Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
File: tRhBzcn2NZTd3CulmkATMYK1efo.mft (raw, json)
Hash identifier: ihHCM+Sp43Idyxv1BE8IGvHNmlytepydA1JNVJ2B/AY=
Subject key identifier: 96:55:3D:C4:3F:62:70:88:60:66:CA:B8:D6:68:7E:8D:5A:03:54:04
Authority key identifier: B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
Certificate issuer: /CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Certificate serial: 019683FF2F4535C342E4317B78F985C6D1E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
Manifest number: 1519
Signing time: Wed 30 Apr 2025 00:01:01 +0000
Manifest this update: Wed 30 Apr 2025 00:01:01 +0000
Manifest next update: Thu 01 May 2025 00:01:01 +0000
Files and hashes: 1: iQxCTqJc23IztH0qMtXGhii78xc.roa (hash: b/32KuHdgss/tEEpqliyL9nGxIGy3IsYTip4QREYlPc=)
2: tRhBzcn2NZTd3CulmkATMYK1efo.crl (hash: hGCSM02SY3VX3PRIhgetwtabmgG4926I2HXWM6B4tqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:ff:2f:45:35:c3:42:e4:31:7b:78:f9:85:c6:d1:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Validity
Not Before: Apr 30 00:01:01 2025 GMT
Not After : May 1 00:01:01 2025 GMT
Subject: CN=96553dc43f6270886066cab8d6687e8d5a035404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e8:ef:e7:c2:58:70:41:ee:b7:57:90:95:e8:
68:91:ce:bf:9e:ad:1a:06:2e:37:b6:45:54:86:58:
07:84:6a:4a:e1:45:bf:11:ad:d0:52:79:e6:bb:dc:
ac:b1:38:b5:62:5d:37:64:4b:23:a1:90:32:91:10:
44:19:7f:28:23:16:8e:d1:35:e2:c1:71:54:48:a6:
b7:d2:53:9d:b8:4e:47:66:26:e9:25:12:0d:e7:ea:
28:88:fe:20:72:e2:e9:9f:7f:f6:1d:9b:0c:8a:e0:
27:92:33:87:4d:d7:a0:2c:24:54:db:2b:3f:5a:54:
91:96:39:ee:0c:28:cd:32:21:d0:7e:1c:bc:99:16:
49:f1:dc:dd:1e:0c:31:24:3c:d5:bb:60:a0:86:6d:
61:1f:ca:00:1c:21:2f:4f:28:0c:cf:52:57:12:ad:
3b:31:fa:c1:30:0c:be:dc:ce:88:37:b9:bf:6f:a5:
ed:cb:b9:b1:3e:e5:5f:c4:eb:3a:b7:07:d0:ff:21:
ad:a8:cb:13:c1:0e:f8:3c:5e:f8:61:fe:e5:7a:fc:
8b:28:44:34:65:71:b0:19:13:0d:0b:3f:4d:9b:81:
ca:41:e8:85:50:a9:f5:2e:64:81:a0:2d:f3:05:02:
72:66:ba:0c:5d:14:0c:82:4f:a4:ac:94:17:ea:01:
4c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:55:3D:C4:3F:62:70:88:60:66:CA:B8:D6:68:7E:8D:5A:03:54:04
X509v3 Authority Key Identifier:
keyid:B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:04:15:a6:ca:a4:65:78:8d:32:10:c4:62:b6:af:11:53:c9:
f6:b7:78:74:70:d1:48:a0:a7:ea:02:c7:1e:66:7e:a9:fb:8c:
54:95:b4:c5:eb:92:21:b6:78:ca:ef:8f:07:52:b0:57:66:a5:
78:18:e3:dc:19:ea:a4:ff:52:30:2c:21:20:62:43:41:3d:db:
a2:c3:ad:10:b4:00:da:c1:62:07:fb:0b:cd:93:f3:29:6a:b1:
fb:ea:4e:ac:a8:c1:cb:50:1b:82:c2:00:a9:97:59:a4:12:8b:
d8:b7:49:f1:3a:68:a3:89:15:74:79:62:4d:06:c4:8d:65:96:
07:21:07:88:00:32:d3:21:13:51:2a:54:64:1b:e4:e8:cf:ee:
7c:08:54:d0:40:d3:5b:61:b0:0b:b4:84:15:c5:4d:c2:33:cd:
2b:89:c8:7b:84:48:44:01:27:39:90:0e:c2:e5:ad:fd:53:2d:
69:6b:32:09:13:93:91:52:c5:26:f8:2a:03:97:7d:dc:23:12:
49:21:e4:50:46:86:fa:2f:fb:90:8b:30:31:06:bc:ba:85:58:
45:e3:ef:b0:b1:e2:0c:23:06:a8:f2:8c:06:21:ae:84:74:40:
06:46:47:58:12:13:3e:b0:9d:33:86:f8:00:65:23:0c:ae:85:
b7:2f:fb:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaD/y9FNcNC5DF7ePmFxtHlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1MTg0MWNkYzlmNjM1OTRkZGRjMmJhNTlhNDAxMzMxODJi
NTc5ZmEwHhcNMjUwNDMwMDAwMTAxWhcNMjUwNTAxMDAwMTAxWjAzMTEwLwYDVQQD
Eyg5NjU1M2RjNDNmNjI3MDg4NjA2NmNhYjhkNjY4N2U4ZDVhMDM1NDA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxejv58JYcEHut1eQlehokc6/nq0a
Bi43tkVUhlgHhGpK4UW/Ea3QUnnmu9yssTi1Yl03ZEsjoZAykRBEGX8oIxaO0TXi
wXFUSKa30lOduE5HZibpJRIN5+ooiP4gcuLpn3/2HZsMiuAnkjOHTdegLCRU2ys/
WlSRljnuDCjNMiHQfhy8mRZJ8dzdHgwxJDzVu2Cghm1hH8oAHCEvTygMz1JXEq07
MfrBMAy+3M6IN7m/b6Xty7mxPuVfxOs6twfQ/yGtqMsTwQ74PF74Yf7levyLKEQ0
ZXGwGRMNCz9Nm4HKQeiFUKn1LmSBoC3zBQJyZroMXRQMgk+krJQX6gFMfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJZVPcQ/YnCIYGbKuNZofo1aA1QEMB8GA1UdIwQY
MBaAFLUYQc3J9jWU3dwrpZpAEzGCtXn6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFJoQnpjbjJOWlRkM0N1bG1rQVRNWUsxZWZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9mMGFmNjEtOGNjYy00YTNiLTkwMTAt
NjkxMGYzOTlkMzhmLzEvdFJoQnpjbjJOWlRkM0N1bG1rQVRNWUsxZWZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9mMGFmNjEtOGNjYy00YTNiLTkwMTAtNjkxMGYzOTlkMzhm
LzEvdFJoQnpjbjJOWlRkM0N1bG1rQVRNWUsxZWZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgQQVpsqk
ZXiNMhDEYravEVPJ9rd4dHDRSKCn6gLHHmZ+qfuMVJW0xeuSIbZ4yu+PB1KwV2al
eBjj3BnqpP9SMCwhIGJDQT3bosOtELQA2sFiB/sLzZPzKWqx++pOrKjBy1AbgsIA
qZdZpBKL2LdJ8Tpoo4kVdHliTQbEjWWWByEHiAAy0yETUSpUZBvk6M/ufAhU0EDT
W2GwC7SEFcVNwjPNK4nIe4RIRAEnOZAOwuWt/VMtaWsyCROTkVLFJvgqA5d93CMS
SSHkUEaG+i/7kIswMQa8uoVYRePvsLHiDCMGqPKMBiGuhHRABkZHWBITPrCdM4b4
AGUjDK6Fty/7ew==
-----END CERTIFICATE-----
Generated at Wed Apr 30 03:29:23 2025 by rpki-client