Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
File: lQ8oTPXDnybd0jUufyrfeo3GD44.mft (raw, json)
Hash identifier: VHrDdKzNxDpMMRCe9uPoApHASwNw0kiilWtrldV6IXg=
Subject key identifier: 46:1F:DC:4D:C5:67:72:56:C6:FA:69:A7:31:AA:05:83:6A:57:F5:5C
Authority key identifier: 95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
Certificate issuer: /CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Certificate serial: 0196C8722536C0C911A40286522C3B39EFF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
Manifest number: 0B35
Signing time: Tue 13 May 2025 07:00:45 +0000
Manifest this update: Tue 13 May 2025 07:00:45 +0000
Manifest next update: Wed 14 May 2025 07:00:45 +0000
Files and hashes: 1: CIXcSM8wlZUJc9_olM2z-Sxe_fI.roa (hash: mDiY7MPNQSCh1DaHA5s1SG/E+/9GUkWw11IjIEdP7WU=)
2: lQ8oTPXDnybd0jUufyrfeo3GD44.crl (hash: VsY+FHYhbOqVWcrPeYzlpbgk93OPoYyu5g3WRjZ0vqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 07:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:72:25:36:c0:c9:11:a4:02:86:52:2c:3b:39:ef:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Validity
Not Before: May 13 07:00:45 2025 GMT
Not After : May 14 07:00:45 2025 GMT
Subject: CN=461fdc4dc5677256c6fa69a731aa05836a57f55c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:33:ef:61:28:ef:93:be:24:e3:60:fb:5f:99:
b6:0a:66:3a:29:98:3f:7d:9b:59:2a:65:fd:66:2c:
ed:d6:bf:85:81:47:cb:9c:7e:88:07:6e:ba:5d:34:
ac:9c:1a:38:82:a9:9e:44:9f:2e:8c:fc:e1:fa:6b:
c0:98:c5:1a:99:5f:e1:af:a7:16:49:85:9e:f6:16:
a8:83:8e:0f:76:62:4f:8d:a9:97:09:3a:bb:45:b6:
7c:ae:1e:4a:32:91:16:a9:57:2a:31:bf:eb:8b:dd:
d2:de:24:a3:68:33:80:87:49:ce:3c:be:ee:8c:0f:
f9:53:3c:8e:9b:40:90:c1:c4:8f:c3:2b:b0:8b:34:
3a:00:df:8a:64:95:c0:fe:2c:dd:33:54:e0:0f:3b:
c3:af:17:e8:ef:f6:35:9f:a5:f4:ba:4b:7e:59:41:
da:59:0d:48:b8:d2:86:7a:4f:87:18:19:25:33:b4:
4a:9f:e4:09:89:b3:e0:ef:da:cf:76:55:29:ad:15:
95:a4:66:2d:f0:ef:3f:52:cd:fa:72:06:b3:2d:d5:
17:ad:12:f2:54:bb:8a:a1:53:94:a3:4f:8c:eb:f2:
3d:ff:11:26:d6:69:d9:dc:1c:a8:77:ff:55:9f:6d:
74:45:04:61:01:a6:cf:0a:3a:2e:0e:64:a0:a4:16:
4a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:1F:DC:4D:C5:67:72:56:C6:FA:69:A7:31:AA:05:83:6A:57:F5:5C
X509v3 Authority Key Identifier:
keyid:95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:bf:56:75:50:1f:d5:42:3e:15:1f:44:50:9d:37:5d:1d:d4:
0d:f3:3d:4f:5c:af:e9:43:44:38:10:f4:ec:11:8b:56:ac:3b:
8d:13:ae:f6:8e:22:7b:a7:12:3c:97:e2:ff:b3:aa:78:1a:3c:
a0:66:13:85:54:57:fb:3d:e2:e6:ad:bd:33:0b:4a:01:62:5c:
ef:e4:27:14:c8:04:8a:a6:94:c8:f2:2b:4f:f7:3b:2d:fa:f3:
08:dc:2e:92:69:1e:04:96:59:20:a6:c6:4b:15:94:e7:50:50:
4c:9c:98:ff:4b:ea:2f:64:90:25:80:3e:04:39:dd:3b:68:e6:
39:3f:0d:bb:8f:7b:b5:70:db:d2:08:ea:63:4a:8e:e0:ac:9c:
dd:f2:12:fe:d4:33:f9:03:ab:8b:af:29:7f:e5:51:6d:42:c1:
f6:be:c0:3f:bb:e1:1a:1b:58:4d:34:fd:c1:0e:92:6d:7e:b9:
cc:49:8e:b7:43:fd:fb:21:6b:9a:bf:1b:14:79:80:7d:4b:d3:
c4:2b:e8:4f:b6:61:eb:8a:85:76:85:4d:aa:e8:76:0d:80:fc:
92:52:68:5c:1e:fe:19:5a:43:27:84:1a:3a:d2:4d:cf:3e:39:
fa:dc:11:f7:d2:35:89:49:af:33:c0:fc:16:3c:6a:ae:98:60:
ff:33:89:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbIciU2wMkRpAKGUiw7Oe/3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1MGYyODRjZjVjMzlmMjZkZGQyMzUyZTdmMmFkZjdhOGRj
NjBmOGUwHhcNMjUwNTEzMDcwMDQ1WhcNMjUwNTE0MDcwMDQ1WjAzMTEwLwYDVQQD
Eyg0NjFmZGM0ZGM1Njc3MjU2YzZmYTY5YTczMWFhMDU4MzZhNTdmNTVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmzPvYSjvk74k42D7X5m2CmY6KZg/
fZtZKmX9Zizt1r+FgUfLnH6IB266XTSsnBo4gqmeRJ8ujPzh+mvAmMUamV/hr6cW
SYWe9haog44PdmJPjamXCTq7RbZ8rh5KMpEWqVcqMb/ri93S3iSjaDOAh0nOPL7u
jA/5UzyOm0CQwcSPwyuwizQ6AN+KZJXA/izdM1TgDzvDrxfo7/Y1n6X0ukt+WUHa
WQ1IuNKGek+HGBklM7RKn+QJibPg79rPdlUprRWVpGYt8O8/Us36cgazLdUXrRLy
VLuKoVOUo0+M6/I9/xEm1mnZ3Byod/9Vn210RQRhAabPCjouDmSgpBZKaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEYf3E3FZ3JWxvpppzGqBYNqV/VcMB8GA1UdIwQY
MBaAFJUPKEz1w58m3dI1Ln8q33qNxg+OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFE4b1RQWERueWJkMGpVdWZ5cmZlbzNHRDQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8xOTc0ZWUtNDA4Zi00MTIwLThmMTkt
ZmEyZjBkNTRiMWQxLzEvbFE4b1RQWERueWJkMGpVdWZ5cmZlbzNHRDQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8xOTc0ZWUtNDA4Zi00MTIwLThmMTktZmEyZjBkNTRiMWQx
LzEvbFE4b1RQWERueWJkMGpVdWZ5cmZlbzNHRDQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL79WdVAf
1UI+FR9EUJ03XR3UDfM9T1yv6UNEOBD07BGLVqw7jROu9o4ie6cSPJfi/7OqeBo8
oGYThVRX+z3i5q29MwtKAWJc7+QnFMgEiqaUyPIrT/c7LfrzCNwukmkeBJZZIKbG
SxWU51BQTJyY/0vqL2SQJYA+BDndO2jmOT8Nu497tXDb0gjqY0qO4Kyc3fIS/tQz
+QOri68pf+VRbULB9r7AP7vhGhtYTTT9wQ6SbX65zEmOt0P9+yFrmr8bFHmAfUvT
xCvoT7Zh64qFdoVNquh2DYD8klJoXB7+GVpDJ4QaOtJNzz45+twR99I1iUmvM8D8
Fjxqrphg/zOJmA==
-----END CERTIFICATE-----
Generated at Tue May 13 17:03:42 2025 by rpki-client