Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
File: WzgltIs1me_6oLyBqN3bmPHYAsQ.mft (raw, json)
Hash identifier: /ZBpr9akzAfYsWqeY+5I7SjBMCQSy0p2qvAo69qTFFk=
Subject key identifier: 41:B8:B3:AB:38:59:21:00:20:84:D9:2E:A0:BA:06:41:E9:18:09:22
Authority key identifier: 5B:38:25:B4:8B:35:99:EF:FA:A0:BC:81:A8:DD:DB:98:F1:D8:02:C4
Certificate issuer: /CN=5b3825b48b3599effaa0bc81a8dddb98f1d802c4
Certificate serial: 0196767A844A371493169035A3662802A585
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
Manifest number: 14A0
Signing time: Sun 27 Apr 2025 09:01:02 +0000
Manifest this update: Sun 27 Apr 2025 09:01:02 +0000
Manifest next update: Mon 28 Apr 2025 09:01:02 +0000
Files and hashes: 1: WzgltIs1me_6oLyBqN3bmPHYAsQ.crl (hash: pK+m/OhvZJV14kJYLPUdR4pEZY7ih8aSol0SzwxUfBU=)
2: iiZidHMAHkbcf8XyOTt3Z_vw0jE.roa (hash: xKnilsXqPSaJ4FjR+VlNoOzanS4pqyzg7Ofj3A9rVOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:84:4a:37:14:93:16:90:35:a3:66:28:02:a5:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b3825b48b3599effaa0bc81a8dddb98f1d802c4
Validity
Not Before: Apr 27 09:01:02 2025 GMT
Not After : Apr 28 09:01:02 2025 GMT
Subject: CN=41b8b3ab385921002084d92ea0ba0641e9180922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d2:57:79:bb:99:97:ed:bc:bb:da:1d:e6:0b:
4a:a7:44:7b:2e:f8:b2:5b:31:40:0c:ee:03:76:7b:
08:8e:d6:17:82:58:54:4d:3b:4e:bb:c0:f9:1f:b7:
e4:6e:c7:62:2d:36:1b:05:a0:af:04:64:ff:a7:5a:
c6:80:83:33:26:9d:fa:92:40:3f:a1:fe:7a:3b:26:
c5:3d:45:d3:b1:89:3f:18:b1:b1:d2:f6:11:08:1e:
58:b3:71:d9:17:ed:e3:82:e0:95:32:3e:7d:4e:52:
aa:1a:80:04:70:67:58:f0:f2:12:cd:18:5b:d3:9a:
8f:c9:c1:aa:db:11:21:a2:8d:f7:51:56:0c:d2:d9:
04:ba:8a:2d:cd:4b:14:86:aa:67:8e:89:19:8d:b2:
97:fd:54:e0:78:16:b7:84:9a:80:2c:4e:27:be:a2:
d0:e7:82:b1:bd:fb:c0:cb:03:a5:5b:0d:78:92:e2:
6a:d9:b6:07:55:7b:ce:95:71:1b:d9:88:2e:96:ad:
90:a3:a0:cf:f8:64:e5:00:75:2a:54:2f:03:1c:4e:
1a:91:de:f9:46:f4:5f:50:10:66:9a:39:b0:4b:d0:
98:1b:a5:ad:69:cc:f5:76:ac:e6:16:b4:5e:71:2f:
6c:4f:28:bd:f5:bc:c5:5b:82:b5:19:ee:c9:8b:bf:
5e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:B8:B3:AB:38:59:21:00:20:84:D9:2E:A0:BA:06:41:E9:18:09:22
X509v3 Authority Key Identifier:
keyid:5B:38:25:B4:8B:35:99:EF:FA:A0:BC:81:A8:DD:DB:98:F1:D8:02:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:e0:23:69:51:1f:ad:a8:0a:06:9a:4f:b0:7d:9c:65:46:10:
