Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
File: U70JkochUqhtYNljuH0BgXwA_FM.mft (raw, json)
Hash identifier: VNvOJJ675mi6HmR9Rb7oj/Fxj7D18gfXtQWH9+Fn/2Y=
Subject key identifier: 6A:68:F5:E3:77:C0:C5:B5:A8:EF:BC:F9:80:9B:91:FC:31:42:B4:83
Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53
Certificate serial: 0196B36AB4DC7EB7C518B5A1B83D02E36DCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
Manifest number: 152F
Signing time: Fri 09 May 2025 05:00:36 +0000
Manifest this update: Fri 09 May 2025 05:00:36 +0000
Manifest next update: Sat 10 May 2025 05:00:36 +0000
Files and hashes: 1: 8hWTGCLXxSwODB2tKv40DFwDRSA.roa (hash: LnqtzTwP6Z/uj/Pahytsa4k9TTsa7E1q6xNsCMwJ/r4=)
2: KdlAk3dh27bShWAn4-0kWb61hVQ.roa (hash: ATJYV8SWOcnAG9fqVBljwxaiv5XnfJ4U40CX0lPgLrE=)
3: U70JkochUqhtYNljuH0BgXwA_FM.crl (hash: u1KJcVeLwmpn6Ycac+QSWTwpqHNJ2ne//AGpP1PbJ6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b3:6a:b4:dc:7e:b7:c5:18:b5:a1:b8:3d:02:e3:6d:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53
Validity
Not Before: May 9 05:00:36 2025 GMT
Not After : May 10 05:00:36 2025 GMT
Subject: CN=6a68f5e377c0c5b5a8efbcf9809b91fc3142b483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f0:f3:4f:87:87:d8:54:a1:fd:50:79:6d:39:
56:74:e3:b4:1e:b8:83:51:dd:94:b3:09:86:1a:ea:
2d:ca:07:d6:8e:0e:88:1a:42:ca:76:39:17:38:b8:
8d:2e:ca:0a:f3:bb:48:5e:2e:16:c5:32:55:46:21:
ac:3d:71:40:3d:63:1b:e5:0f:de:70:58:8e:db:22:
a5:1f:14:7f:12:21:7a:34:1d:9d:72:0d:69:d7:b0:
71:dd:d7:0b:24:b4:37:e4:ae:ae:e1:dc:a7:40:12:
d9:04:b4:23:56:99:c5:8c:dc:45:98:b2:8d:61:3d:
d5:ab:b4:46:78:df:bd:79:7c:ad:77:4c:66:d2:44:
3f:57:3b:6c:7c:c2:db:8d:4d:0b:d8:32:43:2c:9b:
c3:dd:62:81:52:f4:be:5e:0a:10:00:d3:66:f6:14:
65:35:c1:5a:0b:29:45:01:dc:bc:28:fa:3c:94:fe:
6b:9a:32:49:2d:f9:3a:8a:d6:4c:a4:32:d8:c4:66:
1e:b1:58:ba:7c:90:ec:58:58:68:c9:01:5f:2b:69:
a6:26:85:7d:55:26:c5:4e:57:b5:e0:67:a9:2d:98:
7a:c9:fd:a5:71:dc:05:7a:b0:ab:64:49:8a:17:d2:
79:df:40:fc:b8:00:c4:8f:50:97:5b:9e:2d:9c:30:
f1:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:68:F5:E3:77:C0:C5:B5:A8:EF:BC:F9:80:9B:91:FC:31:42:B4:83
X509v3 Authority Key Identifier:
keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:c9:4c:ce:35:75:f0:57:8a:c5:71:52:bd:84:a1:03:3f:bf:
1c:82:7e:d2:56:76:21:8f:af:39:5b:09:89:15:e9:79:f9:35:
