Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
File: xJkOwgER9C-2LzmoHHOSqSGVW_I.mft (raw, json)
Hash identifier: XUFKyqSMIvCjmyflX4I85x9nAKAEVWMBYYVF+HtlxRA=
Subject key identifier: A5:40:24:AE:A3:20:6C:68:AD:29:E2:F8:EC:F5:6C:79:8A:F7:49:A8
Authority key identifier: C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2
Certificate issuer: /CN=c4990ec20111f42fb62f39a81c7392a921955bf2
Certificate serial: 01969D1A195E6C94829D089C9767568730AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
Manifest number: 0184
Signing time: Sun 04 May 2025 21:00:55 +0000
Manifest this update: Sun 04 May 2025 21:00:55 +0000
Manifest next update: Mon 05 May 2025 21:00:55 +0000
Files and hashes: 1: S6SgkEKXXupg9NGyg85ew2MKuNo.roa (hash: Ccy6wkPiSmvGfzLUcrIC/arlCjWDtB/tLTVQ150opBk=)
2: xJkOwgER9C-2LzmoHHOSqSGVW_I.crl (hash: 5J4HNhQJfiRSZb9Vq+MPWCP9LmoavSlRDxtStFrQLq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 21:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:1a:19:5e:6c:94:82:9d:08:9c:97:67:56:87:30:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4990ec20111f42fb62f39a81c7392a921955bf2
Validity
Not Before: May 4 21:00:55 2025 GMT
Not After : May 5 21:00:55 2025 GMT
Subject: CN=a54024aea3206c68ad29e2f8ecf56c798af749a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:55:62:7d:79:6b:3b:d9:0e:c4:47:ca:c3:f3:
2d:ef:76:cd:10:55:9b:52:8d:ac:6e:3a:99:bb:33:
b2:eb:be:b2:a7:0b:70:28:9a:ec:36:62:86:39:ff:
f9:07:6f:c2:be:93:88:63:3d:7c:29:e3:55:7a:04:
54:4a:7c:a2:b3:7f:03:60:7d:1d:da:2a:f6:02:da:
a5:18:5f:09:b2:16:44:20:91:16:57:25:ad:24:e9:
61:b1:6b:f6:e1:e4:c4:22:42:e2:79:bd:98:f8:30:
e5:44:a8:8e:98:3b:41:be:a6:d0:68:af:55:d5:2e:
23:65:87:e3:a9:17:13:75:3f:76:52:7b:63:78:93:
33:cb:ea:a1:36:52:60:33:5c:ee:21:f7:8f:ea:26:
ef:32:2d:8a:1d:6c:32:49:6c:6a:98:76:69:9a:19:
18:07:5e:49:84:f8:cc:79:c2:a4:5d:d2:0e:35:eb:
67:b3:f4:28:37:9c:9f:2c:a4:4e:29:6d:96:d7:4a:
e1:c3:47:99:48:af:a2:51:8f:4c:09:52:63:0e:27:
75:70:90:c1:c1:3b:1f:e6:4b:90:1e:7a:fe:20:16:
a7:0a:ff:d8:31:a7:90:4a:df:2d:b7:4a:60:ca:a3:
e3:d5:15:0b:9a:78:51:22:e6:0d:82:aa:51:33:b8:
fc:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:40:24:AE:A3:20:6C:68:AD:29:E2:F8:EC:F5:6C:79:8A:F7:49:A8
X509v3 Authority Key Identifier:
keyid:C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:e3:4e:07:6b:f1:2a:28:84:de:5f:24:d1:ce:5b:91:74:ee:
