Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
File: MRf9In6dzpeAXAPl8zACrqGMN90.mft (raw, json)
Hash identifier: WHIn4YsZpszQ+DlC5UQF7P3JbzAoBxgTPHR8jV7wafU=
Subject key identifier: 66:53:29:A3:94:B5:40:5B:74:53:32:83:EB:17:87:3D:24:E9:C2:CB
Authority key identifier: 31:17:FD:22:7E:9D:CE:97:80:5C:03:E5:F3:30:02:AE:A1:8C:37:DD
Certificate issuer: /CN=3117fd227e9dce97805c03e5f33002aea18c37dd
Certificate serial: 01968A012C4F687D3AE3165140B1AFEE9A96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
Manifest number: 14AB
Signing time: Thu 01 May 2025 04:00:54 +0000
Manifest this update: Thu 01 May 2025 04:00:54 +0000
Manifest next update: Fri 02 May 2025 04:00:54 +0000
Files and hashes: 1: 8FKyt8eDnO1kLTJD9dF4kktBbnk.roa (hash: 9mNmQ05G/Q2P4wE3xyuelgcW7lRtN/p4eyiaB9oB3rE=)
2: MRf9In6dzpeAXAPl8zACrqGMN90.crl (hash: riOX0TIPoKwPBG8VNjW5zkSOeu0j4g+qOO+5x/NujJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:01:2c:4f:68:7d:3a:e3:16:51:40:b1:af:ee:9a:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3117fd227e9dce97805c03e5f33002aea18c37dd
Validity
Not Before: May 1 04:00:54 2025 GMT
Not After : May 2 04:00:54 2025 GMT
Subject: CN=665329a394b5405b74533283eb17873d24e9c2cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b0:f9:18:76:a0:8b:30:cc:7d:b2:4e:f3:b2:
92:c0:28:be:f9:53:24:e8:27:cd:d1:d0:09:01:62:
f1:63:d6:5e:9e:16:58:a4:f1:61:df:c5:0d:c3:06:
23:20:5d:b2:c5:9d:6d:38:54:96:c8:71:a8:a1:ab:
ef:12:43:51:2b:13:bc:a0:82:9a:33:20:8b:d4:c8:
c0:02:45:72:e3:e2:9a:00:c7:42:99:9a:df:ed:13:
e8:e2:ca:52:24:10:74:70:5a:33:72:73:b6:e5:d8:
42:4d:bc:cd:1a:9a:98:6b:ce:93:70:aa:50:8d:e8:
d1:0c:98:fe:6b:fb:bf:58:ff:70:1d:54:dd:82:91:
b1:b9:a8:ad:d5:ec:fe:9f:ad:72:03:5c:d6:f3:c4:
94:63:90:6a:4d:d2:c9:d8:48:85:c8:20:58:94:b2:
62:fd:1b:46:00:f7:7c:38:7a:14:4f:63:ca:97:31:
ee:93:88:60:c8:a5:44:e6:ad:7c:0c:a4:69:61:02:
2b:5a:d9:a2:88:9e:c2:00:66:95:d6:d2:07:02:01:
c2:8a:3b:d3:f1:fc:69:ef:c3:ce:0d:64:bb:cc:a6:
6c:02:64:ee:ff:44:ee:43:2e:64:5b:ff:75:37:30:
82:3e:94:44:c2:01:4d:d9:ff:48:02:27:b3:52:d0:
58:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:53:29:A3:94:B5:40:5B:74:53:32:83:EB:17:87:3D:24:E9:C2:CB
X509v3 Authority Key Identifier:
keyid:31:17:FD:22:7E:9D:CE:97:80:5C:03:E5:F3:30:02:AE:A1:8C:37:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:53:8b:9e:c5:ac:fd:e0:b9:61:f3:9e:c0:07:59:81:d0:f8:
76:36:97:c4:00:10:7a:4e:52:7e:7e:e0:c3:66:83:01:14:53:
3c:e3:70:53:6d:38:19:6e:39:af:0f:75:85:99:ed:85:f1:25:
b5:b8:03:20:d5:0c:25:ee:5b:1d:6e:b0:b0:74:23:b9:1f:eb:
06:ac:57:16:4b:3b:34:cd:78:6e:b5:bf:fe:f3:d8:4d:b2:82:
89:47:57:c3:eb:6d:95:cf:9b:7f:e8:7c:80:50:3d:f0:f4:0c:
f5:27:e4:3c:43:f4:2c:ac:17:dc:16:0b:a8:4b:94:75:f9:5f:
04:06:e2:ff:f0:40:44:bf:07:83:af:0b:da:a3:fa:b9:b7:d3:
f5:bc:1b:04:bc:50:db:d6:31:e8:0c:49:26:27:56:74:32:2f:
66:f0:65:7e:9a:59:91:7e:0a:cb:28:31:10:50:27:1a:86:46:
0d:2e:fc:a1:95:b5:75:ef:ee:d0:70:f1:87:4a:0e:78:fe:87:
42:44:d6:7c:a6:49:3c:72:c7:ad:c7:45:b9:a2:a5:8c:e3:a0:
7e:2e:44:fa:15:68:45:45:66:5e:44:ee:19:ca:90:75:30:c3:
36:99:a7:dd:19:4c:5f:2d:7f:88:8e:04:45:84:ef:e9:eb:63:
90:ae:da:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaKASxPaH064xZRQLGv7pqWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxMTdmZDIyN2U5ZGNlOTc4MDVjMDNlNWYzMzAwMmFlYTE4
YzM3ZGQwHhcNMjUwNTAxMDQwMDU0WhcNMjUwNTAyMDQwMDU0WjAzMTEwLwYDVQQD
Eyg2NjUzMjlhMzk0YjU0MDViNzQ1MzMyODNlYjE3ODczZDI0ZTljMmNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybD5GHagizDMfbJO87KSwCi++VMk
6CfN0dAJAWLxY9ZenhZYpPFh38UNwwYjIF2yxZ1tOFSWyHGooavvEkNRKxO8oIKa
MyCL1MjAAkVy4+KaAMdCmZrf7RPo4spSJBB0cFozcnO25dhCTbzNGpqYa86TcKpQ
jejRDJj+a/u/WP9wHVTdgpGxuait1ez+n61yA1zW88SUY5BqTdLJ2EiFyCBYlLJi
/RtGAPd8OHoUT2PKlzHuk4hgyKVE5q18DKRpYQIrWtmiiJ7CAGaV1tIHAgHCijvT
8fxp78PODWS7zKZsAmTu/0TuQy5kW/91NzCCPpREwgFN2f9IAiezUtBYgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGZTKaOUtUBbdFMyg+sXhz0k6cLLMB8GA1UdIwQY
MBaAFDEX/SJ+nc6XgFwD5fMwAq6hjDfdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVJmOUluNmR6cGVBWEFQbDh6QUNycUdNTjkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS85ZjYyMzMtNzgyYS00MTQwLWI1MDAt
OTk3MTkwN2E5NWE3LzEvTVJmOUluNmR6cGVBWEFQbDh6QUNycUdNTjkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS85ZjYyMzMtNzgyYS00MTQwLWI1MDAtOTk3MTkwN2E5NWE3
LzEvTVJmOUluNmR6cGVBWEFQbDh6QUNycUdNTjkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHlOLnsWs
/eC5YfOewAdZgdD4djaXxAAQek5Sfn7gw2aDARRTPONwU204GW45rw91hZnthfEl
tbgDINUMJe5bHW6wsHQjuR/rBqxXFks7NM14brW//vPYTbKCiUdXw+ttlc+bf+h8
gFA98PQM9SfkPEP0LKwX3BYLqEuUdflfBAbi//BARL8Hg68L2qP6ubfT9bwbBLxQ
29Yx6AxJJidWdDIvZvBlfppZkX4KyygxEFAnGoZGDS78oZW1de/u0HDxh0oOeP6H
QkTWfKZJPHLHrcdFuaKljOOgfi5E+hVoRUVmXkTuGcqQdTDDNpmn3RlMXy1/iI4E
RYTv6etjkK7aVA==
-----END CERTIFICATE-----
Generated at Thu May 1 06:14:54 2025 by rpki-client