Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
File: d9LZKEIxBOXDSA4htKPtFJiyon4.mft (raw, json)
Hash identifier: ReHp2C3t0Ey2DwE3PHzZ0mZoC11xX8xD8O7JhobW0E0=
Subject key identifier: D2:69:19:C4:6A:87:4D:12:DF:16:23:D7:5D:CB:29:1B:A4:D8:54:9C
Authority key identifier: 77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
Certificate issuer: /CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Certificate serial: 0196857F81E0773385FD8F681FABB59ACCCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
Manifest number: 0A8F
Signing time: Wed 30 Apr 2025 07:00:48 +0000
Manifest this update: Wed 30 Apr 2025 07:00:48 +0000
Manifest next update: Thu 01 May 2025 07:00:48 +0000
Files and hashes: 1: HX3f5FZnDXBVPEnE5bxp-46XcDI.roa (hash: Cn4L/fOgVlSahDb0v8tdmodjivbISS4FJEJArlg0b+Y=)
2: d9LZKEIxBOXDSA4htKPtFJiyon4.crl (hash: DRG9TTpRN1kEiJKFrtkBXMmSCjiZyGsq3PcnpGJp/eM=)
3: jKFJgU1IkNXTMlJ4fb3SLPhpIEs.roa (hash: gVNSWZlrE4CqYnhrjWkiPYyY6GBkTGDHd/hL4ezDiUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:7f:81:e0:77:33:85:fd:8f:68:1f:ab:b5:9a:cc:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d2d928423104e5c3480e21b4a3ed1498b2a27e
Validity
Not Before: Apr 30 07:00:48 2025 GMT
Not After : May 1 07:00:48 2025 GMT
Subject: CN=d26919c46a874d12df1623d75dcb291ba4d8549c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d6:53:cf:b7:d7:eb:05:60:12:ca:bd:b1:14:
f4:3a:f3:9a:86:bc:e0:d6:44:f7:b4:aa:87:5f:3f:
20:c5:04:74:05:c4:e7:f7:f8:f8:f2:40:61:e9:0a:
3f:9b:e1:cc:99:dd:fb:a4:ce:34:c0:f4:55:6e:11:
fc:e0:ce:11:2f:39:f7:5f:88:7d:67:e3:0e:85:b2:
d4:68:69:6c:cc:a0:a6:92:3c:d4:b7:c7:a1:eb:ba:
f0:af:69:2c:37:f8:78:63:e5:da:88:e4:09:67:e6:
d1:84:b8:f5:a5:fc:44:d2:71:79:69:48:d5:48:41:
e3:c3:29:ed:9c:13:e2:bf:fa:7d:47:ec:06:23:9b:
3e:e1:98:f6:25:6b:e0:3c:ff:5d:d1:bd:33:78:c3:
96:8d:5b:7b:e8:62:b7:06:b8:f0:79:4e:b3:3c:bd:
d3:cf:54:68:3d:56:38:bc:22:55:47:fb:24:13:69:
dc:c2:15:54:88:d7:84:35:4e:f3:b1:44:a1:dc:ca:
12:2f:23:2b:31:7a:0b:cb:83:1a:76:41:37:78:50:
fd:80:05:65:92:80:7b:b6:29:cc:9b:f1:dd:bd:4c:
c2:47:62:b8:49:56:ea:f4:49:b4:9e:cc:69:84:41:
2d:30:b7:a7:2f:94:55:19:0d:16:ae:3e:ec:27:3a:
26:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:69:19:C4:6A:87:4D:12:DF:16:23:D7:5D:CB:29:1B:A4:D8:54:9C
X509v3 Authority Key Identifier:
keyid:77:D2:D9:28:42:31:04:E5:C3:48:0E:21:B4:A3:ED:14:98:B2:A2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9LZKEIxBOXDSA4htKPtFJiyon4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/2b9e29-d568-4d53-b128-488792388e5b/1/d9LZKEIxBOXDSA4htKPtFJiyon4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:d0:fa:76:97:7c:35:7f:1a:ad:78:79:5b:79:53:df:50:ff:
