Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
File: dr5GHrn3AE8poX_d3-8uLqBeua8.mft (raw, json)
Hash identifier: UpNZK0j2yTyg7ceLsFceBP6bjbED4BsBTX/d2WGgdgQ=
Subject key identifier: 04:25:59:A5:9C:DB:7F:C6:1F:8E:D0:CA:13:EB:0A:99:2E:53:25:E9
Authority key identifier: 76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF
Certificate issuer: /CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af
Certificate serial: 0196C45E0EC541217CFEAC9D8E49C7E8B382
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
Manifest number: 14CC
Signing time: Mon 12 May 2025 12:00:20 +0000
Manifest this update: Mon 12 May 2025 12:00:20 +0000
Manifest next update: Tue 13 May 2025 12:00:20 +0000
Files and hashes: 1: SmenFq2eO29wVInO8xQQnEozH4M.roa (hash: NLqfCsW+19ubwmofae6n/UEN1RfOh4ZI/s4/YAFk4k4=)
2: dr5GHrn3AE8poX_d3-8uLqBeua8.crl (hash: qtLUONOn15caaoL2CkMSjUD5y9Au3yG2tU1g95TwR6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 12:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:5e:0e:c5:41:21:7c:fe:ac:9d:8e:49:c7:e8:b3:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af
Validity
Not Before: May 12 12:00:20 2025 GMT
Not After : May 13 12:00:20 2025 GMT
Subject: CN=042559a59cdb7fc61f8ed0ca13eb0a992e5325e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:38:ab:27:36:eb:d1:93:cd:5f:24:58:a3:fb:
e5:59:46:a5:ce:65:d2:84:dd:c8:59:d1:76:0e:f4:
e8:a6:37:56:26:6c:11:a8:45:74:a7:fd:8b:17:f0:
e7:b4:84:d0:bf:25:da:77:a6:58:95:ee:cf:70:c2:
47:0e:c9:9d:b5:82:09:8c:f8:f6:f7:9d:ef:ae:1d:
19:1d:9d:8c:66:fb:06:03:d4:ed:11:ad:f1:4d:69:
5c:bf:2e:cb:2d:4f:a3:97:6c:e1:1b:77:bb:1d:5b:
85:fe:d0:44:34:ee:b6:8f:ad:f3:71:26:b7:08:89:
fd:36:26:3f:33:51:2c:a7:bd:42:50:13:19:8e:47:
53:d3:0f:8b:59:54:f2:79:c0:72:dd:8e:37:b1:f3:
42:3a:1d:a6:fd:b8:e9:a7:c3:77:52:57:ee:f6:67:
1f:bc:6b:53:11:bf:2d:9a:fb:3f:a0:d3:ec:a0:d6:
9d:08:c3:d7:d2:05:21:21:56:d2:99:b7:dc:e6:be:
52:ea:af:48:c2:d1:76:dc:ed:87:c2:cc:8c:ba:6b:
4a:e1:29:d0:5c:08:84:4a:f6:24:71:be:18:81:ad:
5d:c2:33:57:6f:97:54:11:f7:af:62:a8:f3:c0:35:
c5:88:22:35:29:27:76:af:39:49:1f:e5:22:86:f0:
8b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:25:59:A5:9C:DB:7F:C6:1F:8E:D0:CA:13:EB:0A:99:2E:53:25:E9
X509v3 Authority Key Identifier:
keyid:76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:89:55:46:8d:63:e6:81:08:98:4c:ba:e3:84:a2:ff:93:74:
30:e7:27:33:11:22:41:1b:b8:25:bc:16:71:49:67:13:d9:de:
1c:c2:de:9a:e5:a0:d2:33:08:02:2b:6c:72:e8:c1:b7:5b:8f:
51:52:3c:f3:53:b5:78:8d:41:b2:cc:35:83:09:82:a2:4f:84:
da:29:74:ea:7c:81:5a:e9:1f:b4:3c:57:af:0a:27:09:68:ac:
f7:cc:0b:38:bb:91:ef:d8:a4:70:c6:3e:d0:f1:cb:2a:74:93:
fb:df:8b:8a:75:3a:a4:c7:56:91:a2:55:88:bf:65:a7:e4:92:
31:49:72:e8:bb:b6:db:44:15:be:c9:38:1e:06:64:02:89:89:
ff:96:97:ea:ad:41:a9:58:d8:d5:b0:dc:94:47:b6:54:54:80:
9e:cc:c5:ee:8c:ff:d8:8c:0d:69:c3:a5:8d:07:db:2c:3f:9d:
fb:01:8c:a2:19:59:47:bb:3a:ad:6a:72:ee:5b:cb:de:e3:95:
3b:94:1d:08:86:ce:72:cd:9d:53:16:8e:44:44:58:c2:5a:d4:
44:68:fd:7e:59:00:10:c9:ed:2b:de:8c:5f:7a:f2:22:db:af:
f4:d4:cf:7d:64:f9:1f:bb:f3:18:55:9c:b8:d3:c7:32:ce:c9:
92:28:d5:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbEXg7FQSF8/qydjknH6LOCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2YmU0NjFlYjlmNzAwNGYyOWExN2ZkZGRmZWYyZTJlYTA1
ZWI5YWYwHhcNMjUwNTEyMTIwMDIwWhcNMjUwNTEzMTIwMDIwWjAzMTEwLwYDVQQD
EygwNDI1NTlhNTljZGI3ZmM2MWY4ZWQwY2ExM2ViMGE5OTJlNTMyNWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4TirJzbr0ZPNXyRYo/vlWUalzmXS
hN3IWdF2DvTopjdWJmwRqEV0p/2LF/DntITQvyXad6ZYle7PcMJHDsmdtYIJjPj2
953vrh0ZHZ2MZvsGA9TtEa3xTWlcvy7LLU+jl2zhG3e7HVuF/tBENO62j63zcSa3
CIn9NiY/M1Esp71CUBMZjkdT0w+LWVTyecBy3Y43sfNCOh2m/bjpp8N3Ulfu9mcf
vGtTEb8tmvs/oNPsoNadCMPX0gUhIVbSmbfc5r5S6q9IwtF23O2HwsyMumtK4SnQ
XAiESvYkcb4Yga1dwjNXb5dUEfevYqjzwDXFiCI1KSd2rzlJH+UihvCLeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAQlWaWc23/GH47QyhPrCpkuUyXpMB8GA1UdIwQY
MBaAFHa+Rh659wBPKaF/3d/vLi6gXrmvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHI1R0hybjNBRThwb1hfZDMtOHVMcUJldWE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9jNjgwYmYtOWI2Yy00NGQzLTgzN2Yt
ODhjZmEzZGNhNmRlLzEvZHI1R0hybjNBRThwb1hfZDMtOHVMcUJldWE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi9jNjgwYmYtOWI2Yy00NGQzLTgzN2YtODhjZmEzZGNhNmRl
LzEvZHI1R0hybjNBRThwb1hfZDMtOHVMcUJldWE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACYlVRo1j
5oEImEy644Si/5N0MOcnMxEiQRu4JbwWcUlnE9neHMLemuWg0jMIAitscujBt1uP
UVI881O1eI1Bssw1gwmCok+E2il06nyBWukftDxXrwonCWis98wLOLuR79ikcMY+
0PHLKnST+9+LinU6pMdWkaJViL9lp+SSMUly6Lu220QVvsk4HgZkAomJ/5aX6q1B
qVjY1bDclEe2VFSAnszF7oz/2IwNacOljQfbLD+d+wGMohlZR7s6rWpy7lvL3uOV
O5QdCIbOcs2dUxaORERYwlrURGj9flkAEMntK96MX3ryItuv9NTPfWT5H7vzGFWc
uNPHMs7JkijVPA==
-----END CERTIFICATE-----
Generated at Mon May 12 20:06:54 2025 by rpki-client