0e:2f:4e:8b:f1:d1:63:4f:19:fa:08:62:5b:84:33:2e:fd:04:
0b:b7:17:6b:d3:82:40:91:fb:93:bd:5e:21:f7:27:5c:55:ec:
5e:f5:e6:16:74:92:58:ac:d3:49:f3:80:c9:9e:43:49:d4:13:
b4:13:65:ac:91:ac:cd:83:e9:49:4d:b5:eb:97:f5:7f:cb:f0:
fc:14:b4:eb:a8:34:31:a5:7a:5a:48:1e:ab:70:18:27:41:3e:
a7:c4:8c:c9:39:ea:b7:8c:8f:e6:58:43:4c:06:8c:84:b2:bc:
c1:74:3f:a3:15:8b:dd:71:ba:c1:f4:b6:72:d6:87:16:68:17:
c7:80:09:83:7d:29:b8:07:9f:38:4c:5c:13:8f:d7:a4:17:7b:
7c:14:34:06:0c:fd:43:bb:d2:29:d5:25:b0:1e:f1:b3:29:c1:
2a:82:97:ab:9e:7a:6d:51:29:fa:c1:0c:28:35:b7:a1:78:1b:
51:17:09:ad:a1:70:53:c9:33:d5:a8:b1:0b:70:ae:92:58:ac:
6e:07:86:4d:b9:f3:90:e9:44:f0:4c:2c:0a:03:a0:59:5a:37:
7f:6c:91:9c:49:a4:5c:36:7f:6a:0c:56:c0:a4:3d:1c:dd:99:
be:83:69:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2eoRKNxSTFpA1o2YoAqWFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViMzgyNWI0OGIzNTk5ZWZmYWEwYmM4MWE4ZGRkYjk4ZjFk
ODAyYzQwHhcNMjUwNDI3MDkwMTAyWhcNMjUwNDI4MDkwMTAyWjAzMTEwLwYDVQQD
Eyg0MWI4YjNhYjM4NTkyMTAwMjA4NGQ5MmVhMGJhMDY0MWU5MTgwOTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0NJXebuZl+28u9od5gtKp0R7Lviy
WzFADO4DdnsIjtYXglhUTTtOu8D5H7fkbsdiLTYbBaCvBGT/p1rGgIMzJp36kkA/
of56OybFPUXTsYk/GLGx0vYRCB5Ys3HZF+3jguCVMj59TlKqGoAEcGdY8PISzRhb
05qPycGq2xEhoo33UVYM0tkEuootzUsUhqpnjokZjbKX/VTgeBa3hJqALE4nvqLQ
54KxvfvAywOlWw14kuJq2bYHVXvOlXEb2Ygulq2Qo6DP+GTlAHUqVC8DHE4akd75
RvRfUBBmmjmwS9CYG6Wtacz1dqzmFrRecS9sTyi99bzFW4K1Ge7Ji79eWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEG4s6s4WSEAIITZLqC6BkHpGAkiMB8GA1UdIwQY
MBaAFFs4JbSLNZnv+qC8gajd25jx2ALEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3pnbHRJczFtZV82b0x5QnFOM2JtUEhZQXNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9lMDU1OWQtYWJlNi00NDNiLWE5Nzgt
NWU3ZGVkMTQyMWRhLzEvV3pnbHRJczFtZV82b0x5QnFOM2JtUEhZQXNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9lMDU1OWQtYWJlNi00NDNiLWE5NzgtNWU3ZGVkMTQyMWRh
LzEvV3pnbHRJczFtZV82b0x5QnFOM2JtUEhZQXNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASeAjaVEf
ragKBppPsH2cZUYQDi9Oi/HRY08Z+ghiW4QzLv0EC7cXa9OCQJH7k71eIfcnXFXs
XvXmFnSSWKzTSfOAyZ5DSdQTtBNlrJGszYPpSU2165f1f8vw/BS066g0MaV6Wkge
q3AYJ0E+p8SMyTnqt4yP5lhDTAaMhLK8wXQ/oxWL3XG6wfS2ctaHFmgXx4AJg30p
uAefOExcE4/XpBd7fBQ0Bgz9Q7vSKdUlsB7xsynBKoKXq556bVEp+sEMKDW3oXgb
URcJraFwU8kz1aixC3CuklisbgeGTbnzkOlE8EwsCgOgWVo3f2yRnEmkXDZ/agxW
wKQ9HN2ZvoNpAA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 13:02:32 2025 by rpki-client