Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
File: POwGHF7VbcoHdT_ktbjAkNl60OE.mft (raw, json)
Hash identifier: CgAf6QNXjyLzfyD5kCaG676WQwjLnoYjNEEszA8wRrc=
Subject key identifier: D6:ED:AB:C3:96:AD:6D:26:F6:E8:98:7F:EA:15:0C:46:9D:39:48:0D
Authority key identifier: 3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
Certificate issuer: /CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Certificate serial: 0196BBC90630C6C131D40A0620F0836647F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
Manifest number: 04D5
Signing time: Sat 10 May 2025 20:00:35 +0000
Manifest this update: Sat 10 May 2025 20:00:35 +0000
Manifest next update: Sun 11 May 2025 20:00:35 +0000
Files and hashes: 1: J--9FTqyd7jwis3viXw5cnMN5-o.roa (hash: DC3T7Frr+GR57cEYLFoZVlKHfiR/SiiUWqjetZEXAWY=)
2: POwGHF7VbcoHdT_ktbjAkNl60OE.crl (hash: rtmMCk1L5BNR4nTGOFh8amP/kP8F3bz1lXX6WohQrsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 20:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:c9:06:30:c6:c1:31:d4:0a:06:20:f0:83:66:47:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Validity
Not Before: May 10 20:00:35 2025 GMT
Not After : May 11 20:00:35 2025 GMT
Subject: CN=d6edabc396ad6d26f6e8987fea150c469d39480d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3d:28:40:83:28:3b:29:8c:21:78:e0:51:eb:
4e:b4:65:4a:b6:45:68:3b:12:c3:d9:30:6c:2c:df:
47:5c:45:8f:78:c8:4b:8c:ed:58:55:89:53:d4:db:
59:fc:44:c3:9f:d4:32:1c:62:33:01:90:b3:90:24:
36:14:b1:87:af:c1:44:2b:88:19:ba:4a:3d:67:fb:
a9:b1:0d:48:04:1e:b6:97:3a:f9:3f:9b:76:07:4f:
d7:e8:fa:d2:4b:06:89:fd:9a:08:d8:bd:cb:52:29:
a2:96:e1:84:02:21:62:20:e6:41:dc:65:6e:c1:1b:
af:71:23:d7:17:a1:a8:44:6c:9a:62:2c:96:48:9c:
bd:fb:ca:79:a0:34:75:64:95:dc:7f:2c:a0:d6:f2:
c4:4b:fa:c8:1c:17:ec:e5:2a:e9:e4:b3:cf:5d:f2:
dd:44:82:c2:f5:01:85:e1:68:19:80:c6:58:b7:b6:
71:9b:ba:71:9f:34:06:14:4f:69:be:25:8f:74:c0:
41:ac:59:e1:4c:d4:de:e0:aa:f3:37:86:4c:63:f0:
69:bf:eb:bc:42:b5:aa:14:81:3d:89:cf:23:10:27:
8a:82:74:e0:de:8f:9b:e7:04:3e:22:f6:10:e0:58:
7d:92:e7:25:b4:18:30:e1:26:e6:40:ed:69:f8:6f:
9e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:ED:AB:C3:96:AD:6D:26:F6:E8:98:7F:EA:15:0C:46:9D:39:48:0D
X509v3 Authority Key Identifier:
keyid:3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:53:9d:6c:e0:ad:2a:a7:d2:7c:2b:31:c0:fc:0d:b9:d9:a1:
