Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
File: XTJb79i36F40cQQgbYwKuKbg-04.mft (raw, json)
Hash identifier: t1XqLP9dDkyQQlo2T8xYWu2PCA6V34PkSy3/VbXCvj0=
Subject key identifier: 22:ED:1D:FC:3F:8D:56:6C:05:67:E2:D2:F0:1F:3B:DB:46:8B:32:2F
Authority key identifier: 5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E
Certificate issuer: /CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e
Certificate serial: 0196AEB221EAA7705E5DB0BBFF46C5A39D75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
Manifest number: 1306
Signing time: Thu 08 May 2025 07:00:31 +0000
Manifest this update: Thu 08 May 2025 07:00:31 +0000
Manifest next update: Fri 09 May 2025 07:00:31 +0000
Files and hashes: 1: 1-odAb-HXEiGLPx5y_PADnZMBf0g.roa (hash: 4z0B6lGqXvXr1EDmabK3iy+SlaX1WPh7Y1Hx0zBd0iM=)
2: XTJb79i36F40cQQgbYwKuKbg-04.crl (hash: vzFy2ZRVEPCxXYmj4bwEKzRW32edH93iXrdZxIMYAFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:b2:21:ea:a7:70:5e:5d:b0:bb:ff:46:c5:a3:9d:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e
Validity
Not Before: May 8 07:00:31 2025 GMT
Not After : May 9 07:00:31 2025 GMT
Subject: CN=22ed1dfc3f8d566c0567e2d2f01f3bdb468b322f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3a:8d:3f:84:87:ed:66:5a:6e:7f:ed:12:4c:
37:bb:33:c2:11:7a:c4:7e:3d:01:dc:8d:4f:e3:c1:
c5:48:97:f8:87:0f:95:52:ec:3d:42:e8:bf:6f:ff:
58:7c:06:c2:b7:fe:86:0f:36:96:58:77:d9:b0:7a:
f9:74:cb:4e:da:04:55:68:69:ba:a4:cb:04:86:fd:
d9:a4:d7:73:11:46:fe:a9:3d:69:91:9d:5f:ac:72:
e2:96:1b:e9:cc:9c:b9:39:75:6d:d8:93:99:ec:3f:
6d:18:c9:38:ad:57:4e:9a:29:73:72:e3:66:17:bb:
79:59:e9:90:d4:7f:cb:b2:6a:18:b8:ee:18:63:3b:
e5:e8:12:d1:8e:0f:b8:3c:c5:84:f8:3b:9b:84:8b:
00:6b:10:4d:e2:dd:3d:ab:1b:58:75:a5:fe:b3:42:
d5:ab:b9:79:39:7c:fb:f2:45:62:6e:8e:95:99:99:
41:26:62:78:9d:ff:fa:d2:27:88:20:e3:40:ee:d4:
31:d9:24:48:f9:48:db:02:ec:78:6d:0b:fd:61:be:
23:d8:b3:6d:46:f0:40:e4:fe:f2:9c:d3:45:66:83:
36:92:6f:c8:72:b4:60:19:c8:7f:fb:d5:6b:cc:65:
36:93:b2:b9:9e:9d:3a:2f:de:aa:a5:4f:3e:69:1e:
63:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:ED:1D:FC:3F:8D:56:6C:05:67:E2:D2:F0:1F:3B:DB:46:8B:32:2F
X509v3 Authority Key Identifier:
keyid:5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:29:d3:3e:5d:71:7d:76:d4:ae:03:9d:a0:10:b6:60:11:25:
c1:70:0c:b7:06:23:82:81:7c:0b:e5:84:b8:41:93:3b:ba:1e:
