Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: X5CKPQo9xzkd5widLzMVmZ7ySN25cwHeZU/iLJocl30=
Subject key identifier: 20:15:D1:08:27:4A:97:44:06:39:30:7E:BA:9C:BF:E4:CC:2A:F2:E8
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 0196843588A3BBF1CAEA34F0987FB17DFBD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 0F1E
Signing time: Wed 30 Apr 2025 01:00:22 +0000
Manifest this update: Wed 30 Apr 2025 01:00:22 +0000
Manifest next update: Thu 01 May 2025 01:00:22 +0000
Files and hashes: 1: DTkkXlwWhjBYM7E-LiW8oFBHJjI.roa (hash: cFY01vIGbPqfZkXvhIFJCumwHCyy8N/DU0Sq4RcHFF0=)
2: F-tWEgFXNk85dgLML3v4CjJQNJI.roa (hash: KLZ5Ryps6kGcz+Vvj/Jt1Z7hc5rWBKew1n0+/36PDXM=)
3: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: pCq7nIN0ctALvU/P5C+8P4rrGHj4Hc8TP82kWsbY07Y=)
4: PgYgGFElQ5q1n0LGZNZBRta_Qd4.roa (hash: 69CNmBY++9WnYAnXQ2BFsg1ecbH6Dliq6fHkpb2sLS4=)
5: c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa (hash: 6teRR+6kz/ZhchnuaFTgHT4htaDxgUNTDG0QN1bVrBA=)
6: f3EQDAp01aGz4ygf13OnfmgCiyU.roa (hash: K8CWfwsXMWBETuXajB8y0tfb/O1sIwj6IWVOuqi5a0s=)
7: fnn2PBqaEkB-G35nmktclyOEVrM.roa (hash: z4jXqUIY33n8wsiIhXSfBMidI9YSQa2N+6IYP0IxcVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:35:88:a3:bb:f1:ca:ea:34:f0:98:7f:b1:7d:fb:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Apr 30 01:00:22 2025 GMT
Not After : May 1 01:00:22 2025 GMT
Subject: CN=2015d108274a97440639307eba9cbfe4cc2af2e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:ca:4d:13:da:c9:d2:0e:fe:3a:6e:09:73:c2:
43:b8:95:63:20:66:13:7a:9e:cb:5a:98:23:75:79:
40:8b:cb:dc:3c:e8:70:ff:d0:44:c8:fd:8e:e7:aa:
0d:d0:35:db:7e:a1:4f:6f:10:64:eb:4e:50:92:1b:
ee:85:02:97:12:f8:f3:1e:97:ff:53:b4:20:da:2e:
6d:73:a2:f9:17:a2:e9:d7:56:ae:2d:20:f7:6e:09:
93:61:5a:32:41:c8:07:ac:fc:ef:ab:78:e3:35:31:
9e:ab:ad:35:78:9e:6b:e3:12:ef:f1:c2:8e:8d:2e:
81:fd:a0:8e:e6:2a:dd:e8:74:c0:c8:fe:6f:cf:71:
cd:d6:7f:91:b8:b7:f7:d8:13:e9:78:88:53:23:be:
57:58:ee:05:86:49:43:89:b5:8a:17:2d:02:02:7f:
bc:33:bc:6d:78:2d:64:5f:b8:d8:84:3a:37:c3:b1:
17:fd:2c:d8:fd:17:f8:42:38:c8:19:2c:e0:da:a4:
99:7b:2a:30:94:ce:2b:4a:c8:5c:b7:c4:a0:3c:e4:
b7:cb:9f:8e:ba:c0:47:e5:d7:0d:31:d2:07:67:a2:
d8:ee:dd:b8:da:ee:03:43:51:d0:a9:ed:fd:41:7d:
e4:a5:d0:a7:ce:fb:95:92:00:12:47:82:87:f2:c9:
42:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:15:D1:08:27:4A:97:44:06:39:30:7E:BA:9C:BF:E4:CC:2A:F2:E8
