Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
File: w3URP9S_vTixBDhDwwkmoRDMD1E.mft (raw, json)
Hash identifier: LNZ++at8BHawX+xs1RxOhQNwEEAniatRkHXncPJyct0=
Subject key identifier: 1A:F9:0B:D9:8D:47:13:9D:01:A5:0C:D8:2D:09:D0:AC:06:26:C3:C7
Authority key identifier: C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51
Certificate issuer: /CN=c375113fd4bfbd38b1043843c30926a110cc0f51
Certificate serial: 0196ADD628C00B3FDB0623C89B2295861B65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
Manifest number: 152D
Signing time: Thu 08 May 2025 03:00:15 +0000
Manifest this update: Thu 08 May 2025 03:00:15 +0000
Manifest next update: Fri 09 May 2025 03:00:15 +0000
Files and hashes: 1: TPJl-AnyNAOqe20bKX-5t3SrM4E.roa (hash: X6UgSBrAhCQSnYi9DhkcF/hdYKpsagcSW2GIdlVKxUg=)
2: w3URP9S_vTixBDhDwwkmoRDMD1E.crl (hash: WncmBe1Cz1yFJl0rkECb9eTi5+ucyj0dj9kgSpfL+iM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 03:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ad:d6:28:c0:0b:3f:db:06:23:c8:9b:22:95:86:1b:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c375113fd4bfbd38b1043843c30926a110cc0f51
Validity
Not Before: May 8 03:00:15 2025 GMT
Not After : May 9 03:00:15 2025 GMT
Subject: CN=1af90bd98d47139d01a50cd82d09d0ac0626c3c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fc:0c:ea:93:08:b8:11:4e:d7:e9:90:42:5c:
3e:66:7b:50:7f:4c:65:91:a8:72:7f:db:4f:92:54:
59:97:e7:89:55:a1:ff:30:8a:de:bb:1b:81:41:ac:
37:ad:63:b6:58:86:24:93:2c:62:17:6a:33:32:12:
2f:c2:2c:e7:9c:4a:e3:ac:b2:93:9c:48:94:02:95:
87:de:8d:5b:11:50:4d:e0:79:b1:86:4e:36:ad:f4:
2c:89:b9:84:8e:c8:eb:7e:b8:49:ef:cd:70:f9:c3:
ed:82:2c:1f:26:a5:dc:08:0c:60:ac:07:37:ef:f2:
56:01:48:ce:ae:c9:67:a2:78:f1:9e:45:1f:e2:e7:
85:c3:14:59:d5:83:e7:f6:5f:5e:84:0e:7d:0c:ab:
58:ff:f9:c1:6b:2a:6e:1a:d8:07:41:23:4f:5f:37:
7a:74:a5:13:b2:66:a6:05:38:18:ec:f5:e6:34:ab:
0f:63:5a:c7:a6:9f:54:cb:dd:c7:51:30:55:a8:07:
b6:ea:72:2a:fc:e8:10:64:18:d1:73:70:f7:94:97:
05:af:82:b1:07:36:74:11:55:b4:cc:de:b0:de:55:
66:27:23:81:b8:b4:19:7d:45:ef:81:f4:db:41:76:
fc:69:64:f1:da:27:f8:a3:32:f9:50:5e:e2:a2:d4:
ad:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:F9:0B:D9:8D:47:13:9D:01:A5:0C:D8:2D:09:D0:AC:06:26:C3:C7
X509v3 Authority Key Identifier:
keyid:C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:d9:5c:da:1a:9d:d4:00:29:85:fc:7e:be:de:5f:ea:ec:2a:
82:42:47:72:51:df:35:29:df:eb:81:7d:ce:b2:2d:62:2c:b0:
99:be:93:2d:22:da:31:03:37:7b:78:89:2f:74:d3:c7:82:cb:
4c:fe:c8:70:25:f5:3f:b5:5a:56:bc:4e:66:0e:3d:28:06:60:
0a:ea:62:e2:1d:51:e5:d9:6c:ba:50:51:31:a3:58:ab:8b:2a:
ad:59:c9:03:c5:ab:75:39:42:8e:ee:5c:b4:92:40:e5:39:86:
45:e4:03:d2:1b:85:ad:b9:92:ba:e2:13:0c:b2:e0:d0:7a:55:
07:15:6e:80:55:46:f9:69:63:32:ef:49:fc:cd:02:eb:7f:b6:
1d:77:d9:99:b7:c4:b6:36:ab:92:0d:75:64:e2:5b:e2:64:54:
79:ac:4d:30:c3:4f:45:55:79:bf:46:9e:32:82:c0:51:b9:ed:
70:79:23:4a:29:3f:0a:2f:c4:d8:dd:a4:50:70:3b:73:ac:6b:
50:30:01:b7:71:98:c7:ea:eb:df:4f:2f:7d:fc:77:89:ec:8b:
4f:f2:a8:00:61:50:9f:ec:ed:fd:ba:7b:f5:fd:ee:bb:74:ee:
2b:48:9c:0e:01:22:e5:ff:f0:d4:e9:ff:d7:f1:b1:29:aa:f1:
f6:81:56:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZat1ijACz/bBiPImyKVhhtlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNzUxMTNmZDRiZmJkMzhiMTA0Mzg0M2MzMDkyNmExMTBj
YzBmNTEwHhcNMjUwNTA4MDMwMDE1WhcNMjUwNTA5MDMwMDE1WjAzMTEwLwYDVQQD
EygxYWY5MGJkOThkNDcxMzlkMDFhNTBjZDgyZDA5ZDBhYzA2MjZjM2M3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/wM6pMIuBFO1+mQQlw+ZntQf0xl
kahyf9tPklRZl+eJVaH/MIreuxuBQaw3rWO2WIYkkyxiF2ozMhIvwiznnErjrLKT
nEiUApWH3o1bEVBN4Hmxhk42rfQsibmEjsjrfrhJ781w+cPtgiwfJqXcCAxgrAc3
7/JWAUjOrslnonjxnkUf4ueFwxRZ1YPn9l9ehA59DKtY//nBaypuGtgHQSNPXzd6
dKUTsmamBTgY7PXmNKsPY1rHpp9Uy93HUTBVqAe26nIq/OgQZBjRc3D3lJcFr4Kx
BzZ0EVW0zN6w3lVmJyOBuLQZfUXvgfTbQXb8aWTx2if4ozL5UF7iotStYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBr5C9mNRxOdAaUM2C0J0KwGJsPHMB8GA1UdIwQY
MBaAFMN1ET/Uv704sQQ4Q8MJJqEQzA9RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzNVUlA5U192VGl4QkRoRHd3a21vUkRNRDFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9hZjljNzgtNmVkZS00MGRmLTg5YzEt
Nzk3MjVmYTJlMTMzLzEvdzNVUlA5U192VGl4QkRoRHd3a21vUkRNRDFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS9hZjljNzgtNmVkZS00MGRmLTg5YzEtNzk3MjVmYTJlMTMz
LzEvdzNVUlA5U192VGl4QkRoRHd3a21vUkRNRDFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ9lc2hqd
1AAphfx+vt5f6uwqgkJHclHfNSnf64F9zrItYiywmb6TLSLaMQM3e3iJL3TTx4LL
TP7IcCX1P7VaVrxOZg49KAZgCupi4h1R5dlsulBRMaNYq4sqrVnJA8WrdTlCju5c
tJJA5TmGReQD0huFrbmSuuITDLLg0HpVBxVugFVG+WljMu9J/M0C63+2HXfZmbfE
tjarkg11ZOJb4mRUeaxNMMNPRVV5v0aeMoLAUbntcHkjSik/Ci/E2N2kUHA7c6xr
UDABt3GYx+rr308vffx3ieyLT/KoAGFQn+zt/bp79f3uu3TuK0icDgEi5f/w1On/
1/GxKarx9oFWBg==
-----END CERTIFICATE-----
Generated at Thu May 8 11:11:01 2025 by rpki-client