a0:10:e7:a4:c8:08:f8:4c:c4:c0:57:f3:f8:89:3b:69:1d:8f:
8e:f5:dd:40:1d:ec:61:f8:7c:11:c8:15:3e:b7:49:ea:bb:be:
bb:c2:af:e4:da:ba:9f:34:7c:e2:8c:24:36:2d:6c:a1:65:e8:
fb:9a:2b:2a:6f:2f:9e:0e:34:a8:07:89:db:cb:5b:f2:6f:1a:
f1:6f:ff:47:f3:12:1c:02:04:bc:70:69:83:73:89:0b:7a:cb:
71:2b:3b:4a:15:a5:30:14:2b:6c:30:d4:f6:70:dd:ec:c7:7b:
85:b6:fb:35:e3:39:bf:3f:09:ef:a7:90:55:8e:46:04:6a:23:
52:e7:f4:b0:6b:5a:d4:52:4f:dc:32:98:d4:70:d4:ff:61:50:
42:b1:35:a9:da:6e:a7:df:1d:03:98:ad:26:53:b7:bc:31:e5:
99:69:50:8b:e7:68:13:c2:39:03:4f:93:26:bb:6e:59:25:ba:
81:df:e4:2b:39:f6:03:ef:77:4f:f2:01:39:5e:05:f3:2a:0c:
b3:f4:9c:9c:0b:2c:e8:bc:d7:39:bf:42:ef:8c:2e:37:d6:d8:
7d:50:3e:50:0b:a5:d7:ac:8b:5d:c0:f6:ff:6f:d8:c7:24:57:
12:fa:a4:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaFf4HgdzOF/Y9oH6u1mszMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZDJkOTI4NDIzMTA0ZTVjMzQ4MGUyMWI0YTNlZDE0OThi
MmEyN2UwHhcNMjUwNDMwMDcwMDQ4WhcNMjUwNTAxMDcwMDQ4WjAzMTEwLwYDVQQD
EyhkMjY5MTljNDZhODc0ZDEyZGYxNjIzZDc1ZGNiMjkxYmE0ZDg1NDljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9ZTz7fX6wVgEsq9sRT0OvOahrzg
1kT3tKqHXz8gxQR0BcTn9/j48kBh6Qo/m+HMmd37pM40wPRVbhH84M4RLzn3X4h9
Z+MOhbLUaGlszKCmkjzUt8eh67rwr2ksN/h4Y+XaiOQJZ+bRhLj1pfxE0nF5aUjV
SEHjwyntnBPiv/p9R+wGI5s+4Zj2JWvgPP9d0b0zeMOWjVt76GK3BrjweU6zPL3T
z1RoPVY4vCJVR/skE2ncwhVUiNeENU7zsUSh3MoSLyMrMXoLy4MadkE3eFD9gAVl
koB7tinMm/HdvUzCR2K4SVbq9Em0nsxphEEtMLenL5RVGQ0Wrj7sJzomGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNJpGcRqh00S3xYj113LKRuk2FScMB8GA1UdIwQY
MBaAFHfS2ShCMQTlw0gOIbSj7RSYsqJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8yYjllMjktZDU2OC00ZDUzLWIxMjgt
NDg4NzkyMzg4ZTViLzEvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS8yYjllMjktZDU2OC00ZDUzLWIxMjgtNDg4NzkyMzg4ZTVi
LzEvZDlMWktFSXhCT1hEU0E0aHRLUHRGSml5b240LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHtD6dpd8
NX8arXh5W3lT31D/oBDnpMgI+EzEwFfz+Ik7aR2PjvXdQB3sYfh8EcgVPrdJ6ru+
u8Kv5Nq6nzR84owkNi1soWXo+5orKm8vng40qAeJ28tb8m8a8W//R/MSHAIEvHBp
g3OJC3rLcSs7ShWlMBQrbDDU9nDd7Md7hbb7NeM5vz8J76eQVY5GBGojUuf0sGta
1FJP3DKY1HDU/2FQQrE1qdpup98dA5itJlO3vDHlmWlQi+doE8I5A0+TJrtuWSW6
gd/kKzn2A+93T/IBOV4F8yoMs/ScnAss6LzXOb9C74wuN9bYfVA+UAul16yLXcD2
/2/YxyRXEvqkjw==
-----END CERTIFICATE-----
Generated at Wed Apr 30 12:22:14 2025 by rpki-client