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:ea:55:d3:4d:2b:ee:4d:53:2c:24:ce:6e:9d:af:e3:38:d4:
b8:51:9a:e2:01:25:19:b6:e9:57:06:bf:a1:00:22:f9:e1:c4:
29:59:89:92:c6:82:48:1f:86:bf:a1:19:a0:fa:c7:8c:68:dc:
01:93:7f:30:14:aa:78:b3:77:17:b1:5e:fe:07:e9:0b:bc:90:
91:f5:8d:f3:eb:ff:f5:58:a1:0d:4e:ea:4e:0c:b5:66:3f:03:
ec:6c:7c:09:bd:16:44:72:ff:f8:82:d5:5e:f7:fd:90:f5:fc:
22:7b:e3:2e:98:37:ef:04:a2:28:4b:d5:51:86:00:18:28:92:
25:29:6d:82:4e:fd:32:ee:12:46:99:c7:a0:b3:0b:0d:76:bb:
e0:fe:47:c3:7b:6d:b3:3b:98:59:ce:9c:eb:88:5a:1d:b4:d1:
a7:c3:de:7d:a7:e0:ab:53:5f:ed:57:4a:9e:0a:4f:4a:eb:9e:
1c:55:2a:16:73:66:d6:10:c2:26:51:82:39:47:08:b0:52:f0:
88:55:bc:34:c1:07:6a:07:68:97:5b:6a:63:cc:50:c9:89:c1:
d5:6e:05:62:fe:54:1a:16:c3:d5:79:27:02:e0:3a:fe:14:d7:
06:b4:97:2d:8a:d1:a2:80:33:0b:3f:f8:ef:84:14:b1:69:54:
28:e7:3a:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaENYiju/HK6jTwmH+xffvVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkOGE1NTNlMDVmMDMxOWJmNDUyZmEyMDZjMTRjY2RhODcz
MDQ2NTQwHhcNMjUwNDMwMDEwMDIyWhcNMjUwNTAxMDEwMDIyWjAzMTEwLwYDVQQD
EygyMDE1ZDEwODI3NGE5NzQ0MDYzOTMwN2ViYTljYmZlNGNjMmFmMmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9MpNE9rJ0g7+Om4Jc8JDuJVjIGYT
ep7LWpgjdXlAi8vcPOhw/9BEyP2O56oN0DXbfqFPbxBk605QkhvuhQKXEvjzHpf/
U7Qg2i5tc6L5F6Lp11auLSD3bgmTYVoyQcgHrPzvq3jjNTGeq601eJ5r4xLv8cKO
jS6B/aCO5ird6HTAyP5vz3HN1n+RuLf32BPpeIhTI75XWO4FhklDibWKFy0CAn+8
M7xteC1kX7jYhDo3w7EX/SzY/Rf4QjjIGSzg2qSZeyowlM4rSshct8SgPOS3y5+O
usBH5dcNMdIHZ6LY7t242u4DQ1HQqe39QX3kpdCnzvuVkgASR4KH8slCJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCAV0QgnSpdEBjkwfrqcv+TMKvLoMB8GA1UdIwQY
MBaAFD2KVT4F8DGb9FL6IGwUzNqHMEZUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1Mjct
MGZiNDgyM2Y1Yjg3LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1MjctMGZiNDgyM2Y1Yjg3
LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc+pV000r
7k1TLCTObp2v4zjUuFGa4gElGbbpVwa/oQAi+eHEKVmJksaCSB+Gv6EZoPrHjGjc
AZN/MBSqeLN3F7Fe/gfpC7yQkfWN8+v/9VihDU7qTgy1Zj8D7Gx8Cb0WRHL/+ILV
Xvf9kPX8InvjLpg37wSiKEvVUYYAGCiSJSltgk79Mu4SRpnHoLMLDXa74P5Hw3tt
szuYWc6c64haHbTRp8Pefafgq1Nf7VdKngpPSuueHFUqFnNm1hDCJlGCOUcIsFLw
iFW8NMEHagdol1tqY8xQyYnB1W4FYv5UGhbD1XknAuA6/hTXBrSXLYrRooAzCz/4
74QUsWlUKOc6uw==
-----END CERTIFICATE-----
Generated at Wed Apr 30 05:25:45 2025 by rpki-client