Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
File: u7hl_W36q6dxJJt-uujr1SgKDJc.mft (raw, json)
Hash identifier: y98NLGv5lHXnlgi3mKxktuaF7YGdxCakoiJ3cCrAJYY=
Subject key identifier: C9:B5:09:EF:DD:C1:CA:48:57:57:D9:2A:BE:04:58:E1:CE:22:75:B1
Authority key identifier: BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
Certificate issuer: /CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Certificate serial: 01967CB2F5F92F0A2AB46FC57688DFB46BDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
Manifest number: 105D
Signing time: Mon 28 Apr 2025 14:00:25 +0000
Manifest this update: Mon 28 Apr 2025 14:00:25 +0000
Manifest next update: Tue 29 Apr 2025 14:00:25 +0000
Files and hashes: 1: kr3FPTrUbvprQB5gOzb6Xm9In9I.roa (hash: hZOcB5l1wSRFBsah9a6wwCM7j6k84PdiP/Urp0eSJlg=)
2: u7hl_W36q6dxJJt-uujr1SgKDJc.crl (hash: nPi3UT96gA7QuWyhCMoq17xHvWvvFlHs77tLYYP1I+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 14:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:b2:f5:f9:2f:0a:2a:b4:6f:c5:76:88:df:b4:6b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Validity
Not Before: Apr 28 14:00:25 2025 GMT
Not After : Apr 29 14:00:25 2025 GMT
Subject: CN=c9b509efddc1ca485757d92abe0458e1ce2275b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e9:03:02:13:04:8a:d7:68:32:4b:f7:3a:52:
05:9f:a5:cf:9a:65:61:54:77:cd:56:7d:d3:dc:fc:
67:ff:b5:2d:27:91:0d:4b:1a:26:55:cc:af:da:2f:
b3:f4:e4:70:38:36:ce:93:ee:2e:85:d7:a1:c7:cb:
57:b0:f0:51:fe:a1:5d:84:9b:ea:55:fd:2f:ad:9b:
42:91:8f:d1:30:ec:ee:98:bb:a8:b6:0c:57:1f:30:
cc:0f:0b:ca:3c:be:07:d2:21:1d:3c:ce:fb:67:33:
c3:39:b6:8f:42:66:3b:a6:78:97:1e:da:12:6b:df:
07:ca:f7:ca:fd:80:90:45:3e:c5:9e:ae:d0:87:41:
ca:0a:07:1a:66:12:9d:fb:09:fa:32:a3:b6:43:c2:
ab:88:2d:65:21:0b:6d:6c:b7:64:d5:01:0c:36:e2:
98:23:c9:59:af:f0:ba:09:f0:c1:a5:bd:ef:a4:df:
11:a8:86:b7:43:43:60:ba:da:c8:f0:c6:49:8c:c6:
91:37:d3:e6:74:3f:e7:7c:f3:e4:1e:6d:e5:04:37:
f6:9d:34:8c:26:8e:ab:62:2c:be:24:60:c7:7f:28:
d0:f7:f9:1f:54:5e:c2:98:b4:ef:9f:76:34:32:0a:
51:dd:79:68:39:28:5f:29:a0:9b:a0:91:1f:53:75:
00:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B5:09:EF:DD:C1:CA:48:57:57:D9:2A:BE:04:58:E1:CE:22:75:B1
X509v3 Authority Key Identifier:
keyid:BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:13:2b:85:3c:31:fe:a7:0b:97:50:10:43:c4:22:55:b3:50:
be:10:ae:47:04:a5:b6:0e:9f:81:68:c0:61:d2:66:64:b3:cb:
