Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
File: D3jqRswh1F7WEmjUqfVnMsheIVA.mft (raw, json)
Hash identifier: qGwo1DZN7FxtJcszlO2vlSY4WL9Jg4GYIiTXDzqExMw=
Subject key identifier: A7:7B:97:80:44:5C:7C:75:21:0D:59:88:F7:8C:ED:B1:CB:55:A5:DC
Authority key identifier: 0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
Certificate issuer: /CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Certificate serial: 0196C382A24AD92B20CC5376B32161EE4F19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
Manifest number: 1536
Signing time: Mon 12 May 2025 08:00:40 +0000
Manifest this update: Mon 12 May 2025 08:00:40 +0000
Manifest next update: Tue 13 May 2025 08:00:40 +0000
Files and hashes: 1: 8SQTxy_p8cY9en9UR93vjFnnH74.roa (hash: LPCNfHY24fbVR2x4GxfhYD0c8Fxi97g9FBcWFfU2h/o=)
2: D3jqRswh1F7WEmjUqfVnMsheIVA.crl (hash: Z+sy6lfPQXxVcUgZCberaF1q7aMwGdonycnvJI2y6xA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 08:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:82:a2:4a:d9:2b:20:cc:53:76:b3:21:61:ee:4f:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Validity
Not Before: May 12 08:00:40 2025 GMT
Not After : May 13 08:00:40 2025 GMT
Subject: CN=a77b9780445c7c75210d5988f78cedb1cb55a5dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:01:1c:44:c4:bb:01:a4:b7:2a:53:ab:c8:48:
67:f4:6a:e1:c0:bb:1d:67:5a:38:c7:c3:82:68:eb:
68:bc:a2:96:7b:6d:48:7a:54:43:43:5f:48:3b:a6:
92:1d:5b:cb:ba:a9:fa:2f:52:da:74:13:3d:c2:98:
97:f4:d0:b8:bd:93:de:df:1e:b5:d5:10:1d:a5:85:
bd:1a:4f:8a:af:b0:21:eb:bd:b3:1b:f0:3c:0d:55:
0e:07:42:35:d6:b9:96:a5:98:79:62:3e:b4:bb:f8:
fc:53:3b:08:2d:ee:11:ea:2f:ef:eb:f9:ac:3c:9d:
64:7c:2f:84:77:de:e9:2d:46:6f:e4:e0:49:47:1e:
86:0f:cf:56:46:13:17:0e:4e:b1:2c:f8:4c:3a:c2:
3e:dd:17:00:6c:e2:eb:2b:9e:31:9c:ce:27:5d:81:
c2:34:8b:48:0c:72:ac:a8:89:4c:0f:cb:e7:d0:cd:
88:ab:9d:60:1a:91:3e:92:c6:d0:ea:2c:a9:68:ae:
6c:97:a0:02:e3:99:f4:e0:f3:59:61:85:fa:22:49:
ef:f8:99:ac:04:27:1a:f8:35:e1:46:c1:fe:00:8a:
21:01:47:36:d8:9d:23:25:aa:7e:d1:a2:2d:8d:a5:
88:55:a1:a4:ea:38:15:90:e9:2d:da:62:d6:99:73:
cc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:7B:97:80:44:5C:7C:75:21:0D:59:88:F7:8C:ED:B1:CB:55:A5:DC
X509v3 Authority Key Identifier:
keyid:0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:d5:bd:d3:79:86:aa:74:41:3a:12:3f:40:84:77:01:68:91:
10:f5:06:b9:41:4f:b6:41:c7:13:53:50:1c:62:2c:1c:a6:8d:
