Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
File: sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft (raw, json)
Hash identifier: VEb1i07zMYL4go7OWPGeNn8iU4U4Lz6ipVQ1jDQQlyg=
Subject key identifier: 14:63:6E:60:B4:E0:AC:3C:44:FC:1C:5C:F2:12:91:81:2D:41:75:1F
Authority key identifier: B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
Certificate issuer: /CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Certificate serial: 01968812926CBB438E9DA3B28D7C9E901CF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
Manifest number: 0211
Signing time: Wed 30 Apr 2025 19:00:40 +0000
Manifest this update: Wed 30 Apr 2025 19:00:40 +0000
Manifest next update: Thu 01 May 2025 19:00:40 +0000
Files and hashes: 1: cutf0Yk4GqOLANVUSKcxrSdUxug.roa (hash: Q8Q4U3gD48zecWRmDv6Pw0MZwpRvb60BHrR0/Xs/Hmo=)
2: sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl (hash: /snZ4WxzhSZ2PwWPcCHbJp1LZ8S3egTe0P7e4wmAWXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 19:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:12:92:6c:bb:43:8e:9d:a3:b2:8d:7c:9e:90:1c:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Validity
Not Before: Apr 30 19:00:40 2025 GMT
Not After : May 1 19:00:40 2025 GMT
Subject: CN=14636e60b4e0ac3c44fc1c5cf21291812d41751f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d4:54:23:37:94:f0:0f:a3:a6:be:c0:09:49:
2e:7c:a2:24:34:a7:02:44:7c:9c:04:4a:96:49:40:
31:d2:b7:13:8a:3a:b2:47:df:c2:b5:58:1f:86:c3:
48:0e:09:13:0b:63:b6:52:a1:f4:dd:bb:42:17:4d:
dd:62:12:93:5b:ea:6b:e4:74:cb:23:ff:a8:ed:8a:
9b:34:e0:ca:0e:ba:e2:b1:fc:54:4d:11:46:e0:a4:
79:12:8d:7b:db:17:f3:05:97:8f:be:40:bc:67:01:
28:3f:fc:b7:0f:ee:1f:e3:07:ca:da:b5:79:33:83:
20:e4:d2:8f:b6:fa:77:af:60:f2:bd:a9:40:8a:d8:
26:3e:71:bd:a4:a9:d4:b7:af:9b:58:0c:7d:5b:67:
3d:a4:85:14:83:9c:f2:fa:5d:1a:c2:1a:af:8c:de:
ef:e3:66:5e:1a:0a:a8:8b:1e:0f:df:ca:1b:3c:a0:
c0:a5:99:23:08:13:55:c7:d9:64:75:bc:fd:a9:2c:
ac:35:84:ee:64:fc:26:ee:46:83:37:5d:b1:5e:e3:
c0:b0:16:00:4c:44:3a:a1:52:44:a2:c7:8e:4b:f8:
fd:59:5c:12:cf:c5:e9:26:c2:e7:9a:89:6b:bf:a4:
ea:57:80:d7:3a:33:6f:b2:18:da:f2:85:6d:fc:49:
26:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:63:6E:60:B4:E0:AC:3C:44:FC:1C:5C:F2:12:91:81:2D:41:75:1F
X509v3 Authority Key Identifier:
keyid:B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:b9:23:34:fd:85:30:62:0f:6f:4f:af:ce:06:32:5e:8f:bb:
59:b5:54:23:b5:83:92:de:0b:34:d5:fb:e8:b0:9d:3f:98:9b:
e5:30:a6:fc:72:d6:b9:52:b8:70:02:b8:e7:a1:27:a9:a7:10:
00:5b:e3:69:d2:a9:6c:69:bf:8c:1e:11:8c:2b:ff:8c:51:77:
bc:ed:12:c4:c8:95:e0:48:db:6a:5c:55:35:d6:ae:79:fe:1e:
be:39:c6:77:e8:50:d3:57:9d:af:c3:be:7f:dc:1e:55:f3:98:
4a:fe:23:42:5a:46:af:07:68:4e:7a:9c:28:fd:ec:53:3a:c6:
63:a5:a3:59:66:ea:3c:0a:31:5b:66:cf:18:9b:f2:f1:5e:f4:
7f:dc:da:ed:c8:e9:05:8e:70:76:9d:2b:9f:57:77:0e:12:08:
3e:c3:67:78:2c:cd:5f:23:3f:48:48:ed:4e:ec:50:4d:73:7f:
f9:60:51:c1:a9:7f:69:f2:e0:15:ff:0f:ee:27:a9:91:d1:91:
68:dd:ca:f1:a8:0a:e7:ed:2c:3b:a5:ec:13:1b:3f:77:91:ed:
57:89:b9:bb:f6:bf:e9:06:ed:26:12:38:91:24:60:23:7e:60:
b9:ec:1e:2e:37:8c:a1:7d:35:17:6a:64:e4:36:19:d3:75:99:
cc:cc:10:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaIEpJsu0OOnaOyjXyekBz3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxMTE1N2M5OGYyNjI3OWZjM2VlZDJkYWIzY2YxMTgzNzJi
ZGJlMWIwHhcNMjUwNDMwMTkwMDQwWhcNMjUwNTAxMTkwMDQwWjAzMTEwLwYDVQQD
EygxNDYzNmU2MGI0ZTBhYzNjNDRmYzFjNWNmMjEyOTE4MTJkNDE3NTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNRUIzeU8A+jpr7ACUkufKIkNKcC
RHycBEqWSUAx0rcTijqyR9/CtVgfhsNIDgkTC2O2UqH03btCF03dYhKTW+pr5HTL
I/+o7YqbNODKDrrisfxUTRFG4KR5Eo172xfzBZePvkC8ZwEoP/y3D+4f4wfK2rV5
M4Mg5NKPtvp3r2DyvalAitgmPnG9pKnUt6+bWAx9W2c9pIUUg5zy+l0awhqvjN7v
42ZeGgqoix4P38obPKDApZkjCBNVx9lkdbz9qSysNYTuZPwm7kaDN12xXuPAsBYA
TEQ6oVJEoseOS/j9WVwSz8XpJsLnmolrv6TqV4DXOjNvshja8oVt/EkmawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBRjbmC04Kw8RPwcXPISkYEtQXUfMB8GA1UdIwQY
MBaAFLERV8mPJiefw+7S2rPPEYNyvb4bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1JGWHlZOG1KNV9EN3RMYXM4OFJnM0s5dmhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy81MjFhNzQtZWJjOS00MjY3LWIwNDYt
ZTBhY2FjYzEwZWY1LzEvc1JGWHlZOG1KNV9EN3RMYXM4OFJnM0s5dmhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy81MjFhNzQtZWJjOS00MjY3LWIwNDYtZTBhY2FjYzEwZWY1
LzEvc1JGWHlZOG1KNV9EN3RMYXM4OFJnM0s5dmhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjrkjNP2F
MGIPb0+vzgYyXo+7WbVUI7WDkt4LNNX76LCdP5ib5TCm/HLWuVK4cAK456EnqacQ
AFvjadKpbGm/jB4RjCv/jFF3vO0SxMiV4EjbalxVNdauef4evjnGd+hQ01edr8O+
f9weVfOYSv4jQlpGrwdoTnqcKP3sUzrGY6WjWWbqPAoxW2bPGJvy8V70f9za7cjp
BY5wdp0rn1d3DhIIPsNneCzNXyM/SEjtTuxQTXN/+WBRwal/afLgFf8P7iepkdGR
aN3K8agK5+0sO6XsExs/d5HtV4m5u/a/6QbtJhI4kSRgI35gueweLjeMoX01F2pk
5DYZ03WZzMwQBQ==
-----END CERTIFICATE-----
Generated at Thu May 1 03:55:29 2025 by rpki-client