ea:ec:4b:a6:28:d6:0c:55:67:60:0e:5e:8b:7e:50:31:f1:0f:
ba:ad:fc:30:cb:dd:4e:2c:4c:91:3e:30:31:85:c8:c3:fc:92:
06:a4:06:8d:17:d1:33:6a:91:ea:be:30:24:63:5d:cc:52:e9:
54:df:59:75:82:4e:71:28:85:2a:0f:79:aa:72:2b:ed:4e:1e:
c2:9e:60:53:96:ea:50:7f:b7:99:2d:d8:1d:92:3d:32:d5:da:
54:c8:57:a1:00:17:b7:08:67:fb:3f:8f:ec:f9:bb:fc:db:fb:
3b:f0:c6:c9:03:4d:dc:04:6a:ac:33:e4:2b:70:14:7d:6b:bc:
bc:37:0f:83:e5:7b:99:17:bd:75:64:a3:b1:03:64:c0:4a:50:
53:79:a7:46:80:32:02:a2:e3:ae:e9:c5:35:25:97:34:30:7f:
3a:58:59:4c:02:f8:0f:7a:2f:68:8a:3d:e9:19:6d:b3:4c:82:
8a:46:fe:19:d2:29:33:af:85:3a:b4:e7:db:0b:d8:98:4a:6e:
4a:27:8a:2f:7b:bc:45:87:08:eb:32:4a:0c:3d:ba:a6:1c:a3:
07:a3:b5:5a:82:de:d6:ad:c6:d4:42:6e:02:02:a2:4d:ca:d9:
88:1a:05:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa7yQYwxsEx1AoGIPCDZkf4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjZWMwNjFjNWVkNTZkY2EwNzc1M2ZlNGI1YjhjMDkwZDk3
YWQwZTEwHhcNMjUwNTEwMjAwMDM1WhcNMjUwNTExMjAwMDM1WjAzMTEwLwYDVQQD
EyhkNmVkYWJjMzk2YWQ2ZDI2ZjZlODk4N2ZlYTE1MGM0NjlkMzk0ODBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjj0oQIMoOymMIXjgUetOtGVKtkVo
OxLD2TBsLN9HXEWPeMhLjO1YVYlT1NtZ/ETDn9QyHGIzAZCzkCQ2FLGHr8FEK4gZ
uko9Z/upsQ1IBB62lzr5P5t2B0/X6PrSSwaJ/ZoI2L3LUimiluGEAiFiIOZB3GVu
wRuvcSPXF6GoRGyaYiyWSJy9+8p5oDR1ZJXcfyyg1vLES/rIHBfs5Srp5LPPXfLd
RILC9QGF4WgZgMZYt7Zxm7pxnzQGFE9pviWPdMBBrFnhTNTe4KrzN4ZMY/Bpv+u8
QrWqFIE9ic8jECeKgnTg3o+b5wQ+IvYQ4Fh9kucltBgw4SbmQO1p+G+eVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNbtq8OWrW0m9uiYf+oVDEadOUgNMB8GA1UdIwQY
MBaAFDzsBhxe1W3KB3U/5LW4wJDZetDhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC80N2Q3ZjctYjAxOS00MmU5LWJiMDgt
ZDY5YzAxMzRmNWE4LzEvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC80N2Q3ZjctYjAxOS00MmU5LWJiMDgtZDY5YzAxMzRmNWE4
LzEvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUVOdbOCt
KqfSfCsxwPwNudmh6uxLpijWDFVnYA5ei35QMfEPuq38MMvdTixMkT4wMYXIw/yS
BqQGjRfRM2qR6r4wJGNdzFLpVN9ZdYJOcSiFKg95qnIr7U4ewp5gU5bqUH+3mS3Y
HZI9MtXaVMhXoQAXtwhn+z+P7Pm7/Nv7O/DGyQNN3ARqrDPkK3AUfWu8vDcPg+V7
mRe9dWSjsQNkwEpQU3mnRoAyAqLjrunFNSWXNDB/OlhZTAL4D3ovaIo96Rlts0yC
ikb+GdIpM6+FOrTn2wvYmEpuSieKL3u8RYcI6zJKDD26phyjB6O1WoLe1q3G1EJu
AgKiTcrZiBoFBw==
-----END CERTIFICATE-----
Generated at Sun May 11 05:19:22 2025 by rpki-client