Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
File: 7sMTGXauon0XHGwmepjT84KmGio.mft (raw, json)
Hash identifier: O542AU8wrRHKYbtsSMixVlAyXzIVT59U2vcyPKEWjFw=
Subject key identifier: 14:95:3A:A1:ED:92:2A:DF:5D:44:56:5D:3E:C0:B7:DF:86:F0:BD:46
Authority key identifier: EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
Certificate issuer: /CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Certificate serial: 0196BA1133EFD4BCC11B2FE43CF431E8A020
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
Manifest number: 0F29
Signing time: Sat 10 May 2025 12:00:11 +0000
Manifest this update: Sat 10 May 2025 12:00:11 +0000
Manifest next update: Sun 11 May 2025 12:00:11 +0000
Files and hashes: 1: 7sMTGXauon0XHGwmepjT84KmGio.crl (hash: 5ziVkEP0L3zMbZgpmroAyVeC/CNdKQAah1g8hCbUj+g=)
2: qvDSjgW1rEvWcrU4jpSi6rsDCpM.roa (hash: T8Hf/3k6CSkU6S1AK65rkEFSmvPdWLsEssJ2od+QI9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 12:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:11:33:ef:d4:bc:c1:1b:2f:e4:3c:f4:31:e8:a0:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eec3131976aea27d171c6c267a98d3f382a61a2a
Validity
Not Before: May 10 12:00:11 2025 GMT
Not After : May 11 12:00:11 2025 GMT
Subject: CN=14953aa1ed922adf5d44565d3ec0b7df86f0bd46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2f:32:5f:30:da:dc:0c:25:88:2f:41:77:ec:
70:0b:4a:2e:91:fa:f0:f1:b4:19:3f:49:1a:b1:c8:
e9:ed:6b:46:ba:d6:23:30:d7:33:22:93:61:86:0a:
73:24:c5:96:ac:79:9d:23:aa:5b:0b:86:cc:39:a9:
23:82:0c:ba:fc:48:d6:be:f2:ae:83:fb:db:1f:dd:
d8:42:67:e2:a7:58:5b:ad:ff:2a:5c:89:43:36:10:
48:7b:f2:2a:52:a0:4c:20:b6:7c:27:8e:ed:d4:88:
3a:75:19:4b:fe:2f:a9:87:f1:50:3f:4c:7e:0e:61:
cb:d4:91:aa:05:aa:ba:16:e0:d7:6e:63:9d:80:65:
6a:6b:39:8d:3c:3c:b2:c1:a3:2a:b3:03:9d:a6:b9:
e3:14:e5:16:91:d9:52:b9:cc:3e:a0:d8:e9:0e:06:
0f:92:7f:13:3c:b2:78:4c:d9:84:bc:c0:31:87:76:
76:16:1e:71:b8:86:73:ad:42:9c:d1:1e:54:b2:0d:
39:91:04:1a:07:00:78:ac:73:f9:80:ef:6b:6e:86:
84:36:ec:ba:41:ea:18:4c:1d:7e:b0:31:28:cc:b8:
61:12:21:96:39:3d:cb:5c:d5:7e:ac:9d:32:0f:d3:
68:d4:1e:97:71:a5:b5:a3:c6:8f:57:b1:6b:c9:e6:
f0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:95:3A:A1:ED:92:2A:DF:5D:44:56:5D:3E:C0:B7:DF:86:F0:BD:46
X509v3 Authority Key Identifier:
keyid:EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:bf:03:41:c2:df:ee:27:48:73:db:f8:ea:c7:2f:54:86:ec:
a5:0a:03:30:5b:6c:f0:8b:37:6c:24:38:ab:38:7f:f2:c7:dc:
f1:be:24:99:70:d0:41:25:aa:b7:7d:74:d6:88:62:ba:c3:d6:
63:43:1b:b4:50:79:50:d7:50:d3:70:f0:a5:e1:0c:98:ea:67:
b7:2f:78:f3:9c:01:bf:c0:89:1d:f5:04:b6:3c:83:db:3c:21:
d3:86:e3:c2:bf:9f:d3:09:2a:48:b6:c0:bf:db:bf:28:5d:ea:
e1:ef:9f:bb:3f:70:f7:98:54:c0:32:6d:2d:88:67:90:1f:42:
c8:5d:7a:07:89:9c:d4:72:9e:66:65:29:71:15:57:97:30:e5:
a6:09:76:f4:97:3c:38:4c:84:2b:c9:ad:7b:3c:d9:9d:1f:69:
b3:20:c1:de:09:70:1b:36:0e:b4:01:7c:87:87:9a:5d:54:1c:
bf:6b:f8:14:a8:b3:ee:a5:5b:35:02:38:af:db:d6:d0:4f:95:
45:e6:f5:e0:33:89:57:80:56:71:60:e1:87:c4:dc:bf:52:1f:
4e:51:c6:cd:05:f5:69:26:b7:cf:f4:aa:18:35:3e:de:93:53:
9f:5d:ea:9d:d2:0b:d1:1a:5b:a6:51:14:d7:a9:5b:30:02:42:
b5:80:1f:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa6ETPv1LzBGy/kPPQx6KAgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYzMxMzE5NzZhZWEyN2QxNzFjNmMyNjdhOThkM2YzODJh
NjFhMmEwHhcNMjUwNTEwMTIwMDExWhcNMjUwNTExMTIwMDExWjAzMTEwLwYDVQQD
EygxNDk1M2FhMWVkOTIyYWRmNWQ0NDU2NWQzZWMwYjdkZjg2ZjBiZDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtC8yXzDa3AwliC9Bd+xwC0oukfrw
8bQZP0kascjp7WtGutYjMNczIpNhhgpzJMWWrHmdI6pbC4bMOakjggy6/EjWvvKu
g/vbH93YQmfip1hbrf8qXIlDNhBIe/IqUqBMILZ8J47t1Ig6dRlL/i+ph/FQP0x+
DmHL1JGqBaq6FuDXbmOdgGVqazmNPDyywaMqswOdprnjFOUWkdlSucw+oNjpDgYP
kn8TPLJ4TNmEvMAxh3Z2Fh5xuIZzrUKc0R5Usg05kQQaBwB4rHP5gO9rboaENuy6
QeoYTB1+sDEozLhhEiGWOT3LXNV+rJ0yD9No1B6XcaW1o8aPV7FryebwVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBSVOqHtkirfXURWXT7At9+G8L1GMB8GA1UdIwQY
MBaAFO7DExl2rqJ9FxxsJnqY0/OCphoqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84ZTBlZmQtZTVkZS00ZGY1LWE1NTEt
NGNkM2U3MzIxNmYxLzEvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC84ZTBlZmQtZTVkZS00ZGY1LWE1NTEtNGNkM2U3MzIxNmYx
LzEvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo78DQcLf
7idIc9v46scvVIbspQoDMFts8Is3bCQ4qzh/8sfc8b4kmXDQQSWqt3101ohiusPW
Y0MbtFB5UNdQ03DwpeEMmOpnty9485wBv8CJHfUEtjyD2zwh04bjwr+f0wkqSLbA
v9u/KF3q4e+fuz9w95hUwDJtLYhnkB9CyF16B4mc1HKeZmUpcRVXlzDlpgl29Jc8
OEyEK8mtezzZnR9psyDB3glwGzYOtAF8h4eaXVQcv2v4FKiz7qVbNQI4r9vW0E+V
Reb14DOJV4BWcWDhh8Tcv1IfTlHGzQX1aSa3z/SqGDU+3pNTn13qndIL0RpbplEU
16lbMAJCtYAfFA==
-----END CERTIFICATE-----
Generated at Sat May 10 18:54:25 2025 by rpki-client