Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: bDToNnJ7Kh1qyeXYp0fSlBZjjugN/lE8z1VG5ViUmMw=
Subject key identifier: 7F:C5:7A:F4:E7:BB:F5:DA:48:A8:03:7C:8B:F0:48:4A:42:4C:D7:BA
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 0196BCDB956626910322172D4590FFC03C9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: 3F
Signing time: Sun 11 May 2025 01:00:29 +0000
Manifest this update: Sun 11 May 2025 01:00:29 +0000
Manifest next update: Mon 12 May 2025 01:00:29 +0000
Files and hashes: 1: ZZ126kZc2Gs9amlt5Rc0VmUZOPw.roa (hash: laA9ImB0VtnpNlOC8RmvM5URSIvzaqpg8ewZvS5hOLw=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: aqDQiVejnfubwA1vkGsd1gs9ZE6xsWWIz113SBj3mWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:db:95:66:26:91:03:22:17:2d:45:90:ff:c0:3c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: May 11 01:00:29 2025 GMT
Not After : May 12 01:00:29 2025 GMT
Subject: CN=7fc57af4e7bbf5da48a8037c8bf0484a424cd7ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:65:79:44:7f:6a:44:e2:dd:45:59:28:68:2f:
e9:ac:7e:b9:14:ae:29:99:6e:8a:41:19:77:c3:8e:
b8:f3:1b:c1:70:c4:71:3a:4f:2e:76:c9:05:f9:21:
73:22:f5:89:d5:2d:d3:8b:eb:ad:92:99:72:a3:70:
e7:54:e8:67:c2:2a:ec:a4:86:9d:e3:a1:f2:5f:58:
64:7e:13:34:7f:cc:24:7a:e6:0d:f9:01:57:9c:57:
53:79:57:94:29:3b:86:4d:e7:7c:57:c7:17:f5:4a:
2b:e8:27:fb:98:c6:58:1a:f6:75:5d:bb:e9:b7:59:
83:b6:31:82:1e:d2:2b:04:c7:6b:ce:e7:65:16:2b:
30:4f:70:f1:0b:34:6e:5e:f7:a6:19:fe:1b:0f:d4:
ab:0e:a5:d3:df:86:72:5e:54:76:cb:23:28:28:21:
47:83:4e:b5:24:97:72:97:c0:5a:65:a6:d4:65:26:
f8:93:30:87:37:16:c6:06:3f:20:a5:00:cb:46:dc:
e1:7b:51:44:5e:4d:99:5e:8d:23:75:de:f2:5d:84:
af:c6:18:af:11:84:0f:52:f6:33:62:bf:24:b2:0b:
a6:4c:5a:53:43:c9:04:f4:6b:ea:ad:39:64:f8:3f:
00:9f:bd:0f:f3:96:fd:17:cc:75:aa:9e:6c:cc:15:
fe:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:C5:7A:F4:E7:BB:F5:DA:48:A8:03:7C:8B:F0:48:4A:42:4C:D7:BA
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:a9:54:91:82:68:e6:47:2c:d3:dd:34:45:64:01:11:0b:2c:
19:d0:4c:0a:47:68:33:61:e9:73:85:ee:0d:d7:8f:bc:7e:76:
b8:b7:16:b9:d1:7b:73:a9:aa:83:08:15:a0:8a:74:34:22:47:
9f:97:50:ab:36:51:1a:0f:6d:8c:82:e0:5e:4e:ab:e3:8d:ca:
00:cc:eb:8e:cb:a1:f3:38:2b:14:22:80:49:bb:84:14:d6:fa:
79:92:03:46:81:f7:be:15:21:d0:49:66:53:b4:a5:c0:6e:45:
d9:48:b9:84:81:98:f2:c9:ac:08:c3:5e:27:02:3b:9d:4e:10:
6f:23:e1:ac:8b:64:da:9c:ea:14:8f:85:90:1e:7d:e5:b4:d0:
ce:74:b9:11:c4:58:f7:69:e1:4a:8b:65:43:34:72:8e:7d:cc:
c1:5b:2b:e5:2b:93:e5:80:72:31:91:6d:1d:80:a4:4f:46:6c:
87:b4:df:96:10:d5:c6:c1:d9:e0:da:66:30:b4:48:7c:8f:81:
59:38:7e:30:cb:19:c9:d0:34:43:64:d6:af:28:63:9e:5e:fe:
8e:0b:f8:c4:8f:ab:fe:b9:93:63:34:10:ee:50:3b:41:3c:73:
24:61:2d:3c:68:f6:3c:6d:7e:c1:0d:3b:54:33:b5:a6:6f:24:
36:9a:f9:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa825VmJpEDIhctRZD/wDyaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2OGZlZWI2YTkwYTg2YWNmMTE4NzFlNGU1NzhhMmVhN2Vj
MjgxZDkwHhcNMjUwNTExMDEwMDI5WhcNMjUwNTEyMDEwMDI5WjAzMTEwLwYDVQQD
Eyg3ZmM1N2FmNGU3YmJmNWRhNDhhODAzN2M4YmYwNDg0YTQyNGNkN2JhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2V5RH9qROLdRVkoaC/prH65FK4p
mW6KQRl3w4648xvBcMRxOk8udskF+SFzIvWJ1S3Ti+utkplyo3DnVOhnwirspIad
46HyX1hkfhM0f8wkeuYN+QFXnFdTeVeUKTuGTed8V8cX9Uor6Cf7mMZYGvZ1Xbvp
t1mDtjGCHtIrBMdrzudlFiswT3DxCzRuXvemGf4bD9SrDqXT34ZyXlR2yyMoKCFH
g061JJdyl8BaZabUZSb4kzCHNxbGBj8gpQDLRtzhe1FEXk2ZXo0jdd7yXYSvxhiv
EYQPUvYzYr8ksgumTFpTQ8kE9GvqrTlk+D8An70P85b9F8x1qp5szBX+VQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH/FevTnu/XaSKgDfIvwSEpCTNe6MB8GA1UdIwQY
MBaAFHaP7rapCoas8Rhx5OV4oup+woHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG9fdXRxa0tocXp4R0hIazVYaWk2bjdDZ2RrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi82NjY2M2EtZWFmMS00YTg5LTgwNGMt
MGMxZjRkMzM3ODNlLzEvZG9fdXRxa0tocXp4R0hIazVYaWk2bjdDZ2RrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi82NjY2M2EtZWFmMS00YTg5LTgwNGMtMGMxZjRkMzM3ODNl
LzEvZG9fdXRxa0tocXp4R0hIazVYaWk2bjdDZ2RrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWqlUkYJo
5kcs0900RWQBEQssGdBMCkdoM2Hpc4XuDdePvH52uLcWudF7c6mqgwgVoIp0NCJH
n5dQqzZRGg9tjILgXk6r443KAMzrjsuh8zgrFCKASbuEFNb6eZIDRoH3vhUh0Elm
U7SlwG5F2Ui5hIGY8smsCMNeJwI7nU4QbyPhrItk2pzqFI+FkB595bTQznS5EcRY
92nhSotlQzRyjn3MwVsr5SuT5YByMZFtHYCkT0Zsh7TflhDVxsHZ4NpmMLRIfI+B
WTh+MMsZydA0Q2TWryhjnl7+jgv4xI+r/rmTYzQQ7lA7QTxzJGEtPGj2PG1+wQ07
VDO1pm8kNpr5AQ==
-----END CERTIFICATE-----
Generated at Sun May 11 09:01:06 2025 by rpki-client