a3:11:62:c5:1b:13:bd:bb:c6:73:4f:9b:46:f5:a4:a6:2d:3e:
25:60:f1:90:e0:56:18:55:47:73:bd:de:a8:d4:f3:15:31:7d:
12:62:68:cd:44:c1:25:59:0f:63:ef:cf:ea:71:50:9c:46:d0:
75:00:06:ba:6f:43:c5:a0:f2:c2:b1:58:ca:fd:bf:8d:95:48:
eb:b5:b4:03:7d:81:b5:37:6c:63:c4:55:0d:d6:be:29:5e:4b:
f7:0c:b2:84:82:0e:d9:ba:24:a6:9a:6d:33:79:93:8a:20:76:
3c:57:7e:e7:42:c7:a2:fd:cc:72:69:6c:55:a7:1f:2a:79:62:
7d:4d:1c:ee:23:8a:ca:4a:45:4b:76:53:57:80:9d:55:f2:86:
6d:23:59:6f:96:66:0a:d1:0b:06:f6:c5:89:ab:86:f2:6e:81:
fb:25:f7:f1:92:c9:d0:8c:78:01:29:21:f1:fd:fa:68:0e:26:
d0:fc:7a:4a:e2:12:a3:0f:f8:c5:2a:57:77:13:02:01:40:46:
aa:85:96:12:5c:d2:d0:34:66:3c:23:20:f6:af:c5:68:35:7f:
7c:95:67:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZausiHqp3BeXbC7/0bFo511MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkMzI1YmVmZDhiN2U4NWUzNDcxMDQyMDZkOGMwYWI4YTZl
MGZiNGUwHhcNMjUwNTA4MDcwMDMxWhcNMjUwNTA5MDcwMDMxWjAzMTEwLwYDVQQD
EygyMmVkMWRmYzNmOGQ1NjZjMDU2N2UyZDJmMDFmM2JkYjQ2OGIzMjJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0jqNP4SH7WZabn/tEkw3uzPCEXrE
fj0B3I1P48HFSJf4hw+VUuw9Qui/b/9YfAbCt/6GDzaWWHfZsHr5dMtO2gRVaGm6
pMsEhv3ZpNdzEUb+qT1pkZ1frHLilhvpzJy5OXVt2JOZ7D9tGMk4rVdOmilzcuNm
F7t5WemQ1H/LsmoYuO4YYzvl6BLRjg+4PMWE+DubhIsAaxBN4t09qxtYdaX+s0LV
q7l5OXz78kVibo6VmZlBJmJ4nf/60ieIIONA7tQx2SRI+UjbAux4bQv9Yb4j2LNt
RvBA5P7ynNNFZoM2km/IcrRgGch/+9VrzGU2k7K5np06L96qpU8+aR5j1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCLtHfw/jVZsBWfi0vAfO9tGizIvMB8GA1UdIwQY
MBaAFF0yW+/Yt+heNHEEIG2MCrim4PtOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFRKYjc5aTM2RjQwY1FRZ2JZd0t1S2JnLTA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC81MTQ2ZDAtM2U3NC00N2ExLWFhM2Ut
Zjk5OTViNzhhODVmLzEvWFRKYjc5aTM2RjQwY1FRZ2JZd0t1S2JnLTA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC81MTQ2ZDAtM2U3NC00N2ExLWFhM2UtZjk5OTViNzhhODVm
LzEvWFRKYjc5aTM2RjQwY1FRZ2JZd0t1S2JnLTA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkinTPl1x
fXbUrgOdoBC2YBElwXAMtwYjgoF8C+WEuEGTO7oeoxFixRsTvbvGc0+bRvWkpi0+
JWDxkOBWGFVHc73eqNTzFTF9EmJozUTBJVkPY+/P6nFQnEbQdQAGum9DxaDywrFY
yv2/jZVI67W0A32BtTdsY8RVDda+KV5L9wyyhIIO2bokppptM3mTiiB2PFd+50LH
ov3McmlsVacfKnlifU0c7iOKykpFS3ZTV4CdVfKGbSNZb5ZmCtELBvbFiauG8m6B
+yX38ZLJ0Ix4ASkh8f36aA4m0Px6SuISow/4xSpXdxMCAUBGqoWWElzS0DRmPCMg
9q/FaDV/fJVn7w==
-----END CERTIFICATE-----
Generated at Thu May 8 15:24:34 2025 by rpki-client