Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
File: PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft (raw, json)
Hash identifier: cQUqTCsWdpDk2Nr6NSlx2C+Ul/N82N/5XRxzscZ3X5U=
Subject key identifier: 50:E8:DB:41:34:0C:E4:07:D9:0C:DE:3D:4D:F7:5B:22:AF:06:33:ED
Authority key identifier: 3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
Certificate issuer: /CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Certificate serial: 0196C3B98050035871C63BFEBEEBEEAF0293
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
Manifest number: 1537
Signing time: Mon 12 May 2025 09:00:36 +0000
Manifest this update: Mon 12 May 2025 09:00:36 +0000
Manifest next update: Tue 13 May 2025 09:00:36 +0000
Files and hashes: 1: 2AYUWvm8F1To8URav6-hliMLNGM.roa (hash: xtydpTSnQLnPEEmzIm3eQJgTUjiDutczP4OZlZO4Bow=)
2: PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl (hash: 9mzOjCMcSeLIlm620ESxQKWYvXoKhGgLuUojMH9uDFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:80:50:03:58:71:c6:3b:fe:be:eb:ee:af:02:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Validity
Not Before: May 12 09:00:36 2025 GMT
Not After : May 13 09:00:36 2025 GMT
Subject: CN=50e8db41340ce407d90cde3d4df75b22af0633ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2a:23:f5:a0:dc:0c:72:38:91:55:88:aa:7c:
f1:41:8d:03:1c:fd:31:2b:b2:e8:bf:7c:d6:e6:ae:
0a:81:21:da:3d:e3:6d:ac:06:ed:44:e9:2f:c7:44:
c1:12:f3:df:f9:9f:7e:21:88:b9:3f:2c:05:36:52:
24:eb:16:f5:72:3d:fd:d2:72:5f:6f:64:05:77:0e:
10:8a:7e:91:12:63:3b:14:c0:ed:d1:5f:3c:8e:34:
74:d2:2f:eb:4f:b4:e5:26:c4:42:a5:61:b5:54:8a:
99:1c:ca:4d:dc:93:d4:42:a4:97:e4:a1:ee:5b:60:
04:9b:40:48:72:17:3f:35:e9:1b:aa:b9:2d:e7:98:
cf:06:4b:e0:4e:a6:3b:be:ca:90:92:7f:d4:b4:db:
92:19:1c:d7:1f:6f:9a:99:15:ef:8e:32:aa:9b:76:
e4:a0:f8:8e:9d:f8:c9:fb:c8:a6:62:bf:81:f3:aa:
b6:f8:ed:2d:c9:bc:95:af:91:41:a8:62:d9:a2:c0:
74:98:ab:1c:7c:e6:02:c8:a7:f2:cc:5a:f4:3b:da:
f4:5d:24:95:b1:7d:c7:24:31:7d:be:61:66:e8:47:
6d:f7:55:7d:8f:05:ee:2f:34:a2:01:a4:1c:5a:f1:
55:f6:27:e8:d8:b3:bf:b8:80:56:88:7c:13:1c:89:
4c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E8:DB:41:34:0C:E4:07:D9:0C:DE:3D:4D:F7:5B:22:AF:06:33:ED
X509v3 Authority Key Identifier:
keyid:3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:c0:b6:3c:a8:1b:b5:3e:25:ec:04:54:55:50:fb:fb:23:cf:
b4:7b:4e:f3:56:29:4b:02:7c:c0:98:6b:f7:cd:8f:17:cc:fa:
