Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
File: 1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft (raw, json)
Hash identifier: Vf/AKY62Ysy6uzhMwWHYGtNFyqgGAUgw+NeXwjL3mMY=
Subject key identifier: F2:82:FF:9D:4D:0D:0D:E5:ED:76:00:5A:18:12:C5:A8:E0:B3:EB:BA
Authority key identifier: D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71
Certificate issuer: /CN=d5a2196ef119221155e1683f8967d254625dae71
Certificate serial: 01967C0E0709488BAC3A437AB8BD673E6719
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
Manifest number: 1510
Signing time: Mon 28 Apr 2025 11:00:16 +0000
Manifest this update: Mon 28 Apr 2025 11:00:16 +0000
Manifest next update: Tue 29 Apr 2025 11:00:16 +0000
Files and hashes: 1: 1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl (hash: wCWXTsKBoBaS1+xv/8NqQ1HHQTe0ap08vWiEMPfxZRM=)
2: Rvoozr9-AEirIvl3H78yEjywI3M.roa (hash: C8PH+7JgTNI/2g3gAC+RhVDcD73858pmRmw+QrCbn9g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 11:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:0e:07:09:48:8b:ac:3a:43:7a:b8:bd:67:3e:67:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a2196ef119221155e1683f8967d254625dae71
Validity
Not Before: Apr 28 11:00:16 2025 GMT
Not After : Apr 29 11:00:16 2025 GMT
Subject: CN=f282ff9d4d0d0de5ed76005a1812c5a8e0b3ebba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ab:67:2a:5b:76:22:55:1d:58:88:a3:73:84:
e6:15:c7:ee:81:f4:03:38:4d:a9:4c:16:ac:5d:eb:
58:63:3f:60:b7:d0:b7:48:2a:fd:91:83:3e:7e:03:
4a:ec:75:67:19:97:13:10:f0:e3:f8:b3:44:6f:e8:
65:61:8d:80:cc:20:0e:f6:9c:83:f7:e6:b6:2d:3f:
ef:35:68:3d:d7:69:01:fd:74:26:a4:a0:c2:9d:8d:
c3:c8:6e:08:d5:4a:be:d7:20:2f:ac:a5:77:01:91:
76:7f:b8:de:e9:c1:1e:7d:c8:db:66:ef:24:1b:2c:
04:b6:b4:27:48:6c:05:4f:cc:cd:a3:84:a2:71:1b:
07:78:c0:38:d7:93:cf:38:52:d6:0c:d0:87:82:04:
7e:ad:6c:90:17:22:f0:22:75:f7:31:7a:ec:54:22:
7f:24:6d:30:84:0d:c4:1c:67:cd:cd:7b:fd:a4:9e:
9c:f1:86:72:a9:7e:7f:1c:72:9f:b5:0e:e2:08:fe:
42:6c:7d:b7:95:23:ab:02:23:5a:b8:ef:34:3e:37:
8f:69:2e:16:6a:73:0b:7f:34:ac:39:5c:1b:46:05:
ce:f7:ac:7d:4b:68:38:70:d8:e8:fa:7d:94:5f:81:
cf:17:80:28:b0:9f:eb:62:90:4a:da:80:4e:d3:01:
4a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:82:FF:9D:4D:0D:0D:E5:ED:76:00:5A:18:12:C5:A8:E0:B3:EB:BA
X509v3 Authority Key Identifier:
keyid:D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:6c:38:ec:b2:45:52:a1:f8:7f:7b:3b:b5:a3:7f:65:cc:ec:
36:28:c2:9d:fe:b7:84:cb:62:72:1d:39:07:04:d5:9e:d7:96:
92:be:4b:14:34:22:9f:39:be:d0:ba:fd:2d:dc:2f:a8:3d:af:
f5:9b:28:bc:02:9e:2a:28:46:94:80:d3:65:73:1c:3f:1e:fe:
f2:29:33:e8:f6:07:32:ce:e5:3f:4e:6e:f3:88:e9:ab:fe:a9:
01:d6:4b:4f:b2:b0:26:d5:24:38:51:00:a0:07:5c:45:c5:38:
8b:9f:b6:d9:07:0d:bc:f4:48:d1:da:91:ff:7c:3a:32:40:28:
73:17:49:65:70:8d:36:03:d3:27:3c:0a:ac:15:9d:87:02:88:
6d:07:54:b6:0c:39:d3:7e:fc:ba:47:3a:7a:44:ee:47:5a:c6:
f3:33:cd:8c:83:cd:d9:41:9c:86:18:fb:34:ae:df:20:db:ed:
14:08:2b:62:62:6b:5b:51:81:b3:76:3a:3e:b0:eb:c2:24:69:
1c:ac:ac:51:e5:f3:8f:3d:bc:67:a4:a1:d1:9b:95:62:a7:8a:
f1:3e:d7:b0:11:12:92:dc:37:c8:2b:b8:77:4f:30:c5:31:c9:
0e:76:83:67:89:a7:17:72:19:44:e8:60:6f:e4:45:8c:1c:9c:
fc:76:90:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ8DgcJSIusOkN6uL1nPmcZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1YTIxOTZlZjExOTIyMTE1NWUxNjgzZjg5NjdkMjU0NjI1
ZGFlNzEwHhcNMjUwNDI4MTEwMDE2WhcNMjUwNDI5MTEwMDE2WjAzMTEwLwYDVQQD
EyhmMjgyZmY5ZDRkMGQwZGU1ZWQ3NjAwNWExODEyYzVhOGUwYjNlYmJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzatnKlt2IlUdWIijc4TmFcfugfQD
OE2pTBasXetYYz9gt9C3SCr9kYM+fgNK7HVnGZcTEPDj+LNEb+hlYY2AzCAO9pyD
9+a2LT/vNWg912kB/XQmpKDCnY3DyG4I1Uq+1yAvrKV3AZF2f7je6cEefcjbZu8k
GywEtrQnSGwFT8zNo4SicRsHeMA415PPOFLWDNCHggR+rWyQFyLwInX3MXrsVCJ/
JG0whA3EHGfNzXv9pJ6c8YZyqX5/HHKftQ7iCP5CbH23lSOrAiNauO80PjePaS4W
anMLfzSsOVwbRgXO96x9S2g4cNjo+n2UX4HPF4AosJ/rYpBK2oBO0wFKqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPKC/51NDQ3l7XYAWhgSxajgs+u6MB8GA1UdIwQY
MBaAFNWiGW7xGSIRVeFoP4ln0lRiXa5xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWFJWmJ2RVpJaEZWNFdnX2lXZlNWR0pkcm5FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9iMDYzMzctNjUxNy00MDBiLThjYjUt
N2FmYTBiY2Q3OTc2LzEvMWFJWmJ2RVpJaEZWNFdnX2lXZlNWR0pkcm5FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS9iMDYzMzctNjUxNy00MDBiLThjYjUtN2FmYTBiY2Q3OTc2
LzEvMWFJWmJ2RVpJaEZWNFdnX2lXZlNWR0pkcm5FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ2w47LJF
UqH4f3s7taN/ZczsNijCnf63hMtich05BwTVnteWkr5LFDQinzm+0Lr9LdwvqD2v
9ZsovAKeKihGlIDTZXMcPx7+8ikz6PYHMs7lP05u84jpq/6pAdZLT7KwJtUkOFEA
oAdcRcU4i5+22QcNvPRI0dqR/3w6MkAocxdJZXCNNgPTJzwKrBWdhwKIbQdUtgw5
0378ukc6ekTuR1rG8zPNjIPN2UGchhj7NK7fINvtFAgrYmJrW1GBs3Y6PrDrwiRp
HKysUeXzjz28Z6Sh0ZuVYqeK8T7XsBESktw3yCu4d08wxTHJDnaDZ4mnF3IZROhg
b+RFjByc/HaQYQ==
-----END CERTIFICATE-----
Generated at Mon Apr 28 19:27:26 2025 by rpki-client