4f:7a:99:36:38:6e:34:3f:f1:13:21:43:38:4b:53:6d:fb:07:
c8:27:51:2d:36:bc:7b:7d:a7:24:f7:37:01:d4:60:8f:27:69:
9a:92:40:49:9c:e5:22:d6:af:d8:cf:65:a6:a7:ed:b9:1c:c4:
f5:ca:b1:2e:57:01:27:30:fc:b4:0b:d5:d6:d3:c8:e6:f9:ab:
c2:94:4f:5c:b1:42:80:f6:27:f3:13:cf:a0:af:b3:39:be:f9:
c1:e1:14:74:e5:f2:5f:fa:57:91:95:bf:bf:0d:00:f3:fe:02:
6e:4e:c4:94:e7:0e:1b:1c:49:ce:c6:f6:e6:5c:31:cf:f6:ba:
d5:9a:29:e9:d3:36:60:59:af:29:5f:01:44:4f:83:75:90:62:
0c:20:f9:23:c5:df:a2:c9:b4:15:2f:1b:03:a3:d4:e1:63:d2:
a8:f0:a0:d5:04:f3:f4:1a:d4:a8:14:1a:5e:10:52:ed:d9:4a:
01:b1:d5:aa:4c:1e:93:02:d4:d2:fa:e4:4f:97:10:31:72:d2:
5c:52:92:69:a1:22:e5:a8:b8:a8:a9:a6:96:63:6c:77:cb:b9:
b6:a6:c6:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbDgqJK2SsgzFN2syFh7k8ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmNzhlYTQ2Y2MyMWQ0NWVkNjEyNjhkNGE5ZjU2NzMyYzg1
ZTIxNTAwHhcNMjUwNTEyMDgwMDQwWhcNMjUwNTEzMDgwMDQwWjAzMTEwLwYDVQQD
EyhhNzdiOTc4MDQ0NWM3Yzc1MjEwZDU5ODhmNzhjZWRiMWNiNTVhNWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkQEcRMS7AaS3KlOryEhn9GrhwLsd
Z1o4x8OCaOtovKKWe21IelRDQ19IO6aSHVvLuqn6L1LadBM9wpiX9NC4vZPe3x61
1RAdpYW9Gk+Kr7Ah672zG/A8DVUOB0I11rmWpZh5Yj60u/j8UzsILe4R6i/v6/ms
PJ1kfC+Ed97pLUZv5OBJRx6GD89WRhMXDk6xLPhMOsI+3RcAbOLrK54xnM4nXYHC
NItIDHKsqIlMD8vn0M2Iq51gGpE+ksbQ6iypaK5sl6AC45n04PNZYYX6Iknv+Jms
BCca+DXhRsH+AIohAUc22J0jJap+0aItjaWIVaGk6jgVkOkt2mLWmXPMRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKd7l4BEXHx1IQ1ZiPeM7bHLVaXcMB8GA1UdIwQY
MBaAFA946kbMIdRe1hJo1Kn1ZzLIXiFQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDNqcVJzd2gxRjdXRW1qVXFmVm5Nc2hlSVZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8wMjE5YzEtYTU1MS00YjkxLTljYTMt
MDMyYjNiNjE0ZGQ4LzEvRDNqcVJzd2gxRjdXRW1qVXFmVm5Nc2hlSVZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi8wMjE5YzEtYTU1MS00YjkxLTljYTMtMDMyYjNiNjE0ZGQ4
LzEvRDNqcVJzd2gxRjdXRW1qVXFmVm5Nc2hlSVZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdNW903mG
qnRBOhI/QIR3AWiREPUGuUFPtkHHE1NQHGIsHKaNT3qZNjhuND/xEyFDOEtTbfsH
yCdRLTa8e32nJPc3AdRgjydpmpJASZzlItav2M9lpqftuRzE9cqxLlcBJzD8tAvV
1tPI5vmrwpRPXLFCgPYn8xPPoK+zOb75weEUdOXyX/pXkZW/vw0A8/4Cbk7ElOcO
GxxJzsb25lwxz/a61Zop6dM2YFmvKV8BRE+DdZBiDCD5I8Xfosm0FS8bA6PU4WPS
qPCg1QTz9BrUqBQaXhBS7dlKAbHVqkwekwLU0vrkT5cQMXLSXFKSaaEi5ai4qKmm
lmNsd8u5tqbGXA==
-----END CERTIFICATE-----
Generated at Mon May 12 12:46:58 2025 by rpki-client