Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
File: k680jsWk5l4MsTeCGuahOe1_rAA.mft (raw, json)
Hash identifier: YBbfeNU4RJM3uD4iBWJt66LrVUfrk/WOWuipQdJc01g=
Subject key identifier: F8:86:33:F0:55:88:95:CF:24:2C:6D:11:45:DD:89:A7:D9:6E:15:F9
Authority key identifier: 93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
Certificate issuer: /CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Certificate serial: 0196CE3D53E67DA70A51E68A86DE73CCAB53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
Manifest number: 14CD
Signing time: Wed 14 May 2025 10:00:47 +0000
Manifest this update: Wed 14 May 2025 10:00:47 +0000
Manifest next update: Thu 15 May 2025 10:00:47 +0000
Files and hashes: 1: gKy-M4ArOB2uxqprqRJ6fbGyEC8.roa (hash: MC8Gw1INJPJBRmJZki75GCuCmqozYCvUY/UxQ+rSFh0=)
2: k680jsWk5l4MsTeCGuahOe1_rAA.crl (hash: zWTgWM5N9DqeSUdghgIELSKmsYlcFXSohfSSPXzOy1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 10:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:3d:53:e6:7d:a7:0a:51:e6:8a:86:de:73:cc:ab:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Validity
Not Before: May 14 10:00:47 2025 GMT
Not After : May 15 10:00:47 2025 GMT
Subject: CN=f88633f0558895cf242c6d1145dd89a7d96e15f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9d:df:e8:02:b3:ce:39:b9:d8:71:03:ff:e8:
c3:68:9a:68:7f:12:16:1c:90:77:ae:bf:b5:5c:d3:
de:60:24:89:c6:da:3b:fe:f6:aa:21:48:4f:a0:b3:
e1:02:a7:86:76:0c:38:39:63:c0:bd:b8:9e:7b:ec:
ed:51:c9:c0:3e:e1:e6:11:34:db:e5:66:00:d9:86:
32:a3:23:6b:f6:f2:c9:0e:12:81:dd:7c:47:10:b9:
9e:0f:de:e8:db:a0:08:e2:81:45:c3:73:f7:e4:0b:
70:98:8a:5f:1e:f2:6e:e1:1d:5c:6f:13:d3:5f:85:
a2:df:cf:4f:28:5e:0c:ee:db:26:c6:14:5f:7d:01:
32:61:96:87:d5:54:7e:09:b0:55:72:92:46:ee:af:
f7:89:32:c0:6f:19:8b:2b:d6:ec:1a:25:a1:69:ba:
bc:54:2e:78:14:79:81:3d:b9:8f:90:bb:b8:6b:38:
1d:c8:ab:b6:31:10:52:fc:a4:98:55:b0:00:1f:a3:
d1:62:67:8f:c4:de:f8:be:c7:2e:46:47:cb:1f:b4:
8b:33:fc:e8:e7:7a:70:a7:fa:29:06:94:67:4e:0c:
bd:5e:7f:e2:38:49:a7:aa:5f:f9:79:18:d1:17:4e:
17:dd:4e:5b:58:60:07:e0:a0:3d:e8:7d:32:01:d8:
4a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:86:33:F0:55:88:95:CF:24:2C:6D:11:45:DD:89:A7:D9:6E:15:F9
X509v3 Authority Key Identifier:
keyid:93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:6b:b8:41:0f:77:53:8a:43:9e:c8:a8:6a:e9:7b:f9:03:d7:
87:4f:c1:cf:62:25:83:cc:69:66:1b:12:ec:08:8f:94:bd:c5:
