Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
File: 5UGkwVK194bWI9hcQUZSmc3aM4k.mft (raw, json)
Hash identifier: vRI8DWOcNJ2gNJfCe5QQJR+mqiIOdzndp0ev0R5iM7M=
Subject key identifier: 94:0C:0B:9A:2E:A6:0D:81:52:EE:BB:CC:7B:89:B9:24:2C:DA:F8:85
Authority key identifier: E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89
Certificate issuer: /CN=e541a4c152b5f786d623d85c41465299cdda3389
Certificate serial: 0196BEC9DC56CBB382009A9BE79F99BB5FFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
Manifest number: 1537
Signing time: Sun 11 May 2025 10:00:22 +0000
Manifest this update: Sun 11 May 2025 10:00:22 +0000
Manifest next update: Mon 12 May 2025 10:00:22 +0000
Files and hashes: 1: 5UGkwVK194bWI9hcQUZSmc3aM4k.crl (hash: 35E0sGu82fG4ZgV09AW+HBaNclvXwz4/Tkf2aAcJ4Zk=)
2: kenow9ooVwL0t4IuHSVvvQIsN8M.roa (hash: tJkXtVd1TBPTWkBnhiKcyLiHlQeoQgvy5+UbWV83vUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:c9:dc:56:cb:b3:82:00:9a:9b:e7:9f:99:bb:5f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e541a4c152b5f786d623d85c41465299cdda3389
Validity
Not Before: May 11 10:00:22 2025 GMT
Not After : May 12 10:00:22 2025 GMT
Subject: CN=940c0b9a2ea60d8152eebbcc7b89b9242cdaf885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:12:4a:1e:b7:c7:bf:32:9f:94:d4:06:a3:58:
33:19:c0:9c:99:7a:d6:61:c5:ff:85:10:31:0d:c2:
93:94:0d:6b:8b:f8:cd:20:cc:54:55:13:97:bb:7d:
eb:54:f4:62:f1:b3:7a:e5:09:07:1a:3f:5a:e1:95:
88:7d:77:3d:da:8b:03:db:8b:55:a3:8b:0d:8e:51:
10:01:23:eb:48:61:d9:42:4a:db:26:49:f7:53:2e:
e9:ee:89:db:55:38:a1:79:77:dc:2a:d7:a0:e3:24:
0d:a3:b0:c0:13:69:10:7b:34:84:c1:05:e6:18:88:
02:65:4b:f8:57:54:f0:49:ef:01:5a:36:1a:67:22:
b6:4c:f4:4b:8b:96:fb:fa:c2:e9:06:be:1b:05:57:
20:e2:e5:61:68:f4:95:fc:99:c2:d2:84:16:6b:a0:
f6:3c:00:fa:d8:ab:9b:f6:a8:90:95:a5:26:c9:f4:
d7:c7:a1:d9:f2:4d:f6:7e:3b:23:f9:35:56:8d:88:
36:a4:a2:56:54:89:98:58:bf:f7:04:e6:01:9e:8f:
6b:4f:65:2c:1e:f5:59:0f:fd:14:6f:32:20:b2:f5:
11:92:0d:f7:1d:31:dd:80:49:df:96:fb:93:24:c4:
ff:88:86:88:dd:38:05:68:07:c4:33:65:43:dc:c3:
42:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:0C:0B:9A:2E:A6:0D:81:52:EE:BB:CC:7B:89:B9:24:2C:DA:F8:85
X509v3 Authority Key Identifier:
keyid:E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:e9:af:fd:66:d4:99:d2:73:31:61:94:a6:c5:59:37:2a:af:
