Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
File: U1vkU3bViYdFK9Bka5p0z562yy0.mft (raw, json)
Hash identifier: G/4kZrk/oSq49DlYeJa9pdJGzLSPi/pYueE+XSGaaeY=
Subject key identifier: B6:E4:34:E4:84:B6:38:6A:F5:30:A1:A9:72:24:47:07:33:56:B6:DA
Authority key identifier: 53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D
Certificate issuer: /CN=535be45376d58987452bd0646b9a74cf9eb6cb2d
Certificate serial: 0196C64C4B06EC14060A2316E478F1291204
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
Manifest number: 1539
Signing time: Mon 12 May 2025 21:00:10 +0000
Manifest this update: Mon 12 May 2025 21:00:10 +0000
Manifest next update: Tue 13 May 2025 21:00:10 +0000
Files and hashes: 1: U1vkU3bViYdFK9Bka5p0z562yy0.crl (hash: IVJP5ddoXQ4xMlBZEly7xujQo/cZ69nRq2MJMmhLS8c=)
2: bldtfvyuIcb6nqjUAl8Ak0zMF30.roa (hash: dx6ZT1WJQ+QEzva9Bd5tv/adJVLszcwVSLKhJy+UO24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:4c:4b:06:ec:14:06:0a:23:16:e4:78:f1:29:12:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535be45376d58987452bd0646b9a74cf9eb6cb2d
Validity
Not Before: May 12 21:00:10 2025 GMT
Not After : May 13 21:00:10 2025 GMT
Subject: CN=b6e434e484b6386af530a1a9722447073356b6da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b1:7f:e4:01:54:5f:67:1d:23:2e:f7:0c:6a:
b4:c9:f8:c2:7b:22:1a:dd:32:a4:a0:a8:75:53:80:
b3:f0:f7:db:f0:a4:fc:da:e0:71:52:56:34:0f:ee:
aa:4d:de:1c:45:6e:ab:e9:86:58:c3:33:b3:03:52:
e2:5a:5f:b8:ae:2b:2e:d8:66:81:5c:30:ce:69:46:
7d:86:81:df:2e:33:e4:0a:73:90:94:c6:cf:6c:8a:
74:e4:56:34:d4:e6:ea:df:ff:bf:ad:b8:e1:24:63:
52:82:19:b3:bd:6e:16:13:ce:c3:54:3c:c8:d9:31:
99:19:77:83:a0:7e:c1:fa:db:91:ef:c4:75:5a:d9:
42:2a:df:f7:5c:1a:9e:9e:59:b3:0a:26:c3:23:2c:
95:8f:d1:1c:94:cc:19:16:7f:8a:41:2f:e9:2f:d6:
c0:41:fe:86:0b:fe:cf:7f:35:08:7c:61:3b:d0:a3:
70:3b:a3:be:49:39:8f:21:ee:18:fc:fc:6a:16:3e:
8f:55:60:a3:3f:cb:ee:0a:37:0c:2b:a7:be:64:c2:
2d:cf:26:85:ce:1a:85:01:c2:84:2e:39:86:69:68:
a3:24:bc:5a:bf:8e:fb:52:f3:47:67:89:62:be:45:
da:a7:f2:22:de:00:cd:aa:4d:ef:e1:c6:c1:ae:a5:
54:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E4:34:E4:84:B6:38:6A:F5:30:A1:A9:72:24:47:07:33:56:B6:DA
X509v3 Authority Key Identifier:
keyid:53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:a3:ac:bb:d6:54:ba:21:da:9f:59:f5:b8:12:01:a1:74:0e:
35:71:c0:53:50:1c:b2:6f:fe:39:61:1d:24:8a:a7:04:d9:50:
40:98:d3:e7:4f:b8:d5:65:6d:61:b0:28:6d:64:5a:7c:48:5a:
f2:89:0f:53:c2:dd:90:c5:ce:dc:c6:f7:f5:0d:ed:b0:9e:78:
85:90:53:79:b5:74:a9:76:e8:9c:57:8b:d7:63:0f:25:41:5d:
02:54:a0:00:49:2c:5f:79:4b:1b:dd:c9:de:4b:6c:fc:dd:7c:
29:f1:f4:5e:7f:3b:57:e0:cb:ef:9c:f6:b2:da:25:e6:13:c4:
0a:ad:9f:3b:d1:ba:c5:b4:db:d5:ee:80:e5:9e:30:b2:ff:a1:
9e:3c:d4:99:97:68:a0:7b:70:5f:2d:00:0c:34:3d:53:a1:d9:
67:b7:01:ac:aa:42:8b:30:c4:e9:e5:4f:c7:d8:86:24:69:8e:
89:e3:65:a3:56:9c:a6:c7:61:a3:2f:27:8a:ec:42:4b:1f:94:
77:b8:44:6e:88:52:b5:1a:e2:d0:94:f2:67:c6:8e:5f:f4:3d:
41:f0:ad:41:a3:0a:6b:85:5b:05:08:a1:f9:26:f1:72:f0:3b:
7d:1b:e0:94:ca:96:c9:70:a1:aa:81:cc:f2:11:04:05:5f:39:
66:06:4d:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbGTEsG7BQGCiMW5HjxKRIEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzNWJlNDUzNzZkNTg5ODc0NTJiZDA2NDZiOWE3NGNmOWVi
NmNiMmQwHhcNMjUwNTEyMjEwMDEwWhcNMjUwNTEzMjEwMDEwWjAzMTEwLwYDVQQD
EyhiNmU0MzRlNDg0YjYzODZhZjUzMGExYTk3MjI0NDcwNzMzNTZiNmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7F/5AFUX2cdIy73DGq0yfjCeyIa
3TKkoKh1U4Cz8Pfb8KT82uBxUlY0D+6qTd4cRW6r6YZYwzOzA1LiWl+4risu2GaB
XDDOaUZ9hoHfLjPkCnOQlMbPbIp05FY01Obq3/+/rbjhJGNSghmzvW4WE87DVDzI
2TGZGXeDoH7B+tuR78R1WtlCKt/3XBqenlmzCibDIyyVj9EclMwZFn+KQS/pL9bA
Qf6GC/7PfzUIfGE70KNwO6O+STmPIe4Y/PxqFj6PVWCjP8vuCjcMK6e+ZMItzyaF
zhqFAcKELjmGaWijJLxav477UvNHZ4livkXap/Ii3gDNqk3v4cbBrqVUdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLbkNOSEtjhq9TChqXIkRwczVrbaMB8GA1UdIwQY
MBaAFFNb5FN21YmHRSvQZGuadM+etsstMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTF2a1UzYlZpWWRGSzlCa2E1cDB6NTYyeXkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9mYjM5YTgtNjIzYi00NDM1LTk0ZmUt
Y2VjOTJiNTc4MDA2LzEvVTF2a1UzYlZpWWRGSzlCa2E1cDB6NTYyeXkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS9mYjM5YTgtNjIzYi00NDM1LTk0ZmUtY2VjOTJiNTc4MDA2
LzEvVTF2a1UzYlZpWWRGSzlCa2E1cDB6NTYyeXkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUqOsu9ZU
uiHan1n1uBIBoXQONXHAU1Acsm/+OWEdJIqnBNlQQJjT50+41WVtYbAobWRafEha
8okPU8LdkMXO3Mb39Q3tsJ54hZBTebV0qXbonFeL12MPJUFdAlSgAEksX3lLG93J
3kts/N18KfH0Xn87V+DL75z2stol5hPECq2fO9G6xbTb1e6A5Z4wsv+hnjzUmZdo
oHtwXy0ADDQ9U6HZZ7cBrKpCizDE6eVPx9iGJGmOieNlo1acpsdhoy8niuxCSx+U
d7hEbohStRri0JTyZ8aOX/Q9QfCtQaMKa4VbBQih+SbxcvA7fRvglMqWyXChqoHM
8hEEBV85ZgZN9A==
-----END CERTIFICATE-----
Generated at Tue May 13 00:36:32 2025 by rpki-client