Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
File: d8LYpgGX_HveZPw_rRDrLaT-h3k.mft (raw, json)
Hash identifier: d+eoSLci/cplqK9RojmbPyXXjAoceDpndYXK3QFaFQs=
Subject key identifier: 9B:15:B7:F0:91:72:E3:07:FD:FA:FB:FA:5A:A6:1E:A9:AC:1D:74:17
Authority key identifier: 77:C2:D8:A6:01:97:FC:7B:DE:64:FC:3F:AD:10:EB:2D:A4:FE:87:79
Certificate issuer: /CN=77c2d8a60197fc7bde64fc3fad10eb2da4fe8779
Certificate serial: 0196771EB50134D1511ECE6705295AE9957A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
Manifest number: 0565
Signing time: Sun 27 Apr 2025 12:00:23 +0000
Manifest this update: Sun 27 Apr 2025 12:00:23 +0000
Manifest next update: Mon 28 Apr 2025 12:00:23 +0000
Files and hashes: 1: Fio9S4kkM_6MY_PyvY4nnlbZSX0.roa (hash: MLkm/zb7dfsD7k0W1D+pAVDUongRrbvCkAFDtBq/FSI=)
2: d8LYpgGX_HveZPw_rRDrLaT-h3k.crl (hash: zjDTRZl8aKEHhlxI3n9ChACcadqRsy/9+8yamh7xaiM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 12:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:1e:b5:01:34:d1:51:1e:ce:67:05:29:5a:e9:95:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c2d8a60197fc7bde64fc3fad10eb2da4fe8779
Validity
Not Before: Apr 27 12:00:23 2025 GMT
Not After : Apr 28 12:00:23 2025 GMT
Subject: CN=9b15b7f09172e307fdfafbfa5aa61ea9ac1d7417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e5:1a:33:db:ba:d6:0f:d1:28:7e:bc:64:df:
86:52:56:67:ab:d2:f1:0b:bd:96:f5:68:e8:dc:12:
43:55:26:77:b2:75:51:60:9a:d5:d2:e1:2c:6a:de:
4e:45:f2:91:da:df:87:eb:aa:71:fb:a3:8c:5a:a8:
03:39:96:c0:58:ad:1d:ec:b5:0b:63:e6:1b:fb:1e:
a3:e5:a2:be:36:70:04:cd:d2:25:aa:b4:96:87:dc:
8a:66:07:08:c2:8f:39:f1:59:d4:1f:5b:8e:8f:42:
ca:2a:1a:9f:92:0d:d8:71:35:60:d1:c1:a7:b5:cc:
8f:46:45:5d:83:27:73:80:1c:ef:1a:63:f3:4d:61:
e6:bf:09:11:c0:67:d1:4e:44:bb:96:df:8a:d8:d8:
3c:81:4a:75:af:49:a1:fa:d9:23:6d:4b:66:e2:69:
01:b3:6b:0a:bb:d9:ed:ec:e2:70:d8:b4:69:2a:12:
d5:44:9e:39:5a:7d:ab:dd:2b:73:ff:ae:22:46:a8:
2a:f2:cb:34:2b:c6:4f:84:19:e8:80:42:52:ee:44:
17:03:77:5f:69:cd:5f:a6:9c:0b:1b:a5:ec:24:8e:
cf:9b:5e:56:52:d2:bf:04:4c:63:5b:68:c2:e6:59:
ad:81:97:50:48:2a:11:61:88:43:cf:8c:45:4a:ae:
ba:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:15:B7:F0:91:72:E3:07:FD:FA:FB:FA:5A:A6:1E:A9:AC:1D:74:17
X509v3 Authority Key Identifier:
keyid:77:C2:D8:A6:01:97:FC:7B:DE:64:FC:3F:AD:10:EB:2D:A4:FE:87:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:2d:2e:47:65:43:69:51:b9:7b:43:c3:0d:62:fe:a1:2b:2e:
