Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
File: Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft (raw, json)
Hash identifier: znYMXpzcpjyRJ8vLHlcTnbCtWh/YwJwvpaz+mWLNmJg=
Subject key identifier: 72:20:4E:F7:73:A9:1B:2E:68:FA:0E:0C:E3:16:4A:F7:12:01:9E:89
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 0196B7EC2E3A17846376192FC28DA2FFA073
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
Manifest number: 1543
Signing time: Sat 10 May 2025 02:00:30 +0000
Manifest this update: Sat 10 May 2025 02:00:30 +0000
Manifest next update: Sun 11 May 2025 02:00:30 +0000
Files and hashes: 1: 4SxEa8qHfL0SdS-yvynVjEWywI0.roa (hash: ed273NQ5dggxiwmHaUzsS7LYiMx/0KEG21fx026Qijc=)
2: 57zAUxjN80d98_hrUg6wNGuh-LQ.roa (hash: qIcET8+9I+XlvyugPkuqmk4yArAibC2n8LmahOzKwL0=)
3: D8TVIpbhKokDS9trBBqJHsFT1UQ.roa (hash: buVD8eTr7vS6C640rVcFTDAjpCVFYAxsjVTpolrqfNA=)
4: NmoYPoFsB3H-yWZn9Rb0NDz1MJ4.roa (hash: FwqkjteV8mEkwCHBz60OLk0gwsGOE+XgtXFsarBN/XQ=)
5: Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl (hash: MVfQX31y4o/eOabjwgB+Mrq8D5+M2bTSalGH/v2CbQQ=)
6: rnTaQ1uEKUsJsa3f9-uniTuwHWo.roa (hash: 65NB0UfxYYmSvSLb5gS9zELjlvrzXWC3McdcTIR7Hxk=)
7: tIc5dJ9row9Jpwnimlce4tYbp44.roa (hash: ouwAo45RW/R/dO1EFuBCaboweb6Z3RjFTDf5e9DgnQU=)
8: xv_S9Q_lixnhLdeB2FeY6-83q40.roa (hash: fpHqpuP8WhUb/qgqx71BT4D9l/LEKw+tKbvv5QvJ1WU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:ec:2e:3a:17:84:63:76:19:2f:c2:8d:a2:ff:a0:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: May 10 02:00:30 2025 GMT
Not After : May 11 02:00:30 2025 GMT
Subject: CN=72204ef773a91b2e68fa0e0ce3164af712019e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ef:06:94:49:7d:a5:a0:e7:85:c6:cb:29:5b:
f0:e5:81:8b:d1:8e:14:64:fd:41:3b:e6:3b:01:50:
e3:da:9b:df:03:ed:b2:67:aa:8b:5d:1b:7d:f3:0b:
ba:5c:ff:8e:76:f5:46:b2:eb:e2:6b:97:7a:88:c7:
26:56:a6:82:13:93:a4:ba:32:49:be:4e:ef:9b:b4:
64:16:1f:59:0c:56:5f:b5:0a:a1:7d:c3:c1:9c:61:
43:bf:cd:71:1d:5e:c7:37:5f:65:65:46:1b:ff:60:
14:ef:d2:89:01:75:cb:03:9a:df:27:2b:71:55:02:
49:25:92:69:67:93:a8:f0:b5:e2:bf:e0:3c:35:c6:
83:f5:7c:07:c3:d0:46:ca:d8:66:16:00:95:1f:ef:
0a:28:5b:8c:fd:76:7f:41:2a:a7:e6:62:18:3e:8a:
98:09:99:14:28:b8:8d:d1:7a:be:bd:be:ab:00:f5:
99:c2:ab:16:05:1d:4c:55:f3:4b:ee:7b:c8:66:92:
10:4d:82:a3:a9:4d:0f:e4:c1:79:88:08:25:bf:0c:
11:14:58:da:2a:3d:f3:55:a1:5b:28:c6:b6:35:35:
b1:63:34:3f:e9:05:f8:5b:92:00:c2:0c:b8:5b:9e:
45:fd:ad:43:28:13:3d:28:57:06:4b:fd:e5:b1:fe:
c7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:20:4E:F7:73:A9:1B:2E:68:FA:0E:0C:E3:16:4A:F7:12:01:9E:89
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:5d:b6:08:d0:54:23:ec:db:e0:da:83:70:77:87:f6:a0:15:
4c:b2:05:18:4d:95:c8:3a:a1:58:34:ec:c1:89:db:90:c2:4e:
32:f2:23:69:77:e1:ec:fd:25:90:3f:79:29:fb:e3:1c:eb:1b:
49:27:28:46:f9:a9:53:12:21:0a:74:f1:27:25:9e:a9:75:2e:
86:80:24:ed:94:7f:44:f9:27:3e:36:c9:79:82:22:a8:d1:43:
eb:41:e5:9d:cb:35:25:cc:5e:9e:8b:c4:a6:ab:1d:7e:24:f4:
5d:63:1b:a0:29:ab:cb:17:b4:a7:0f:3b:22:cb:7e:c6:e5:c2:
79:6f:f6:35:d4:60:8f:bc:02:5e:79:8d:a8:b3:e9:61:e2:be:
b7:e6:d9:44:7a:c5:56:b9:18:e6:98:dd:02:e5:d0:6d:4b:15:
f3:9d:0f:65:2e:8b:18:69:17:3a:7a:06:ce:f1:37:36:87:6c:
9d:6a:16:53:74:0f:c4:48:4c:06:ed:c3:2b:03:0f:d1:4b:00:
ea:c1:3b:40:0e:2a:02:2f:20:81:50:04:00:3a:8d:e2:1d:d9:
64:4c:ab:08:45:fb:46:c8:19:39:13:95:c3:a3:57:52:cd:8f:
9a:cd:f8:bc:91:02:cd:14:05:c0:d5:9d:bd:a0:0e:a8:ca:c9:
bd:c4:22:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa37C46F4Rjdhkvwo2i/6BzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZGU0YjNiODJmMjA5YjcwMWFlMzQwY2Y1M2I5NzQwNzhm
MTZhOWYwHhcNMjUwNTEwMDIwMDMwWhcNMjUwNTExMDIwMDMwWjAzMTEwLwYDVQQD
Eyg3MjIwNGVmNzczYTkxYjJlNjhmYTBlMGNlMzE2NGFmNzEyMDE5ZTg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2O8GlEl9paDnhcbLKVvw5YGL0Y4U
ZP1BO+Y7AVDj2pvfA+2yZ6qLXRt98wu6XP+OdvVGsuvia5d6iMcmVqaCE5OkujJJ
vk7vm7RkFh9ZDFZftQqhfcPBnGFDv81xHV7HN19lZUYb/2AU79KJAXXLA5rfJytx
VQJJJZJpZ5Oo8LXiv+A8NcaD9XwHw9BGythmFgCVH+8KKFuM/XZ/QSqn5mIYPoqY
CZkUKLiN0Xq+vb6rAPWZwqsWBR1MVfNL7nvIZpIQTYKjqU0P5MF5iAglvwwRFFja
Kj3zVaFbKMa2NTWxYzQ/6QX4W5IAwgy4W55F/a1DKBM9KFcGS/3lsf7HTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHIgTvdzqRsuaPoODOMWSvcSAZ6JMB8GA1UdIwQY
MBaAFF3eSzuC8gm3Aa40DPU7l0B48WqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWIt
ODZhNTUxOGUyZDUyLzEvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWItODZhNTUxOGUyZDUy
LzEvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg122CNBU
I+zb4NqDcHeH9qAVTLIFGE2VyDqhWDTswYnbkMJOMvIjaXfh7P0lkD95KfvjHOsb
SScoRvmpUxIhCnTxJyWeqXUuhoAk7ZR/RPknPjbJeYIiqNFD60Hlncs1JcxenovE
pqsdfiT0XWMboCmryxe0pw87Ist+xuXCeW/2NdRgj7wCXnmNqLPpYeK+t+bZRHrF
VrkY5pjdAuXQbUsV850PZS6LGGkXOnoGzvE3NodsnWoWU3QPxEhMBu3DKwMP0UsA
6sE7QA4qAi8ggVAEADqN4h3ZZEyrCEX7RsgZOROVw6NXUs2Pms34vJECzRQFwNWd
vaAOqMrJvcQiYw==
-----END CERTIFICATE-----
Generated at Sat May 10 03:46:10 2025 by rpki-client