Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
File: stCgxoogOf8MpRQCQRUnHIoEZgg.mft (raw, json)
Hash identifier: 2Mk4pNWBUB5cr7pr7aqFqYiH3NX4Zd1OYz59ZaR1QYU=
Subject key identifier: A5:5D:70:5B:4E:0E:41:EE:7A:6B:6B:29:FA:98:D1:72:57:EC:6E:7C
Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Certificate serial: 0196BB23FAD0031EED94545A39CB1397D943
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
Manifest number: 14C2
Signing time: Sat 10 May 2025 17:00:19 +0000
Manifest this update: Sat 10 May 2025 17:00:19 +0000
Manifest next update: Sun 11 May 2025 17:00:19 +0000
Files and hashes: 1: 98pSG03PsWjsaovooO14-BTQ9Vo.roa (hash: Nos0vMcOhKzLe90FJjKrPfa+9LXdDpzz5DlngxI3jBk=)
2: stCgxoogOf8MpRQCQRUnHIoEZgg.crl (hash: 6jS3odwrSZNhS4MeEjmK5Q35HXvGJ9HItlX9fc8isPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 17:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:23:fa:d0:03:1e:ed:94:54:5a:39:cb:13:97:d9:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Validity
Not Before: May 10 17:00:19 2025 GMT
Not After : May 11 17:00:19 2025 GMT
Subject: CN=a55d705b4e0e41ee7a6b6b29fa98d17257ec6e7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b7:58:ad:16:d6:51:43:c6:20:3f:2d:d6:4d:
e1:67:f2:43:30:f7:3b:10:92:f4:bd:d9:b7:52:22:
9d:4e:cb:23:d1:34:7e:32:57:c7:b9:4f:c7:0d:d2:
f9:dd:d9:5f:0f:13:99:86:00:94:2c:8a:7e:78:e2:
50:60:26:8c:8e:6e:7b:ba:09:3e:b4:f3:1d:b2:8b:
53:62:2b:8a:b0:54:fa:ee:9c:7f:44:da:7b:93:1d:
bd:88:64:fe:fb:02:50:fc:48:9c:3e:4b:4b:12:98:
96:39:eb:fc:a4:a4:ad:47:f0:7d:66:13:af:5f:b4:
f4:86:0e:3f:a8:83:b2:1a:06:1a:73:6b:0c:d6:50:
17:c7:2e:74:bf:b0:e8:b0:33:27:2a:c3:f9:96:4b:
e0:a9:ed:06:90:cd:94:90:bd:a0:0e:df:5d:ba:39:
c6:da:20:49:82:d9:60:1e:6e:df:55:fb:47:11:ee:
32:09:7d:37:e2:22:0a:75:a3:0b:d5:2d:03:d2:e0:
28:ee:44:80:bc:9c:38:7a:4c:fc:98:b5:94:d2:11:
70:e7:18:a7:01:22:4c:93:89:d8:49:1e:de:10:d0:
cb:56:11:05:7e:ca:9b:d2:5b:bc:08:90:82:4c:aa:
0e:49:e3:d1:52:d2:aa:76:1c:6a:fb:ce:43:3c:03:
13:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:5D:70:5B:4E:0E:41:EE:7A:6B:6B:29:FA:98:D1:72:57:EC:6E:7C
X509v3 Authority Key Identifier:
keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:b3:df:89:4f:08:ef:6f:2f:a5:0b:7f:29:23:7b:25:13:dc:
4c:7f:be:2a:da:7a:f8:1d:f7:b8:56:5a:52:45:5c:c6:d0:a2:
c5:49:fe:26:89:ca:62:e9:2a:13:ed:a0:50:63:76:5e:97:95:
9b:90:66:7d:ab:ac:c3:31:61:d9:28:2c:ab:33:b1:57:38:1e:
5a:0a:22:f3:7e:11:fc:e1:38:96:b0:21:6b:7c:fb:e4:40:e0:
bf:79:53:10:e4:60:27:2e:6b:88:59:b1:83:82:e7:aa:bd:1e:
c4:6c:59:62:22:40:cc:e8:75:68:58:51:62:bf:0c:18:93:3b:
50:49:51:72:fa:67:aa:fe:f2:fc:e7:59:0a:62:ad:81:5d:69:
32:61:d7:42:39:d8:8a:f5:f8:93:bd:0e:56:b6:64:4a:63:8e:
f0:cf:85:b5:58:44:e2:ab:15:65:22:b6:87:17:78:d7:5a:8a:
3d:a6:a6:44:b8:08:29:81:fc:1b:a9:d1:f6:bc:1e:d8:60:b2:
29:bd:cc:ce:e9:c1:a3:7a:4b:e4:47:ac:48:5a:c7:64:c0:b4:
87:c5:2f:a1:4f:88:97:43:1e:94:4d:28:b9:b8:66:c8:dc:c0:
25:66:92:ac:0b:ca:38:10:19:a8:a3:1e:e8:5d:c1:02:a4:83:
3d:12:e7:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa7I/rQAx7tlFRaOcsTl9lDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZDBhMGM2OGEyMDM5ZmYwY2E1MTQwMjQxMTUyNzFjOGEw
NDY2MDgwHhcNMjUwNTEwMTcwMDE5WhcNMjUwNTExMTcwMDE5WjAzMTEwLwYDVQQD
EyhhNTVkNzA1YjRlMGU0MWVlN2E2YjZiMjlmYTk4ZDE3MjU3ZWM2ZTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3bdYrRbWUUPGID8t1k3hZ/JDMPc7
EJL0vdm3UiKdTssj0TR+MlfHuU/HDdL53dlfDxOZhgCULIp+eOJQYCaMjm57ugk+
tPMdsotTYiuKsFT67px/RNp7kx29iGT++wJQ/EicPktLEpiWOev8pKStR/B9ZhOv
X7T0hg4/qIOyGgYac2sM1lAXxy50v7DosDMnKsP5lkvgqe0GkM2UkL2gDt9dujnG
2iBJgtlgHm7fVftHEe4yCX034iIKdaML1S0D0uAo7kSAvJw4ekz8mLWU0hFw5xin
ASJMk4nYSR7eENDLVhEFfsqb0lu8CJCCTKoOSePRUtKqdhxq+85DPAMTiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKVdcFtODkHuemtrKfqY0XJX7G58MB8GA1UdIwQY
MBaAFLLQoMaKIDn/DKUUAkEVJxyKBGYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9iM2QwZDctZTEwYS00ODZmLTg4NWQt
NDFhYjdjODcyZmVhLzEvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9iM2QwZDctZTEwYS00ODZmLTg4NWQtNDFhYjdjODcyZmVh
LzEvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZrPfiU8I
728vpQt/KSN7JRPcTH++Ktp6+B33uFZaUkVcxtCixUn+JonKYukqE+2gUGN2XpeV
m5BmfauswzFh2SgsqzOxVzgeWgoi834R/OE4lrAha3z75EDgv3lTEORgJy5riFmx
g4Lnqr0exGxZYiJAzOh1aFhRYr8MGJM7UElRcvpnqv7y/OdZCmKtgV1pMmHXQjnY
ivX4k70OVrZkSmOO8M+FtVhE4qsVZSK2hxd411qKPaamRLgIKYH8G6nR9rwe2GCy
Kb3MzunBo3pL5EesSFrHZMC0h8UvoU+Il0MelE0oubhmyNzAJWaSrAvKOBAZqKMe
6F3BAqSDPRLnCw==
-----END CERTIFICATE-----
Generated at Sun May 11 02:29:53 2025 by rpki-client