Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
File: 43ipS5lk6l6fiwWThwK6WDFrUA8.mft (raw, json)
Hash identifier: CTiPqMQUk3oDymFiIBvI4+86SfyiDQQDr1kQCv7os8U=
Subject key identifier: D5:9E:48:90:12:83:22:DA:77:9E:F3:7D:77:D4:3D:06:9C:71:64:E0
Authority key identifier: E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
Certificate issuer: /CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Certificate serial: 01967ED87E8AF961546D8C0560D943B699D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
Manifest number: 14A3
Signing time: Tue 29 Apr 2025 00:00:39 +0000
Manifest this update: Tue 29 Apr 2025 00:00:39 +0000
Manifest next update: Wed 30 Apr 2025 00:00:39 +0000
Files and hashes: 1: 43ipS5lk6l6fiwWThwK6WDFrUA8.crl (hash: odVYZrDUA5o/yzW63vAIjzQYaHcHPc/Qc74QylJgYCs=)
2: vvNRTPRqU8Pnch_p0B0gqgkil_Q.roa (hash: nLSnGecWyvHzo3G0jRopUHVVK/4X1Sw9XUMyVphgWSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:d8:7e:8a:f9:61:54:6d:8c:05:60:d9:43:b6:99:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Validity
Not Before: Apr 29 00:00:39 2025 GMT
Not After : Apr 30 00:00:39 2025 GMT
Subject: CN=d59e4890128322da779ef37d77d43d069c7164e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:dc:3b:a8:ed:56:0d:af:74:ac:a0:01:38:23:
e4:4d:d5:0d:49:9a:7e:13:ba:ed:91:7d:9c:c4:8e:
f3:3d:cf:7b:74:7e:e0:89:61:78:33:23:3f:28:a5:
f3:10:22:e9:5b:ba:f3:a6:ea:94:38:a7:05:aa:3b:
5a:f3:fd:6a:8e:48:8a:d7:5a:9d:c4:47:ee:b5:cd:
ec:53:0f:cb:0f:11:23:04:aa:bc:e1:e3:3e:7c:c6:
eb:3b:8e:40:fc:2b:00:e2:2c:96:54:d6:5d:c9:24:
7d:b8:60:ac:6e:8b:51:e1:a1:33:db:cd:6a:83:d6:
da:8f:2f:cb:f4:7c:97:39:4a:a7:b2:b8:b3:43:45:
51:b7:a6:e8:d1:a7:20:7f:ab:cb:1b:4e:9b:25:ab:
a1:b6:50:f2:29:7c:b9:02:f9:07:d1:f5:e8:be:a3:
92:0d:9c:21:6a:42:33:80:ac:c0:48:62:e7:9a:94:
63:f8:67:be:3a:bb:c4:14:7d:83:be:07:85:4c:c9:
ff:82:47:6d:57:0d:e6:24:d6:dc:b7:77:60:55:55:
42:d1:d3:c3:fc:86:58:88:ab:15:c2:42:e5:6b:0a:
66:b9:ed:ca:80:90:72:b0:ad:7d:3f:25:d8:c9:e1:
ed:86:07:89:7e:fd:fc:3b:ee:d4:f6:7a:39:8b:ef:
82:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:9E:48:90:12:83:22:DA:77:9E:F3:7D:77:D4:3D:06:9C:71:64:E0
X509v3 Authority Key Identifier:
keyid:E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:9a:40:dc:3f:9a:3f:5f:b0:72:0c:1b:de:7a:d7:9c:40:2e:
a2:a0:7a:b5:ed:2e:ea:be:d4:be:4c:cc:63:cf:09:5c:1e:31:
7e:79:75:13:0f:dd:91:7f:71:36:00:27:03:3b:67:81:40:ab:
aa:c8:08:e1:b7:8f:fb:61:52:dd:63:f4:66:6e:af:1b:52:4c:
04:0d:60:a9:24:a2:08:7d:fc:cf:92:12:3a:14:3f:1e:f0:74:
fb:6d:d3:5a:47:14:19:86:0c:98:3c:6e:2f:2d:1f:0f:8c:8d:
47:17:69:f0:92:26:36:67:4e:5e:e0:c1:49:4b:05:09:b6:ed:
4b:85:07:56:83:fa:50:cc:5d:9c:45:fa:11:96:0f:23:b3:2c:
62:65:cc:87:c6:dc:62:ec:80:f7:74:ce:ff:e1:3f:0f:5a:b8:
37:3d:86:ef:e6:98:cd:7f:fa:71:a2:3d:58:30:d5:8b:1b:9e:
cd:3b:13:a0:29:72:a6:6e:d8:3b:10:4e:36:c6:3f:95:ac:8f:
a9:3c:d6:af:31:f4:96:c5:35:50:61:c3:07:09:1a:39:5b:bd:
5b:8c:77:cb:6b:d9:92:1a:8f:8f:6d:bf:11:65:4f:39:35:6b:
35:19:8a:a9:92:e5:d5:ec:b4:93:25:60:1b:91:8b:43:12:9a:
7b:f4:4b:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ+2H6K+WFUbYwFYNlDtpnRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzNzhhOTRiOTk2NGVhNWU5ZjhiMDU5Mzg3MDJiYTU4MzE2
YjUwMGYwHhcNMjUwNDI5MDAwMDM5WhcNMjUwNDMwMDAwMDM5WjAzMTEwLwYDVQQD
EyhkNTllNDg5MDEyODMyMmRhNzc5ZWYzN2Q3N2Q0M2QwNjljNzE2NGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdw7qO1WDa90rKABOCPkTdUNSZp+
E7rtkX2cxI7zPc97dH7giWF4MyM/KKXzECLpW7rzpuqUOKcFqjta8/1qjkiK11qd
xEfutc3sUw/LDxEjBKq84eM+fMbrO45A/CsA4iyWVNZdySR9uGCsbotR4aEz281q
g9bajy/L9HyXOUqnsrizQ0VRt6bo0acgf6vLG06bJauhtlDyKXy5AvkH0fXovqOS
DZwhakIzgKzASGLnmpRj+Ge+OrvEFH2DvgeFTMn/gkdtVw3mJNbct3dgVVVC0dPD
/IZYiKsVwkLlawpmue3KgJBysK19PyXYyeHthgeJfv38O+7U9no5i++C5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNWeSJASgyLad57zfXfUPQaccWTgMB8GA1UdIwQY
MBaAFON4qUuZZOpen4sFk4cCulgxa1APMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDNpcFM1bGs2bDZmaXdXVGh3SzZXREZyVUE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy82YTVlOGMtZDgzMS00MWUzLTg0ZTUt
ZjQyMTc2Y2QwNDQ1LzEvNDNpcFM1bGs2bDZmaXdXVGh3SzZXREZyVUE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy82YTVlOGMtZDgzMS00MWUzLTg0ZTUtZjQyMTc2Y2QwNDQ1
LzEvNDNpcFM1bGs2bDZmaXdXVGh3SzZXREZyVUE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb5pA3D+a
P1+wcgwb3nrXnEAuoqB6te0u6r7UvkzMY88JXB4xfnl1Ew/dkX9xNgAnAztngUCr
qsgI4beP+2FS3WP0Zm6vG1JMBA1gqSSiCH38z5ISOhQ/HvB0+23TWkcUGYYMmDxu
Ly0fD4yNRxdp8JImNmdOXuDBSUsFCbbtS4UHVoP6UMxdnEX6EZYPI7MsYmXMh8bc
YuyA93TO/+E/D1q4Nz2G7+aYzX/6caI9WDDVixuezTsToClypm7YOxBONsY/layP
qTzWrzH0lsU1UGHDBwkaOVu9W4x3y2vZkhqPj22/EWVPOTVrNRmKqZLl1ey0kyVg
G5GLQxKae/RLAg==
-----END CERTIFICATE-----
Generated at Tue Apr 29 09:32:29 2025 by rpki-client