Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: 3owl1/68O8LUPR/ksy52Hrzed9AK2rAW8zfSL/2PXtA=
Subject key identifier: 05:6A:66:E0:9E:EC:D4:83:90:F9:4E:B1:91:93:9D:17:9D:9E:B7:69
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 01967454BF289EDF02CA81753D558ED0982E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 150D
Signing time: Sat 26 Apr 2025 23:00:32 +0000
Manifest this update: Sat 26 Apr 2025 23:00:32 +0000
Manifest next update: Sun 27 Apr 2025 23:00:32 +0000
Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: 8XGVbmLYpr3/MtZsL8b8LDggikBQea7dbidwE9W8gOk=)
2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 23:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:54:bf:28:9e:df:02:ca:81:75:3d:55:8e:d0:98:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Apr 26 23:00:32 2025 GMT
Not After : Apr 27 23:00:32 2025 GMT
Subject: CN=056a66e09eecd48390f94eb191939d179d9eb769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a7:3f:06:96:49:da:0e:ef:8d:da:39:6c:e2:
65:3a:36:c2:90:ab:85:ec:eb:0e:f7:0a:17:c2:fa:
aa:a9:f0:06:45:4f:46:7b:0e:1c:d8:88:e7:c2:48:
d5:10:7f:f2:cb:66:8c:0b:2a:48:fc:b6:eb:3c:31:
5b:51:f4:d1:82:a3:79:e8:b7:d4:81:8b:54:1d:90:
e9:07:b0:0a:82:90:16:9c:09:c3:3c:5d:2b:df:46:
34:73:6a:4e:b6:f0:03:23:5c:13:4a:eb:a7:d9:fd:
59:5a:57:0f:5f:67:a7:09:7c:83:90:f6:42:04:f3:
31:c6:3a:a2:6a:73:e0:54:66:85:65:d9:95:45:f5:
fb:55:ce:86:33:34:4e:fa:4d:47:23:34:d2:17:73:
87:e9:e6:40:c6:35:b8:09:1e:e4:b9:a4:83:a1:ca:
61:f0:0b:65:6e:cd:c3:b6:e6:5a:7b:26:bb:8b:28:
65:be:8f:cb:95:a0:78:49:58:bc:ef:28:e7:05:b3:
f8:94:65:10:91:41:ad:85:1b:5e:ea:aa:d0:b0:0f:
24:d8:7b:1f:88:6e:3d:83:37:d5:94:f2:24:ea:5b:
d0:73:38:2d:6f:a5:93:38:30:60:39:47:d9:84:98:
8c:97:a2:9f:5d:86:2a:d4:97:73:ec:33:3b:35:74:
f7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:6A:66:E0:9E:EC:D4:83:90:F9:4E:B1:91:93:9D:17:9D:9E:B7:69
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:61:cd:e8:97:85:b4:5f:6b:18:f2:e2:7a:b6:7e:7d:55:49:
77:ea:db:9c:91:8d:0b:6c:a4:01:a6:ff:e1:98:0d:9e:1f:5a:
d6:22:09:97:76:12:94:89:bb:0d:83:aa:57:c5:ed:1c:a2:16:
90:01:f8:ae:46:3d:75:39:4b:f2:ac:32:e7:b2:cd:81:dd:63:
c6:b9:53:77:4e:8a:d8:30:71:cc:7a:cd:69:82:85:43:e8:92:
c5:0e:cd:63:24:9b:17:29:1c:6e:17:e9:ef:19:b4:fd:cc:3d:
2f:3c:18:18:e0:f9:94:e1:66:20:72:c9:ba:eb:c1:a9:09:41:
4c:ef:52:aa:bf:79:a6:6f:b6:a5:c1:ed:87:de:fe:f8:79:d0:
77:f5:67:3d:d4:8a:5c:21:0d:d6:5a:fa:2f:fe:bd:83:77:29:
16:35:8e:c5:d9:b6:c2:df:45:e2:8f:8a:82:fa:89:96:4e:f5:
5a:80:34:20:98:ec:3f:4b:4d:b9:67:1d:d6:cc:1e:fc:ff:95:
51:3a:0e:36:94:8f:96:c9:e3:6f:ba:3e:50:06:b8:51:e3:cd:
a9:fe:42:89:3f:42:5e:c4:75:88:64:9b:2e:2e:98:07:25:71:
9e:4f:99:a3:f2:cc:a6:ad:e0:a2:2b:55:4e:45:0e:57:0f:e2:
1e:5d:58:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ0VL8ont8CyoF1PVWO0JguMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzMzkzNDNjYzZkNTFkZGI4ZTM2MzgyOTlhMWJiNDk1ZjQ1
ODA5MjEwHhcNMjUwNDI2MjMwMDMyWhcNMjUwNDI3MjMwMDMyWjAzMTEwLwYDVQQD
EygwNTZhNjZlMDllZWNkNDgzOTBmOTRlYjE5MTkzOWQxNzlkOWViNzY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiac/BpZJ2g7vjdo5bOJlOjbCkKuF
7OsO9woXwvqqqfAGRU9Gew4c2IjnwkjVEH/yy2aMCypI/LbrPDFbUfTRgqN56LfU
gYtUHZDpB7AKgpAWnAnDPF0r30Y0c2pOtvADI1wTSuun2f1ZWlcPX2enCXyDkPZC
BPMxxjqianPgVGaFZdmVRfX7Vc6GMzRO+k1HIzTSF3OH6eZAxjW4CR7kuaSDocph
8Atlbs3DtuZaeya7iyhlvo/LlaB4SVi87yjnBbP4lGUQkUGthRte6qrQsA8k2Hsf
iG49gzfVlPIk6lvQczgtb6WTODBgOUfZhJiMl6KfXYYq1Jdz7DM7NXT3PQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAVqZuCe7NSDkPlOsZGTnRednrdpMB8GA1UdIwQY
MBaAFPM5NDzG1R3bjjY4KZobtJX0WAkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDIt
Mzc3ZDI1YmU1OTRkLzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDItMzc3ZDI1YmU1OTRk
LzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApmHN6JeF
tF9rGPLierZ+fVVJd+rbnJGNC2ykAab/4ZgNnh9a1iIJl3YSlIm7DYOqV8XtHKIW
kAH4rkY9dTlL8qwy57LNgd1jxrlTd06K2DBxzHrNaYKFQ+iSxQ7NYySbFykcbhfp
7xm0/cw9LzwYGOD5lOFmIHLJuuvBqQlBTO9Sqr95pm+2pcHth97++HnQd/VnPdSK
XCEN1lr6L/69g3cpFjWOxdm2wt9F4o+KgvqJlk71WoA0IJjsP0tNuWcd1swe/P+V
UToONpSPlsnjb7o+UAa4UePNqf5CiT9CXsR1iGSbLi6YByVxnk+Zo/LMpq3goitV
TkUOVw/iHl1YYQ==
-----END CERTIFICATE-----
Generated at Sun Apr 27 08:51:05 2025 by rpki-client