0e:dc:7f:d8:07:e7:fb:e2:d4:17:d6:73:ba:b3:9f:f9:1f:6a:
a6:c6:37:e4:58:95:fd:55:1d:4f:d6:26:bc:f9:e3:c5:8f:90:
41:17:23:e7:1c:3d:c6:e3:7a:21:56:66:d6:70:04:16:49:ff:
ae:80:a2:04:5e:b4:08:16:a3:73:77:dd:b7:2b:55:1e:cb:46:
9e:5a:ca:ad:98:b0:eb:48:e8:b0:6d:9c:3d:d9:f9:29:67:c0:
11:30:1e:22:4a:28:c0:9d:21:ce:57:46:90:3d:96:64:f2:e7:
13:d6:e3:f4:6a:c0:73:26:ec:1b:56:04:fa:a0:6c:39:61:bd:
b8:d6:52:1d:4f:50:1f:01:e0:7b:fc:34:90:34:a8:22:d8:43:
a3:f4:87:98:e6:9a:da:99:43:e5:55:09:48:40:7d:01:15:3b:
f5:9a:13:0c:0c:7a:7e:9d:95:a2:53:fc:5b:e4:ee:bd:fe:7d:
7b:e3:79:e6:d6:11:27:40:7d:9b:7f:e9:48:0c:de:3d:c9:d5:
de:dc:11:97:e2:02:1d:cc:0a:82:1f:dd:a4:6e:4d:aa:06:26:
d1:f2:fb:d4:f8:41:78:47:d6:f6:2e:a3:99:3b:ec:a5:9a:b0:
5a:82:b5:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZadGhlebJSCnQicl2dWhzCvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0OTkwZWMyMDExMWY0MmZiNjJmMzlhODFjNzM5MmE5MjE5
NTViZjIwHhcNMjUwNTA0MjEwMDU1WhcNMjUwNTA1MjEwMDU1WjAzMTEwLwYDVQQD
EyhhNTQwMjRhZWEzMjA2YzY4YWQyOWUyZjhlY2Y1NmM3OThhZjc0OWE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2FVifXlrO9kOxEfKw/Mt73bNEFWb
Uo2sbjqZuzOy676ypwtwKJrsNmKGOf/5B2/CvpOIYz18KeNVegRUSnyis38DYH0d
2ir2AtqlGF8JshZEIJEWVyWtJOlhsWv24eTEIkLieb2Y+DDlRKiOmDtBvqbQaK9V
1S4jZYfjqRcTdT92UntjeJMzy+qhNlJgM1zuIfeP6ibvMi2KHWwySWxqmHZpmhkY
B15JhPjMecKkXdIONetns/QoN5yfLKROKW2W10rhw0eZSK+iUY9MCVJjDid1cJDB
wTsf5kuQHnr+IBanCv/YMaeQSt8tt0pgyqPj1RULmnhRIuYNgqpRM7j8qwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKVAJK6jIGxorSni+Oz1bHmK90moMB8GA1UdIwQY
MBaAFMSZDsIBEfQvti85qBxzkqkhlVvyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS85YzdjZTQtMmNkNC00ODU0LTg4NDAt
YjBmZTkyMjFlZmI3LzEveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS85YzdjZTQtMmNkNC00ODU0LTg4NDAtYjBmZTkyMjFlZmI3
LzEveEprT3dnRVI5Qy0yTHptb0hIT1NxU0dWV19JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZuNOB2vx
KiiE3l8k0c5bkXTuDtx/2Afn++LUF9ZzurOf+R9qpsY35FiV/VUdT9YmvPnjxY+Q
QRcj5xw9xuN6IVZm1nAEFkn/roCiBF60CBajc3fdtytVHstGnlrKrZiw60josG2c
Pdn5KWfAETAeIkoowJ0hzldGkD2WZPLnE9bj9GrAcybsG1YE+qBsOWG9uNZSHU9Q
HwHge/w0kDSoIthDo/SHmOaa2plD5VUJSEB9ARU79ZoTDAx6fp2VolP8W+Tuvf59
e+N55tYRJ0B9m3/pSAzePcnV3twRl+ICHcwKgh/dpG5NqgYm0fL71PhBeEfW9i6j
mTvspZqwWoK1VQ==
-----END CERTIFICATE-----
Generated at Mon May 5 06:44:37 2025 by rpki-client