de:a1:4b:79:54:18:d3:6f:20:9b:03:d8:2d:de:48:52:84:a3:
aa:46:6b:7a:50:e7:cf:91:77:a4:68:2c:02:b3:d8:9a:90:b2:
32:45:cb:cf:b4:54:b6:0b:35:84:1f:a5:b2:73:0d:ee:30:12:
18:41:b7:35:b2:4e:0c:b3:78:9b:98:38:75:86:4c:f7:a4:77:
0f:11:bd:6f:b8:fd:c4:ba:c9:24:d3:85:04:77:db:16:89:b0:
9b:e7:66:96:76:33:d2:e6:f0:74:0b:c2:7a:ec:ed:9b:58:c8:
08:ac:15:5f:2a:ff:4a:c3:53:b1:26:35:68:cf:4c:f1:a5:38:
23:25:af:6e:5b:e1:ae:2e:69:65:83:23:e7:cc:bc:97:1c:4f:
8a:aa:c2:0a:19:6e:99:f2:4b:4f:ee:bf:4c:09:ad:4e:56:7d:
a5:7e:6f:93:cc:bc:b7:5f:31:87:f0:8e:d7:f2:76:15:57:73:
43:20:8b:47:de:28:e9:21:07:cf:ea:70:dd:d7:1f:e8:1e:b3:
24:1a:ae:53:8a:f8:3d:bf:83:b1:61:bc:73:ad:d5:82:4a:db:
a8:28:d6:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbOPVPmfacKUeaKht5zzKtTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzYWYzNDhlYzVhNGU2NWUwY2IxMzc4MjFhZTZhMTM5ZWQ3
ZmFjMDAwHhcNMjUwNTE0MTAwMDQ3WhcNMjUwNTE1MTAwMDQ3WjAzMTEwLwYDVQQD
EyhmODg2MzNmMDU1ODg5NWNmMjQyYzZkMTE0NWRkODlhN2Q5NmUxNWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZ3f6AKzzjm52HED/+jDaJpofxIW
HJB3rr+1XNPeYCSJxto7/vaqIUhPoLPhAqeGdgw4OWPAvbiee+ztUcnAPuHmETTb
5WYA2YYyoyNr9vLJDhKB3XxHELmeD97o26AI4oFFw3P35AtwmIpfHvJu4R1cbxPT
X4Wi389PKF4M7tsmxhRffQEyYZaH1VR+CbBVcpJG7q/3iTLAbxmLK9bsGiWhabq8
VC54FHmBPbmPkLu4azgdyKu2MRBS/KSYVbAAH6PRYmePxN74vscuRkfLH7SLM/zo
53pwp/opBpRnTgy9Xn/iOEmnql/5eRjRF04X3U5bWGAH4KA96H0yAdhKuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPiGM/BViJXPJCxtEUXdiafZbhX5MB8GA1UdIwQY
MBaAFJOvNI7FpOZeDLE3ghrmoTntf6wAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazY4MGpzV2s1bDRNc1RlQ0d1YWhPZTFfckFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iZDc4MjAtNWMxYy00ODg0LTlhYjgt
YzVhYjk3ZGJhODk4LzEvazY4MGpzV2s1bDRNc1RlQ0d1YWhPZTFfckFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9iZDc4MjAtNWMxYy00ODg0LTlhYjgtYzVhYjk3ZGJhODk4
LzEvazY4MGpzV2s1bDRNc1RlQ0d1YWhPZTFfckFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKWu4QQ93
U4pDnsioaul7+QPXh0/Bz2Ilg8xpZhsS7AiPlL3F3qFLeVQY028gmwPYLd5IUoSj
qkZrelDnz5F3pGgsArPYmpCyMkXLz7RUtgs1hB+lsnMN7jASGEG3NbJODLN4m5g4
dYZM96R3DxG9b7j9xLrJJNOFBHfbFomwm+dmlnYz0ubwdAvCeuztm1jICKwVXyr/
SsNTsSY1aM9M8aU4IyWvblvhri5pZYMj58y8lxxPiqrCChlumfJLT+6/TAmtTlZ9
pX5vk8y8t18xh/CO1/J2FVdzQyCLR94o6SEHz+pw3dcf6B6zJBquU4r4Pb+DsWG8
c63VgkrbqCjWEA==
-----END CERTIFICATE-----
Generated at Wed May 14 15:29:38 2025 by rpki-client