b6:f1:d8:0a:4e:15:0f:53:8d:2b:3d:bd:59:ad:49:d3:de:29:
a3:eb:b1:36:6f:a8:9e:30:e5:57:84:9a:75:50:f8:08:89:3d:
66:cc:57:74:28:3d:5e:c1:cb:a1:d7:24:a0:ec:b1:a4:27:59:
1c:2b:42:34:ef:ed:2a:ce:1e:9e:2e:30:7f:df:3f:33:d3:c6:
c9:f0:76:c8:6d:8e:8e:7a:30:cd:52:09:ed:f8:29:42:11:84:
4f:fd:03:62:f2:78:e1:26:61:5d:4f:0b:56:c8:ba:1e:2f:1d:
ea:9b:db:cd:f8:21:c0:40:44:8b:4f:c8:ad:50:9c:dc:eb:f8:
0e:02:42:7d:11:93:97:a3:c6:b9:f3:09:39:a1:27:ab:25:7c:
b9:6b:d6:6e:2e:16:8f:00:46:f3:71:a5:fc:58:f8:59:e7:63:
b9:b3:7b:7a:6a:b6:d5:ad:a4:5f:76:a6:03:5e:38:c8:19:63:
d9:3b:85:82:64:a3:c9:8f:18:05:88:f6:52:5f:8a:82:23:78:
3c:27:45:33:f2:92:70:0c:9d:d8:6e:fb:50:82:5e:b3:a9:2f:
61:ec:a5:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZazarTcfrfFGLWhuD0C423PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYmQwOTkyODcyMTUyYTg2ZDYwZDk2M2I4N2QwMTgxN2Mw
MGZjNTMwHhcNMjUwNTA5MDUwMDM2WhcNMjUwNTEwMDUwMDM2WjAzMTEwLwYDVQQD
Eyg2YTY4ZjVlMzc3YzBjNWI1YThlZmJjZjk4MDliOTFmYzMxNDJiNDgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfDzT4eH2FSh/VB5bTlWdOO0HriD
Ud2UswmGGuotygfWjg6IGkLKdjkXOLiNLsoK87tIXi4WxTJVRiGsPXFAPWMb5Q/e
cFiO2yKlHxR/EiF6NB2dcg1p17Bx3dcLJLQ35K6u4dynQBLZBLQjVpnFjNxFmLKN
YT3Vq7RGeN+9eXytd0xm0kQ/VztsfMLbjU0L2DJDLJvD3WKBUvS+XgoQANNm9hRl
NcFaCylFAdy8KPo8lP5rmjJJLfk6itZMpDLYxGYesVi6fJDsWFhoyQFfK2mmJoV9
VSbFTle14GepLZh6yf2lcdwFerCrZEmKF9J530D8uADEj1CXW54tnDDxdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGpo9eN3wMW1qO+8+YCbkfwxQrSDMB8GA1UdIwQY
MBaAFFO9CZKHIVKobWDZY7h9AYF8APxTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTcwSmtvY2hVcWh0WU5sanVIMEJnWHdBX0ZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS82ZTI2NGUtZDZjZS00MmQ1LWIwNWQt
ZTE1ZjRmODQwOWU2LzEvVTcwSmtvY2hVcWh0WU5sanVIMEJnWHdBX0ZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS82ZTI2NGUtZDZjZS00MmQ1LWIwNWQtZTE1ZjRmODQwOWU2
LzEvVTcwSmtvY2hVcWh0WU5sanVIMEJnWHdBX0ZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO8lMzjV1
8FeKxXFSvYShAz+/HIJ+0lZ2IY+vOVsJiRXpefk1tvHYCk4VD1ONKz29Wa1J094p
o+uxNm+onjDlV4SadVD4CIk9ZsxXdCg9XsHLodckoOyxpCdZHCtCNO/tKs4eni4w
f98/M9PGyfB2yG2OjnowzVIJ7fgpQhGET/0DYvJ44SZhXU8LVsi6Hi8d6pvbzfgh
wEBEi0/IrVCc3Ov4DgJCfRGTl6PGufMJOaEnqyV8uWvWbi4WjwBG83Gl/Fj4Wedj
ubN7emq21a2kX3amA144yBlj2TuFgmSjyY8YBYj2Ul+KgiN4PCdFM/KScAyd2G77
UIJes6kvYeyl9g==
-----END CERTIFICATE-----
Generated at Fri May 9 11:59:05 2025 by rpki-client