Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
File: u4rmO3V9oa95DyD1nGNIEe7rG8w.mft (raw, json)
Hash identifier: x8MtNz5mYfuJUMuP6O1bjZbmx1UPHzr8KlZo17E/Tyk=
Subject key identifier: A1:1E:82:A9:4C:EA:09:B6:03:85:E0:32:57:B4:73:5B:39:B6:3D:C1
Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Certificate serial: 0196A80B40DCEFA5EAA72C5B3ACF34D69EB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
Manifest number: 09CA
Signing time: Wed 07 May 2025 00:00:31 +0000
Manifest this update: Wed 07 May 2025 00:00:31 +0000
Manifest next update: Thu 08 May 2025 00:00:31 +0000
Files and hashes: 1: DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa (hash: 9ygbw2KxTYEdLBVrIZpBTqLv2Fu0lBk+DuBHrlgf8dM=)
2: u4rmO3V9oa95DyD1nGNIEe7rG8w.crl (hash: HRe0gvXAlCWoQF5VOS3gC+e7ElWdPxTwcLcNTF74vGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:0b:40:dc:ef:a5:ea:a7:2c:5b:3a:cf:34:d6:9e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Validity
Not Before: May 7 00:00:31 2025 GMT
Not After : May 8 00:00:31 2025 GMT
Subject: CN=a11e82a94cea09b60385e03257b4735b39b63dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:86:af:fb:f0:ba:07:8a:05:ac:b1:07:48:7b:
57:3b:07:ac:bf:68:e7:57:dc:97:61:58:65:a4:00:
59:08:ce:95:dc:94:41:24:60:89:bb:94:af:e0:5c:
5c:1a:49:e1:da:f0:9d:af:21:27:75:a7:14:fb:58:
34:a7:73:0c:2d:37:ef:81:72:39:c4:ef:44:21:cc:
02:2f:eb:42:96:88:b8:cf:45:81:31:cc:4c:18:fa:
0f:22:9e:75:c3:ae:04:bb:c6:62:aa:84:e7:5d:7c:
29:8c:22:84:b3:33:20:4f:11:95:ff:72:f8:26:f1:
5d:80:21:1d:e1:9a:9b:d6:60:ea:7b:73:97:2f:ac:
7d:4c:54:99:2a:10:20:28:6a:4f:42:f7:58:a2:41:
02:76:53:76:ba:91:e8:54:a2:44:f8:85:36:f8:fa:
87:db:57:de:8c:77:61:36:bc:a9:49:80:58:e9:f0:
3e:51:d4:23:ed:e9:b3:2c:53:fb:62:17:d2:5a:e7:
62:c7:ba:35:66:a9:7c:44:85:99:22:9f:6f:90:ab:
33:ae:13:45:00:8c:fd:09:0c:56:0d:57:ac:92:9d:
fd:0a:3c:de:e3:79:6a:37:42:f9:e8:4a:cb:9c:3f:
1d:1c:b8:e2:9f:f0:a2:cb:d3:4e:e8:13:f3:4a:38:
3b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:1E:82:A9:4C:EA:09:B6:03:85:E0:32:57:B4:73:5B:39:B6:3D:C1
X509v3 Authority Key Identifier:
keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:2f:97:6c:ab:cb:e3:f4:33:2f:9b:56:40:38:9f:b6:36:9d:
f9:a2:60:95:27:6d:49:27:0e:4c:49:33:95:80:67:72:1d:76:
4b:3b:91:59:f3:40:59:25:64:5e:15:73:b6:8e:14:7d:90:91:
f9:05:be:5c:96:af:14:f2:b0:4e:06:92:85:a5:54:fa:4b:4a:
f3:24:f2:ec:cc:36:80:95:d5:be:35:3b:61:3b:29:8c:57:34:
28:6f:d1:73:90:79:12:79:92:7e:1d:76:ec:fd:f5:9b:62:e2:
10:b5:a8:9e:06:57:d1:5e:b3:69:0a:60:43:2c:85:f0:89:31:
45:54:57:ff:36:1f:32:c7:da:ef:49:f1:82:da:14:79:49:e6:
e5:55:f4:95:c7:b8:83:dd:6e:85:9a:af:d2:19:39:8d:cf:a4:
1d:5e:19:48:37:08:21:10:82:f6:93:ab:1a:02:c6:7a:29:11:
dc:83:dc:eb:db:0a:e3:97:82:a4:a9:7f:2f:15:18:1e:96:7c:
44:c8:32:52:43:98:e3:d9:0b:fb:42:6a:81:d5:cb:ff:0e:3d:
2a:93:21:b3:25:d3:67:ff:42:eb:3c:9a:ac:6f:47:a5:68:3d:
b6:ad:60:e2:f2:98:e2:a8:31:1b:c2:ae:23:2d:bd:36:89:b6:
bf:10:91:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaoC0Dc76XqpyxbOs801p6zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiOGFlNjNiNzU3ZGExYWY3OTBmMjBmNTljNjM0ODExZWVl
YjFiY2MwHhcNMjUwNTA3MDAwMDMxWhcNMjUwNTA4MDAwMDMxWjAzMTEwLwYDVQQD
EyhhMTFlODJhOTRjZWEwOWI2MDM4NWUwMzI1N2I0NzM1YjM5YjYzZGMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYav+/C6B4oFrLEHSHtXOwesv2jn
V9yXYVhlpABZCM6V3JRBJGCJu5Sv4FxcGknh2vCdryEndacU+1g0p3MMLTfvgXI5
xO9EIcwCL+tCloi4z0WBMcxMGPoPIp51w64Eu8ZiqoTnXXwpjCKEszMgTxGV/3L4
JvFdgCEd4Zqb1mDqe3OXL6x9TFSZKhAgKGpPQvdYokECdlN2upHoVKJE+IU2+PqH
21fejHdhNrypSYBY6fA+UdQj7emzLFP7YhfSWudix7o1Zql8RIWZIp9vkKszrhNF
AIz9CQxWDVeskp39Cjze43lqN0L56ErLnD8dHLjin/Ciy9NO6BPzSjg79wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKEegqlM6gm2A4XgMle0c1s5tj3BMB8GA1UdIwQY
MBaAFLuK5jt1faGveQ8g9ZxjSBHu6xvMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTRybU8zVjlvYTk1RHlEMW5HTklFZTdyRzh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC8xMmM2NmQtYWM2My00M2ZjLTg4OTQt
YWIwODdmNDNiNTk1LzEvdTRybU8zVjlvYTk1RHlEMW5HTklFZTdyRzh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC8xMmM2NmQtYWM2My00M2ZjLTg4OTQtYWIwODdmNDNiNTk1
LzEvdTRybU8zVjlvYTk1RHlEMW5HTklFZTdyRzh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmC+XbKvL
4/QzL5tWQDiftjad+aJglSdtSScOTEkzlYBnch12SzuRWfNAWSVkXhVzto4UfZCR
+QW+XJavFPKwTgaShaVU+ktK8yTy7Mw2gJXVvjU7YTspjFc0KG/Rc5B5EnmSfh12
7P31m2LiELWongZX0V6zaQpgQyyF8IkxRVRX/zYfMsfa70nxgtoUeUnm5VX0lce4
g91uhZqv0hk5jc+kHV4ZSDcIIRCC9pOrGgLGeikR3IPc69sK45eCpKl/LxUYHpZ8
RMgyUkOY49kL+0JqgdXL/w49KpMhsyXTZ/9C6zyarG9HpWg9tq1g4vKY4qgxG8Ku
Iy29Nom2vxCRvg==
-----END CERTIFICATE-----
Generated at Wed May 7 07:44:50 2025 by rpki-client