Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: UJTc5TReJUzP3iEOXz8GioOeJ4cyK4kisOYg0MdrH50=
Subject key identifier: F1:34:2D:46:9B:C7:31:D6:CB:2E:DD:58:F9:5B:2E:96:A7:F5:63:11
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 0196790D778946A80B1E98C0A17F079EC12B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 150C
Signing time: Sun 27 Apr 2025 21:00:47 +0000
Manifest this update: Sun 27 Apr 2025 21:00:47 +0000
Manifest next update: Mon 28 Apr 2025 21:00:47 +0000
Files and hashes: 1: kMIoPYj99g2K5sWXNcD0fsxHkHM.roa (hash: FopABAV6PSptIp6OTBNiTRgtYU723NWq9ChEZhzR3FM=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: ysQaSFUz3IOwfQZ5WdTdXJAzieok4RQlQGYZG+9iKv8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 21:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:0d:77:89:46:a8:0b:1e:98:c0:a1:7f:07:9e:c1:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: Apr 27 21:00:47 2025 GMT
Not After : Apr 28 21:00:47 2025 GMT
Subject: CN=f1342d469bc731d6cb2edd58f95b2e96a7f56311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0d:ca:ad:b0:e0:89:f8:4c:78:5a:95:7f:cf:
d1:d2:40:b7:81:1b:4d:36:0a:73:b0:dc:cc:80:02:
0d:49:07:16:04:2f:1d:46:95:37:cc:fd:7f:29:54:
8e:a8:ff:52:35:89:20:0e:18:7f:6e:d0:ee:f9:7f:
a7:83:43:5b:09:83:40:8b:2e:ca:b8:97:45:fc:46:
cd:34:46:0d:47:1f:33:7e:16:27:1c:5d:2f:a2:f3:
7d:4c:af:4f:9b:4b:63:6b:4a:07:71:19:03:c4:cf:
c3:3e:69:17:65:31:8e:d0:77:e4:83:71:b7:e0:67:
5a:56:c8:c2:d8:ce:66:ca:58:7a:40:a7:a2:3c:b4:
c0:58:bc:9c:52:c9:de:71:10:12:70:71:fb:be:45:
6e:1b:09:f0:6c:7b:44:b1:e0:bb:e7:10:d3:e1:76:
0a:79:81:68:c1:bf:4d:8f:0b:42:4c:80:5e:49:c7:
82:70:da:ed:5e:f4:09:67:31:1e:c6:21:ef:16:25:
11:de:97:d0:66:c1:a7:2e:12:4b:6c:bf:2c:f1:bc:
da:6a:02:20:f0:35:12:2a:56:a2:db:48:69:02:7d:
c6:2f:82:1a:ff:dc:fd:7a:a0:66:a2:55:0d:74:46:
64:1a:4a:3a:ce:8d:5a:27:7b:29:39:55:dd:4c:03:
e9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:34:2D:46:9B:C7:31:D6:CB:2E:DD:58:F9:5B:2E:96:A7:F5:63:11
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:98:1c:8c:3a:da:99:f2:15:e5:c8:2d:59:a5:aa:1e:21:f3:
fc:32:bf:98:1d:3a:00:c8:8e:fb:ba:a9:bb:03:37:9e:fe:7d:
b7:28:3f:37:f7:2d:c9:d1:29:31:df:b5:22:ee:44:e0:8f:f6:
30:44:cc:82:fc:11:f7:d3:5a:44:74:a0:5b:b6:5a:c2:ac:b1:
8b:4f:64:e0:20:8e:43:d5:56:5f:ea:d4:37:c5:e3:26:ce:3e:
87:a8:eb:49:87:39:0f:ae:c4:f3:a0:3e:99:a7:f3:10:6d:79:
3c:09:2c:8a:c8:59:d4:7a:25:e1:30:15:27:61:66:85:5e:36:
89:67:ba:ff:48:15:f0:79:d4:70:1e:a6:70:68:c8:a4:82:8c:
be:4c:aa:58:e4:82:2f:f6:e9:7b:b7:f1:05:ab:c7:0d:aa:b6:
17:53:0f:bb:64:b8:be:d1:33:9c:93:ca:01:57:14:54:13:73:
cc:c9:17:94:57:9a:41:35:36:ec:a7:95:cb:0b:fd:74:33:9b:
e1:92:41:f7:d4:28:02:7c:f1:0c:73:4e:fc:1a:de:2e:cc:fd:
6d:3e:0d:e0:c2:48:eb:79:04:db:be:e0:30:97:8c:f9:e3:c8:
9e:d2:e6:6f:4a:46:af:1c:e2:da:9f:2b:db:ea:5d:26:51:94:
dc:9e:23:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ5DXeJRqgLHpjAoX8HnsErMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0MTJiYjNkYTY1Y2FhYjUyNDg1MWVmODZjZTliYWE2MjA3
NGUxZWQwHhcNMjUwNDI3MjEwMDQ3WhcNMjUwNDI4MjEwMDQ3WjAzMTEwLwYDVQQD
EyhmMTM0MmQ0NjliYzczMWQ2Y2IyZWRkNThmOTViMmU5NmE3ZjU2MzExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiQ3KrbDgifhMeFqVf8/R0kC3gRtN
NgpzsNzMgAINSQcWBC8dRpU3zP1/KVSOqP9SNYkgDhh/btDu+X+ng0NbCYNAiy7K
uJdF/EbNNEYNRx8zfhYnHF0vovN9TK9Pm0tja0oHcRkDxM/DPmkXZTGO0Hfkg3G3
4GdaVsjC2M5mylh6QKeiPLTAWLycUsnecRAScHH7vkVuGwnwbHtEseC75xDT4XYK
eYFowb9NjwtCTIBeSceCcNrtXvQJZzEexiHvFiUR3pfQZsGnLhJLbL8s8bzaagIg
8DUSKlai20hpAn3GL4Ia/9z9eqBmolUNdEZkGko6zo1aJ3spOVXdTAPpeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPE0LUabxzHWyy7dWPlbLpan9WMRMB8GA1UdIwQY
MBaAFMQSuz2mXKq1JIUe+GzpuqYgdOHtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEJLN1BhWmNxclVraFI3NGJPbTZwaUIwNGUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9jNzg3MWMtNTFkOS00NjNkLWFjYjgt
OWI5MzJlY2QyZWNjLzEveEJLN1BhWmNxclVraFI3NGJPbTZwaUIwNGUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9jNzg3MWMtNTFkOS00NjNkLWFjYjgtOWI5MzJlY2QyZWNj
LzEveEJLN1BhWmNxclVraFI3NGJPbTZwaUIwNGUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0pgcjDra
mfIV5cgtWaWqHiHz/DK/mB06AMiO+7qpuwM3nv59tyg/N/ctydEpMd+1Iu5E4I/2
METMgvwR99NaRHSgW7Zawqyxi09k4CCOQ9VWX+rUN8XjJs4+h6jrSYc5D67E86A+
mafzEG15PAksishZ1Hol4TAVJ2FmhV42iWe6/0gV8HnUcB6mcGjIpIKMvkyqWOSC
L/bpe7fxBavHDaq2F1MPu2S4vtEznJPKAVcUVBNzzMkXlFeaQTU27KeVywv9dDOb
4ZJB99QoAnzxDHNO/BreLsz9bT4N4MJI63kE277gMJeM+ePIntLmb0pGrxzi2p8r
2+pdJlGU3J4jZA==
-----END CERTIFICATE-----
Generated at Mon Apr 28 06:19:55 2025 by rpki-client