2f:d5:14:39:03:43:05:7e:40:76:74:94:3f:a9:f2:a5:e2:34:
fd:4c:9d:fd:d7:bc:b4:4e:8d:c0:79:f4:83:70:d5:3d:a9:98:
08:87:93:25:6b:31:01:9e:19:87:61:af:a4:25:af:2a:73:d6:
11:66:f5:fb:f3:f6:a2:26:bc:99:4c:82:ce:7b:89:6f:36:86:
8d:b8:6a:fb:80:da:49:16:75:e6:80:79:cd:be:fb:9b:9d:57:
a6:4b:dd:3b:a3:43:87:98:53:c1:08:10:38:aa:e1:a8:70:00:
2b:d3:7c:21:56:0e:27:78:62:1b:c3:6b:71:20:9f:7a:6b:d1:
07:c0:a2:fd:b6:e1:1d:94:b3:4e:6a:d7:17:0d:05:05:f2:f9:
ad:c2:ca:b3:c1:e9:65:3e:f9:35:a1:72:c0:f0:91:f6:a7:b3:
8a:fd:d1:9c:ab:d0:f5:89:c6:2b:12:16:25:0b:44:d4:45:52:
2e:7a:71:32:1c:5e:3a:b7:39:55:07:56:e5:4a:74:4c:c6:87:
19:ca:65:dc:f1:6d:a0:20:7d:65:b7:50:92:f0:24:8e:70:34:
c7:19:fd:15:b7:21:9d:f5:c1:67:10:e2:df:18:fc:71:bd:ed:
ca:1a:35:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3HrUBNNFRHs5nBSla6ZV6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3YzJkOGE2MDE5N2ZjN2JkZTY0ZmMzZmFkMTBlYjJkYTRm
ZTg3NzkwHhcNMjUwNDI3MTIwMDIzWhcNMjUwNDI4MTIwMDIzWjAzMTEwLwYDVQQD
Eyg5YjE1YjdmMDkxNzJlMzA3ZmRmYWZiZmE1YWE2MWVhOWFjMWQ3NDE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1eUaM9u61g/RKH68ZN+GUlZnq9Lx
C72W9Wjo3BJDVSZ3snVRYJrV0uEsat5ORfKR2t+H66px+6OMWqgDOZbAWK0d7LUL
Y+Yb+x6j5aK+NnAEzdIlqrSWh9yKZgcIwo858VnUH1uOj0LKKhqfkg3YcTVg0cGn
tcyPRkVdgydzgBzvGmPzTWHmvwkRwGfRTkS7lt+K2Ng8gUp1r0mh+tkjbUtm4mkB
s2sKu9nt7OJw2LRpKhLVRJ45Wn2r3Stz/64iRqgq8ss0K8ZPhBnogEJS7kQXA3df
ac1fppwLG6XsJI7Pm15WUtK/BExjW2jC5lmtgZdQSCoRYYhDz4xFSq66SwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJsVt/CRcuMH/fr7+lqmHqmsHXQXMB8GA1UdIwQY
MBaAFHfC2KYBl/x73mT8P60Q6y2k/od5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDhMWXBnR1hfSHZlWlB3X3JSRHJMYVQtaDNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni83ZmIyNTQtNDE3YS00MTgwLWE0ZjAt
OGYyYWY5YjUxYzViLzEvZDhMWXBnR1hfSHZlWlB3X3JSRHJMYVQtaDNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni83ZmIyNTQtNDE3YS00MTgwLWE0ZjAtOGYyYWY5YjUxYzVi
LzEvZDhMWXBnR1hfSHZlWlB3X3JSRHJMYVQtaDNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZi0uR2VD
aVG5e0PDDWL+oSsuL9UUOQNDBX5AdnSUP6nypeI0/Uyd/de8tE6NwHn0g3DVPamY
CIeTJWsxAZ4Zh2GvpCWvKnPWEWb1+/P2oia8mUyCznuJbzaGjbhq+4DaSRZ15oB5
zb77m51XpkvdO6NDh5hTwQgQOKrhqHAAK9N8IVYOJ3hiG8NrcSCfemvRB8Ci/bbh
HZSzTmrXFw0FBfL5rcLKs8HpZT75NaFywPCR9qeziv3RnKvQ9YnGKxIWJQtE1EVS
LnpxMhxeOrc5VQdW5Up0TMaHGcpl3PFtoCB9ZbdQkvAkjnA0xxn9FbchnfXBZxDi
3xj8cb3tyho1VA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 22:24:06 2025 by rpki-client