ac:d0:92:e7:53:39:c7:b7:be:69:8c:bf:86:e2:d2:87:e0:63:
c8:0d:9b:1a:d3:ef:8b:a6:42:ac:d8:0d:d7:4d:44:14:9f:cb:
87:6b:a6:bf:69:f9:d0:8d:d0:ad:fb:0a:b7:7f:38:63:c1:2c:
9f:a0:4b:9f:46:50:e3:7e:75:9f:56:cd:db:c1:a0:83:6c:af:
bb:92:e7:46:f1:68:dd:26:d7:07:7e:b4:0e:49:bd:7d:e3:60:
8e:fa:3a:a9:08:5f:dd:f4:0a:0b:6f:14:0b:2d:93:a4:e9:bb:
7d:34:2b:9b:6d:06:95:a4:5b:26:e3:49:fa:c1:e9:91:6c:65:
73:c8:97:95:c8:8b:60:d1:6f:d8:39:98:3e:c5:cb:18:73:93:
8a:ae:2f:e3:3e:a8:09:a1:76:54:c1:bd:09:14:c6:d6:62:ea:
8b:91:95:6b:4f:3d:0c:07:32:37:df:01:04:cc:89:14:f7:ba:
63:63:fc:f1:67:c3:b9:a4:20:72:cb:7d:28:1c:45:c2:40:b2:
94:25:3e:f0:fc:60:4a:5e:6e:d9:aa:b3:3d:7c:e9:50:7a:be:
d8:15:2e:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbDuYBQA1hxxjv+vuvurwKTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkNzBmMWY2NTYzZGU0M2ExMWQzNjQ0OTc1NjY3YzFjMjhl
Nzk1OWUwHhcNMjUwNTEyMDkwMDM2WhcNMjUwNTEzMDkwMDM2WjAzMTEwLwYDVQQD
Eyg1MGU4ZGI0MTM0MGNlNDA3ZDkwY2RlM2Q0ZGY3NWIyMmFmMDYzM2VkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ioj9aDcDHI4kVWIqnzxQY0DHP0x
K7Lov3zW5q4KgSHaPeNtrAbtROkvx0TBEvPf+Z9+IYi5PywFNlIk6xb1cj390nJf
b2QFdw4Qin6REmM7FMDt0V88jjR00i/rT7TlJsRCpWG1VIqZHMpN3JPUQqSX5KHu
W2AEm0BIchc/Nekbqrkt55jPBkvgTqY7vsqQkn/UtNuSGRzXH2+amRXvjjKqm3bk
oPiOnfjJ+8imYr+B86q2+O0tybyVr5FBqGLZosB0mKscfOYCyKfyzFr0O9r0XSSV
sX3HJDF9vmFm6Edt91V9jwXuLzSiAaQcWvFV9ifo2LO/uIBWiHwTHIlM8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFDo20E0DOQH2QzePU33WyKvBjPtMB8GA1UdIwQY
MBaAFD1w8fZWPeQ6EdNkSXVmfBwo55WeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFhEeDlsWTk1RG9SMDJSSmRXWjhIQ2pubFo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC82YzA3NWUtNjI2My00ZmYzLWEyNmQt
OGQzMjIyMDcxNWVlLzEvUFhEeDlsWTk1RG9SMDJSSmRXWjhIQ2pubFo0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC82YzA3NWUtNjI2My00ZmYzLWEyNmQtOGQzMjIyMDcxNWVl
LzEvUFhEeDlsWTk1RG9SMDJSSmRXWjhIQ2pubFo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGMC2PKgb
tT4l7ARUVVD7+yPPtHtO81YpSwJ8wJhr982PF8z6rNCS51M5x7e+aYy/huLSh+Bj
yA2bGtPvi6ZCrNgN101EFJ/Lh2umv2n50I3QrfsKt384Y8Esn6BLn0ZQ4351n1bN
28Ggg2yvu5LnRvFo3SbXB360Dkm9feNgjvo6qQhf3fQKC28UCy2TpOm7fTQrm20G
laRbJuNJ+sHpkWxlc8iXlciLYNFv2DmYPsXLGHOTiq4v4z6oCaF2VMG9CRTG1mLq
i5GVa089DAcyN98BBMyJFPe6Y2P88WfDuaQgcst9KBxFwkCylCU+8PxgSl5u2aqz
PXzpUHq+2BUuYw==
-----END CERTIFICATE-----
Generated at Mon May 12 14:26:06 2025 by rpki-client