Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
File: 0q5eM4eU5g1di1I72yto7ErHYs4.mft (raw, json)
Hash identifier: cb2Yh6zpdAwUqrNn8A7P6yHl10yG7cZOAmUPZhuH+7g=
Subject key identifier: 79:1E:C6:C4:12:04:D5:8D:29:85:39:7E:15:9D:8C:C8:3B:04:97:4A
Authority key identifier: D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
Certificate issuer: /CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Certificate serial: 0196AEB22BA053C8C3C178206B107C06C34D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
Manifest number: 152E
Signing time: Thu 08 May 2025 07:00:34 +0000
Manifest this update: Thu 08 May 2025 07:00:34 +0000
Manifest next update: Fri 09 May 2025 07:00:34 +0000
Files and hashes: 1: 0q5eM4eU5g1di1I72yto7ErHYs4.crl (hash: NEX8K72yGtmcpqUP8iRVkf/9Kcq6cWEnR/J9iL9YHRc=)
2: 5JInjtJs-s2-yK_dBCuc4HDNHSk.roa (hash: JUxQOg0RzN7jHCpHsSZf+phi3+AooD9Ty47K9VLPoKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:b2:2b:a0:53:c8:c3:c1:78:20:6b:10:7c:06:c3:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Validity
Not Before: May 8 07:00:34 2025 GMT
Not After : May 9 07:00:34 2025 GMT
Subject: CN=791ec6c41204d58d2985397e159d8cc83b04974a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:42:9a:29:23:0e:f4:2c:aa:e7:1c:b6:71:56:
37:5f:df:de:7f:bb:4d:8e:6d:9e:92:60:9c:0f:29:
3f:6b:a0:f3:58:3c:c8:08:05:79:51:36:eb:88:a6:
3f:7b:9f:b3:26:f2:28:fd:a6:81:d3:08:bf:2f:fa:
9b:9e:db:71:62:bc:97:db:63:90:a0:7d:81:b3:a5:
24:bd:b6:9a:a4:ed:8e:0a:1f:32:a3:c1:5e:61:f3:
7f:89:6c:86:40:de:1e:5d:91:fd:fa:eb:c3:ab:6a:
45:df:04:ac:b0:17:47:43:77:b3:78:f5:eb:0f:44:
c4:82:57:b4:24:c1:ed:55:2d:fa:98:55:27:d7:d5:
a7:c7:99:35:07:fa:5f:0d:a5:14:d1:f9:fe:8f:1c:
72:2c:4c:8e:d3:f9:4b:70:34:f6:2e:30:b1:ca:29:
11:9e:89:54:a1:60:c3:47:42:26:33:a3:27:9f:6a:
7c:1d:e6:b3:35:9f:9e:88:1c:96:01:39:97:00:f9:
07:73:ac:c2:a8:af:9c:69:60:41:63:9e:c9:c2:cb:
dd:0e:ca:81:05:14:e0:34:39:bf:95:59:68:08:9e:
4d:ef:22:d7:a5:d1:f9:e2:49:e9:d7:94:15:e2:3e:
ac:8b:ac:e1:35:6c:f1:ba:08:a4:a4:27:de:c2:ea:
d0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1E:C6:C4:12:04:D5:8D:29:85:39:7E:15:9D:8C:C8:3B:04:97:4A
X509v3 Authority Key Identifier:
keyid:D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:2d:e1:ff:4d:d3:ba:98:f6:c6:8d:13:7f:c8:92:d0:d1:70:
32:6b:68:2f:fb:fb:00:4e:58:cb:f2:17:1c:70:2c:45:d9:1d:
77:9d:dd:32:b0:45:9f:88:f0:7c:e2:a2:d1:5c:e1:b3:55:24:
f7:85:a7:3e:cd:c5:5f:4e:2f:42:78:eb:c3:db:13:0f:39:5d:
9f:5e:ab:9d:65:f4:b7:b0:fc:36:a6:34:0a:d5:36:d7:a9:23:
25:8c:42:a6:2a:26:65:92:c4:a8:8b:50:bf:94:04:2d:72:18:
6a:e2:99:02:01:01:78:d6:61:fc:e2:52:b5:f8:a1:30:34:16:
0b:b3:c4:4e:2c:e7:e5:f8:40:1d:ec:e7:f8:5a:46:08:4a:43:
70:09:a9:8d:09:c4:fe:48:93:ca:0b:dd:43:1a:ed:b9:aa:78:
45:85:c0:fa:5e:bb:87:fa:40:54:31:da:0a:2e:ca:c3:a9:62:
45:fb:6a:1d:f4:80:26:27:0a:eb:09:60:bc:7a:6a:40:2b:4c:
12:64:7b:68:c2:ef:29:dc:6f:06:52:a9:e4:34:7a:49:16:e3:
fc:2c:ce:9f:18:42:40:50:a7:89:c2:b2:29:fb:50:b7:89:5d:
b0:14:6c:70:ea:1c:b7:1e:0a:de:09:b0:76:9b:0d:88:3d:0f:
aa:2a:cd:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZausiugU8jDwXggaxB8BsNNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyYWU1ZTMzODc5NGU2MGQ1ZDhiNTIzYmRiMmI2OGVjNGFj
NzYyY2UwHhcNMjUwNTA4MDcwMDM0WhcNMjUwNTA5MDcwMDM0WjAzMTEwLwYDVQQD
Eyg3OTFlYzZjNDEyMDRkNThkMjk4NTM5N2UxNTlkOGNjODNiMDQ5NzRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmUKaKSMO9Cyq5xy2cVY3X9/ef7tN
jm2ekmCcDyk/a6DzWDzICAV5UTbriKY/e5+zJvIo/aaB0wi/L/qbnttxYryX22OQ
oH2Bs6UkvbaapO2OCh8yo8FeYfN/iWyGQN4eXZH9+uvDq2pF3wSssBdHQ3ezePXr
D0TEgle0JMHtVS36mFUn19Wnx5k1B/pfDaUU0fn+jxxyLEyO0/lLcDT2LjCxyikR
nolUoWDDR0ImM6Mnn2p8HeazNZ+eiByWATmXAPkHc6zCqK+caWBBY57JwsvdDsqB
BRTgNDm/lVloCJ5N7yLXpdH54knp15QV4j6si6zhNWzxugikpCfewurQJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHkexsQSBNWNKYU5fhWdjMg7BJdKMB8GA1UdIwQY
MBaAFNKuXjOHlOYNXYtSO9sraOxKx2LOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYt
OGQ4ZTllYTE0MzI1LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi9kNWRmMDMtYjVlZS00YmY3LWFlZGYtOGQ4ZTllYTE0MzI1
LzEvMHE1ZU00ZVU1ZzFkaTFJNzJ5dG83RXJIWXM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXS3h/03T
upj2xo0Tf8iS0NFwMmtoL/v7AE5Yy/IXHHAsRdkdd53dMrBFn4jwfOKi0Vzhs1Uk
94WnPs3FX04vQnjrw9sTDzldn16rnWX0t7D8NqY0CtU216kjJYxCpiomZZLEqItQ
v5QELXIYauKZAgEBeNZh/OJStfihMDQWC7PETizn5fhAHezn+FpGCEpDcAmpjQnE
/kiTygvdQxrtuap4RYXA+l67h/pAVDHaCi7Kw6liRftqHfSAJicK6wlgvHpqQCtM
EmR7aMLvKdxvBlKp5DR6SRbj/CzOnxhCQFCnicKyKftQt4ldsBRscOoctx4K3gmw
dpsNiD0PqirNkw==
-----END CERTIFICATE-----
Generated at Thu May 8 09:23:38 2025 by rpki-client