92:7f:6c:46:9a:93:1b:89:e6:3f:cb:61:44:8c:95:38:83:17:
a7:98:c0:80:72:5d:d0:36:6c:ed:a9:f9:e1:c1:b0:ad:c3:c9:
a6:fd:76:09:9b:3c:13:90:76:d9:54:bc:50:c2:c9:13:83:bc:
2f:07:ab:e0:df:29:12:2a:9b:79:80:15:8e:8a:4c:bb:c2:9c:
7b:64:a9:d4:75:27:8e:1b:bb:32:97:72:e6:17:b0:94:83:70:
a8:c7:43:16:83:38:76:59:50:ee:4d:15:ba:e8:a6:2e:5b:ee:
b2:43:80:5a:6d:50:53:a9:77:08:ae:c7:54:ee:5e:52:a1:a3:
ea:24:4d:3f:9d:24:2a:94:be:44:1c:27:d6:38:b3:d5:8d:e8:
80:a9:18:eb:0f:c5:3d:4e:1c:f2:7b:ed:b5:61:3c:db:a9:bb:
21:69:30:6d:90:51:b6:ad:69:9f:41:9e:c9:ed:e3:02:d0:26:
af:eb:03:70:00:1d:76:f4:22:a0:85:ec:64:b6:ef:21:55:9e:
60:f0:9a:9f:34:f4:74:65:4d:83:cf:6b:a3:7e:e2:d4:20:90:
7b:a2:3a:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ8svX5LwoqtG/FdojftGvbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiYjg2NWZkNmRmYWFiYTc3MTI0OWI3ZWJhZThlYmQ1Mjgw
YTBjOTcwHhcNMjUwNDI4MTQwMDI1WhcNMjUwNDI5MTQwMDI1WjAzMTEwLwYDVQQD
EyhjOWI1MDllZmRkYzFjYTQ4NTc1N2Q5MmFiZTA0NThlMWNlMjI3NWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjekDAhMEitdoMkv3OlIFn6XPmmVh
VHfNVn3T3Pxn/7UtJ5ENSxomVcyv2i+z9ORwODbOk+4uhdehx8tXsPBR/qFdhJvq
Vf0vrZtCkY/RMOzumLuotgxXHzDMDwvKPL4H0iEdPM77ZzPDObaPQmY7pniXHtoS
a98HyvfK/YCQRT7Fnq7Qh0HKCgcaZhKd+wn6MqO2Q8KriC1lIQttbLdk1QEMNuKY
I8lZr/C6CfDBpb3vpN8RqIa3Q0NgutrI8MZJjMaRN9PmdD/nfPPkHm3lBDf2nTSM
Jo6rYiy+JGDHfyjQ9/kfVF7CmLTvn3Y0MgpR3XloOShfKaCboJEfU3UAHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMm1Ce/dwcpIV1fZKr4EWOHOInWxMB8GA1UdIwQY
MBaAFLu4Zf1t+quncSSbfrro69UoCgyXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTdobF9XMzZxNmR4Skp0LXV1anIxU2dLREpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS80M2JiOTQtOTRjNi00ZGFkLWEzNzIt
NWZjZmE0MjE5NzVjLzEvdTdobF9XMzZxNmR4Skp0LXV1anIxU2dLREpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS80M2JiOTQtOTRjNi00ZGFkLWEzNzItNWZjZmE0MjE5NzVj
LzEvdTdobF9XMzZxNmR4Skp0LXV1anIxU2dLREpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdRMrhTwx
/qcLl1AQQ8QiVbNQvhCuRwSltg6fgWjAYdJmZLPLkn9sRpqTG4nmP8thRIyVOIMX
p5jAgHJd0DZs7an54cGwrcPJpv12CZs8E5B22VS8UMLJE4O8Lwer4N8pEiqbeYAV
jopMu8Kce2Sp1HUnjhu7Mpdy5hewlINwqMdDFoM4dllQ7k0VuuimLlvuskOAWm1Q
U6l3CK7HVO5eUqGj6iRNP50kKpS+RBwn1jiz1Y3ogKkY6w/FPU4c8nvttWE826m7
IWkwbZBRtq1pn0Geye3jAtAmr+sDcAAddvQioIXsZLbvIVWeYPCanzT0dGVNg89r
o37i1CCQe6I6Ow==
-----END CERTIFICATE-----
Generated at Mon Apr 28 21:07:07 2025 by rpki-client