:20:d9:ea:bd:f1:58:b9:
d4:f8:9f:e0:c6:d4:2b:85:0c:25:ea:a1:b0:60:0f:
99:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A2:5F:74:EA:74:06:C7:FF:50:FA:1C:6B:1B:F2:32:9A:A7:3A:72
X509v3 Authority Key Identifier:
keyid:EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:28:e4:03:b8:ce:a8:04:df:e5:18:9d:50:6f:43:f6:68:9e:
da:6f:03:4a:47:f4:2b:27:8a:50:bc:10:ac:09:9c:bf:ae:67:
d5:21:75:7f:7c:08:74:92:7d:89:7a:ab:74:10:59:3d:89:a9:
c7:bf:32:06:e6:7d:ce:75:85:bc:94:20:a0:a9:1b:87:49:74:
81:3a:3c:14:62:f7:0e:29:f2:30:97:fb:4f:c0:1e:2d:3f:0f:
fa:6a:d6:e4:f6:44:ea:6c:dd:63:86:ea:dd:48:25:76:11:ad:
ee:2b:0e:d9:50:f2:a5:ef:fa:b6:5d:29:25:32:13:88:23:c1:
65:04:93:dc:ff:0c:70:8d:34:2c:da:45:d2:64:80:20:46:35:
e0:7e:e4:66:a3:95:91:fc:04:03:ff:f3:86:c8:2b:c3:14:da:
70:4a:d8:98:04:5b:13:da:2f:13:54:0f:88:97:96:83:de:8f:
72:32:76:33:78:e2:52:03:bd:dc:72:03:f0:66:14:41:19:82:
7b:83:0d:e6:2e:ca:f1:ab:9e:93:57:47:d6:f0:4d:a9:04:c5:
73:c1:4e:57:e5:f2:d7:5c:4e:61:10:de:6c:d2:a2:15:ca:93:
a0:4b:8a:3c:e6:f7:d6:51:1d:fc:ed:72:5e:8b:f4:80:26:bf:
19:46:98:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZakLpAvQ2KLJy6f/b9mafndMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVjNTM1ZjRjODY4MGNlMGRiYTRhMDNkOTVlNjY1YzkzY2M5
OWNlYjkwHhcNMjUwNTA2MDYwMDM3WhcNMjUwNTA3MDYwMDM3WjAzMTEwLwYDVQQD
EyhkN2EyNWY3NGVhNzQwNmM3ZmY1MGZhMWM2YjFiZjIzMjlhYTczYTcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJJCDR2+TNb4Af94/5IB4R1yJdtx
F/+ipN52Fc3DR1BTqhWX1zYmO69YIMyV4GjykwPyGJmb0KyS91cBk4DtJ9oSV+rx
55YZ1bDIT5yqKedciKKEwhMUwUcHnLmpaPjIGwGNUSkwUnvM1krSz8DdRlsX0YNq
722u0KB6M0ChbunsRhbZ0qvNWYxSDS1CLHspc8Ov8yoQh9JfR2AYNMXvSsrxPfiG
xOkS0hK9ysDX6Ety8b1LUCNp64tgaJEUyH2aMnZdQ0ikaqO8wCQhz8jaw9zN+XV9
gYRqeaHbvuaTbl6DqCsUWOBkIiDZ6r3xWLnU+J/gxtQrhQwl6qGwYA+ZrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNeiX3TqdAbH/1D6HGsb8jKapzpyMB8GA1UdIwQY
MBaAFOxTX0yGgM4NukoD2V5mXJPMmc65MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN0ZOZlRJYUF6ZzI2U2dQWlhtWmNrOHlaenJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZDAwMjktZjMzMC00YTY2LWJlZGMt
NDJmMmZmODU5MzczLzEvN0ZOZlRJYUF6ZzI2U2dQWlhtWmNrOHlaenJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS83ZDAwMjktZjMzMC00YTY2LWJlZGMtNDJmMmZmODU5Mzcz
LzEvN0ZOZlRJYUF6ZzI2U2dQWlhtWmNrOHlaenJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuSjkA7jO
qATf5RidUG9D9mie2m8DSkf0KyeKULwQrAmcv65n1SF1f3wIdJJ9iXqrdBBZPYmp
x78yBuZ9znWFvJQgoKkbh0l0gTo8FGL3DinyMJf7T8AeLT8P+mrW5PZE6mzdY4bq
3UgldhGt7isO2VDype/6tl0pJTITiCPBZQST3P8McI00LNpF0mSAIEY14H7kZqOV
kfwEA//zhsgrwxTacErYmARbE9ovE1QPiJeWg96PcjJ2M3jiUgO93HID8GYUQRmC
e4MN5i7K8auek1dH1vBNqQTFc8FOV+Xy11xOYRDebNKiFcqToEuKPOb31lEd/O1y
Xov0gCa/GUaYWw==
-----END CERTIFICATE-----
Generated at Tue May 6 10:08:15 2025 by rpki-client