44:35:29:6c:7f:21:af:78:36:8f:80:2d:9e:7a:e6:ef:bf:fb:
32:c0:13:5d:c6:02:57:e5:0b:dc:76:68:ea:92:ca:83:eb:7b:
fe:38:74:b2:31:49:b9:6b:24:7a:27:37:72:55:90:cd:d2:23:
51:00:88:cf:4d:7c:17:35:be:cf:1c:00:9c:69:82:df:68:57:
a9:d9:8d:10:d9:2f:27:f1:af:e9:f8:69:c6:4b:f7:6d:fb:d3:
76:02:34:8f:d0:81:06:45:a4:b7:6d:e4:04:52:eb:94:bb:ff:
f7:a1:a3:fa:da:55:98:5f:2e:cb:b5:6b:06:b0:d0:94:64:f4:
98:47:40:63:9d:eb:71:04:22:e8:6e:d1:b8:55:d1:8a:d7:e6:
9c:ce:85:af:e7:68:c9:39:60:6b:a3:c6:11:ee:ec:42:c3:76:
44:c5:82:ce:4c:d0:d6:49:7e:63:44:e4:70:08:df:e3:fd:60:
a7:22:4f:be:1a:fa:81:bf:66:8f:bc:0b:16:b0:67:f3:2e:8b:
c5:34:77:0a:29:09:8f:41:c6:11:09:5d:09:74:45:46:ae:5e:
c3:c6:6a:45:bc:4c:d0:1e:85:91:7c:fe:da:16:df:46:6c:3f:
86:f7:96:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa+ydxWy7OCAJqb55+Zu1/8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1NDFhNGMxNTJiNWY3ODZkNjIzZDg1YzQxNDY1Mjk5Y2Rk
YTMzODkwHhcNMjUwNTExMTAwMDIyWhcNMjUwNTEyMTAwMDIyWjAzMTEwLwYDVQQD
Eyg5NDBjMGI5YTJlYTYwZDgxNTJlZWJiY2M3Yjg5YjkyNDJjZGFmODg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBJKHrfHvzKflNQGo1gzGcCcmXrW
YcX/hRAxDcKTlA1ri/jNIMxUVROXu33rVPRi8bN65QkHGj9a4ZWIfXc92osD24tV
o4sNjlEQASPrSGHZQkrbJkn3Uy7p7onbVTiheXfcKteg4yQNo7DAE2kQezSEwQXm
GIgCZUv4V1TwSe8BWjYaZyK2TPRLi5b7+sLpBr4bBVcg4uVhaPSV/JnC0oQWa6D2
PAD62Kub9qiQlaUmyfTXx6HZ8k32fjsj+TVWjYg2pKJWVImYWL/3BOYBno9rT2Us
HvVZD/0UbzIgsvURkg33HTHdgEnflvuTJMT/iIaI3TgFaAfEM2VD3MNCzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJQMC5oupg2BUu67zHuJuSQs2viFMB8GA1UdIwQY
MBaAFOVBpMFStfeG1iPYXEFGUpnN2jOJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kNzEyNjktNGI1Ni00NTcyLWE3MTEt
ZDg0ZWNiMjUwNWM0LzEvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9kNzEyNjktNGI1Ni00NTcyLWE3MTEtZDg0ZWNiMjUwNWM0
LzEvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH+mv/WbU
mdJzMWGUpsVZNyqvRDUpbH8hr3g2j4Atnnrm77/7MsATXcYCV+UL3HZo6pLKg+t7
/jh0sjFJuWskeic3clWQzdIjUQCIz018FzW+zxwAnGmC32hXqdmNENkvJ/Gv6fhp
xkv3bfvTdgI0j9CBBkWkt23kBFLrlLv/96Gj+tpVmF8uy7VrBrDQlGT0mEdAY53r
cQQi6G7RuFXRitfmnM6Fr+doyTlga6PGEe7sQsN2RMWCzkzQ1kl+Y0TkcAjf4/1g
pyJPvhr6gb9mj7wLFrBn8y6LxTR3CikJj0HGEQldCXRFRq5ew8ZqRbxM0B6FkXz+
2hbfRmw/hveW4A==
-----END CERTIFICATE-----
Generated at Sun May 11 18:06:07 2025 by rpki-client