Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6725f8-9ab9-4102-83d3-bc49291b4aaa/1/seWdsb2vITytIQJfd4-slhj9TpE.mft
File: seWdsb2vITytIQJfd4-slhj9TpE.mft (raw, json)
Hash identifier: LO5ziqkFeLlwEzh3pp6eHkWUT/M9LTQoiibZ6QLL4ls=
Subject key identifier: E2:24:2B:9B:D0:4D:42:A0:75:24:5F:4A:31:F6:68:0C:B7:2B:4E:AC
Authority key identifier: B1:E5:9D:B1:BD:AF:21:3C:AD:21:02:5F:77:8F:AC:96:18:FD:4E:91
Certificate issuer: /CN=b1e59db1bdaf213cad21025f778fac9618fd4e91
Certificate serial: 0196918340CF8CF811DCFCDD078D3D69789B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/seWdsb2vITytIQJfd4-slhj9TpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6725f8-9ab9-4102-83d3-bc49291b4aaa/1/seWdsb2vITytIQJfd4-slhj9TpE.mft
Manifest number: 04D2
Signing time: Fri 02 May 2025 15:00:20 +0000
Manifest this update: Fri 02 May 2025 15:00:20 +0000
Manifest next update: Sat 03 May 2025 15:00:20 +0000
Files and hashes: 1: Y6XguoASkuj117zapWikDdhsOwE.roa (hash: cYRIxVqFr0BZZuT1yz+/1pm1CRjn1QkJKZ6Frd8lRoI=)
2: rJqP0FlZEZ4nTdC9T0nsIw-r0R4.roa (hash: 0/AMhBxslSHnkSz/7atutBB8j75xjJ93LSUDUChOOQk=)
3: seWdsb2vITytIQJfd4-slhj9TpE.crl (hash: ihLUNgKhUrr5rFf2zc5VWO324lS6WpiQfP7hviRX/WE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/6725f8-9ab9-4102-83d3-bc49291b4aaa/1/seWdsb2vITytIQJfd4-slhj9TpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/6725f8-9ab9-4102-83d3-bc49291b4aaa/1/seWdsb2vITytIQJfd4-slhj9TpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/seWdsb2vITytIQJfd4-slhj9TpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 14:24:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:91:83:40:cf:8c:f8:11:dc:fc:dd:07:8d:3d:69:78:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1e59db1bdaf213cad21025f778fac9618fd4e91
Validity
Not Before: May 2 15:00:20 2025 GMT
Not After : May 3 15:00:20 2025 GMT
Subject: CN=e2242b9bd04d42a075245f4a31f6680cb72b4eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a8:8c:73:73:06:2c:fd:01:83:45:a9:ff:86:
4b:d9:a2:29:9f:96:02:80:9d:64:ec:43:18:b1:b9:
e0:3e:a6:76:5f:eb:7a:f8:03:84:5b:df:c4:f5:b0:
a8:74:eb:39:7f:a6:7d:63:17:ec:6a:8c:05:bb:0e:
cf:14:6f:c6:39:fa:c6:91:81:56:e0:fd:90:c4:f0:
f3:44:10:50:42:7d:fb:14:cd:74:ff:33:2f:85:fc:
a3:35:dd:a3:43:40:4f:cd:8a:e9:37:bc:e9:5b:5d:
11:7a:bd:a1:a5:9c:7e:f5:e3:6a:97:f3:2c:f7:90:
8b:f9:a3:ae:7b:c8:11:0c:1a:82:e0:32:f8:b5:15:
b0:c1:ef:3a:e6:d7:23:18:94:7c:89:4b:fa:60:a1:
cf:b8:58:3d:34:19:85:3f:ba:84:49:9e:f8:e6:db:
9f:6b:e2:1d:7c:6b:bf:bd:57:34:ba:7a:39:52:83:
1c:a6:a9:15:37:13:57:ac:1b:e4:c0:22:fc:e3:f0:
8f:6a:13:40:21:30:44:38:42:ac:40:0b:b9:f4:9e:
6a:16:88:1e:ec:3e:c7:93:a5:79:ee:5c:18:41:45:
05:15:59:54:0f:01:cf:26:e2:6e:12:70:49:fe:85:
34:a8:0d:d9:33:16:2a:b5:93:f7:11:ef:92:89:3c:
84:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:24:2B:9B:D0:4D:42:A0:75:24:5F:4A:31:F6:68:0C:B7:2B:4E:AC
X509v3 Authority Key Identifier:
keyid:B1:E5:9D:B1:BD:AF:21:3C:AD:21:02:5F:77:8F:AC:96:18:FD:4E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/seWdsb2vITytIQJfd4-slhj9TpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6725f8-9ab9-4102-83d3-bc49291b4aaa/1/seWdsb2vITytIQJfd4-slhj9TpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6725f8-9ab9-4102-83d3-bc49291b4aaa/1/seWdsb2vITytIQJfd4-slhj9TpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:ee:ce:e1:4d:3b:9d:42:1a:70:6d:46:c6:b7:4b:0a:49:1c:
30:97:e5:9e:a9:02:fb:33:f9:93:15:56:cf:3e:2e:b3:04:e7:
c8:12:f3:fe:66:4e:d9:dc:30:65:9f:27:9a:03:06:53:96:28:
d9:94:f7:0d:4a:03:01:86:5f:bb:81:30:52:98:38:55:03:a1:
ac:57:9a:b6:de:72:1e:64:49:91:ea:df:f5:a8:2d:83:e1:db:
33:c8:ed:17:0f:43:a6:71:b0:04:ec:82:8e:a7:40:c3:ef:70:
72:eb:25:32:9c:fd:29:88:b5:95:41:d5:c4:b6:6d:a5:5c:c6:
b5:c5:d9:25:2a:5c:29:74:9c:a3:d0:55:87:e2:d0:77:2e:93:
d8:93:f0:fa:75:5a:e8:c6:b1:f5:47:8b:66:d7:b2:f1:d5:77:
c4:bb:da:f5:d6:17:c4:4a:dd:5a:90:91:8c:63:07:75:b3:88:
a5:f5:23:de:83:fd:9c:b8:b4:df:b3:f6:c0:91:38:f2:b8:e3:
75:a0:e4:98:da:ca:a0:d9:cf:84:9c:6e:60:f4:b4:44:a2:ae:
b7:9a:4b:b0:54:ca:e2:ff:00:ed:e7:73:01:36:39:89:3e:83:
ce:06:98:8f:11:f7:c2:19:c1:3d:4e:8d:2c:76:da:24:31:6e:
de:dd:ea:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaRg0DPjPgR3PzdB409aXibMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxZTU5ZGIxYmRhZjIxM2NhZDIxMDI1Zjc3OGZhYzk2MThm
ZDRlOTEwHhcNMjUwNTAyMTUwMDIwWhcNMjUwNTAzMTUwMDIwWjAzMTEwLwYDVQQD
EyhlMjI0MmI5YmQwNGQ0MmEwNzUyNDVmNGEzMWY2NjgwY2I3MmI0ZWFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6iMc3MGLP0Bg0Wp/4ZL2aIpn5YC
gJ1k7EMYsbngPqZ2X+t6+AOEW9/E9bCodOs5f6Z9YxfsaowFuw7PFG/GOfrGkYFW
4P2QxPDzRBBQQn37FM10/zMvhfyjNd2jQ0BPzYrpN7zpW10Rer2hpZx+9eNql/Ms
95CL+aOue8gRDBqC4DL4tRWwwe865tcjGJR8iUv6YKHPuFg9NBmFP7qESZ745tuf
a+IdfGu/vVc0uno5UoMcpqkVNxNXrBvkwCL84/CPahNAITBEOEKsQAu59J5qFoge
7D7Hk6V57lwYQUUFFVlUDwHPJuJuEnBJ/oU0qA3ZMxYqtZP3Ee+SiTyE+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOIkK5vQTUKgdSRfSjH2aAy3K06sMB8GA1UdIwQY
MBaAFLHlnbG9ryE8rSECX3ePrJYY/U6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2VXZHNiMnZJVHl0SVFKZmQ0LXNsaGo5VHBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS82NzI1ZjgtOWFiOS00MTAyLTgzZDMt
YmM0OTI5MWI0YWFhLzEvc2VXZHNiMnZJVHl0SVFKZmQ0LXNsaGo5VHBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS82NzI1ZjgtOWFiOS00MTAyLTgzZDMtYmM0OTI5MWI0YWFh
LzEvc2VXZHNiMnZJVHl0SVFKZmQ0LXNsaGo5VHBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQO7O4U07
nUIacG1GxrdLCkkcMJflnqkC+zP5kxVWzz4uswTnyBLz/mZO2dwwZZ8nmgMGU5Yo
2ZT3DUoDAYZfu4EwUpg4VQOhrFeatt5yHmRJkerf9agtg+HbM8jtFw9DpnGwBOyC
jqdAw+9wcuslMpz9KYi1lUHVxLZtpVzGtcXZJSpcKXSco9BVh+LQdy6T2JPw+nVa
6Max9UeLZtey8dV3xLva9dYXxErdWpCRjGMHdbOIpfUj3oP9nLi037P2wJE48rjj
daDkmNrKoNnPhJxuYPS0RKKut5pLsFTK4v8A7edzATY5iT6DzgaYjxH3whnBPU6N
LHbaJDFu3t3q1g==
-----END CERTIFICATE-----
Generated at Fri May 2 23:29:07 2025 by rpki-client