Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
File: t1ELZRv73wnISGqBNiAABb77SX0.mft (raw, json)
Hash identifier: wIImU5820TVWcv01oKfNN6MB/WExdKD4KlsjfNZfe3M=
Subject key identifier: 94:0C:3F:45:CE:66:C6:9A:D3:1F:BB:DD:B4:3E:8C:14:FB:AB:83:EE
Authority key identifier: B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
Certificate issuer: /CN=b7510b651bfbdf09c8486a8136200005befb497d
Certificate serial: 0196756713A190E03915C95B7E69F7C00094
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
Manifest number: 0B8E
Signing time: Sun 27 Apr 2025 04:00:11 +0000
Manifest this update: Sun 27 Apr 2025 04:00:11 +0000
Manifest next update: Mon 28 Apr 2025 04:00:11 +0000
Files and hashes: 1: Jiow1t-Pk1ZOtI6Aqeh1RaSW3p4.roa (hash: DYR6jlP51Fl43ZL0B6qnJrGHJROyqbTA9KSRORts0Uo=)
2: t1ELZRv73wnISGqBNiAABb77SX0.crl (hash: PSvg4/e1yJ7GwPAaI5mkYDRrQltzru+/CkAF4pfNlYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:67:13:a1:90:e0:39:15:c9:5b:7e:69:f7:c0:00:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7510b651bfbdf09c8486a8136200005befb497d
Validity
Not Before: Apr 27 04:00:11 2025 GMT
Not After : Apr 28 04:00:11 2025 GMT
Subject: CN=940c3f45ce66c69ad31fbbddb43e8c14fbab83ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7b:2b:e0:50:b6:41:97:12:fe:24:df:c0:99:
ed:ee:66:4e:ca:e5:45:d2:23:d3:89:8e:63:9a:73:
06:e1:50:04:14:35:53:7d:c8:d3:26:98:2d:e4:95:
d0:dc:88:55:d4:aa:84:88:1b:3e:42:9c:5e:19:c1:
2b:77:f2:48:d5:7b:b2:85:18:61:2a:48:f7:e0:a3:
6d:05:a2:91:d6:ec:49:33:e6:04:14:96:9e:45:79:
f8:15:9d:da:6e:ad:c4:02:96:fe:fc:f3:d1:af:1d:
87:98:a2:94:63:46:61:7c:6c:6f:79:68:4b:46:22:
3a:71:f5:62:dd:7a:d8:f4:34:03:3f:5b:62:3f:51:
3e:af:84:eb:14:fe:88:3f:f2:32:e3:03:2e:a4:e0:
77:66:6d:87:95:4a:e0:09:bf:f7:17:b7:c4:43:cd:
84:a5:59:d1:8e:13:76:10:e1:0a:ab:fd:9e:26:9f:
a4:67:93:04:e8:bb:fc:4b:05:79:6d:7f:83:b2:da:
95:19:c6:2d:41:94:44:cf:3c:2d:4d:8f:52:40:08:
70:5d:be:d0:34:1a:63:fe:3a:4e:5f:f0:d7:aa:30:
b5:df:d3:45:e6:f3:54:d7:e3:cd:e7:0a:d4:1b:77:
15:b5:d1:ca:ac:db:66:b6:39:65:24:6b:9d:38:f9:
c3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:0C:3F:45:CE:66:C6:9A:D3:1F:BB:DD:B4:3E:8C:14:FB:AB:83:EE
X509v3 Authority Key Identifier:
keyid:B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:a2:b1:02:4b:59:17:0b:0e:ac:80:5c:04:3b:e3:87:42:41:
23:ca:c3:b0:5b:88:77:11:fa:aa:09:9d:be:53:d8:cb:d2:22:
20:10:25:7d:72:70:d5:ac:85:c6:e4:17:f9:c0:44:4f:a5:ad:
43:5a:0a:50:d9:6a:b6:32:73:12:d7:aa:48:d6:67:16:b9:24:
9c:39:f6:52:27:b3:78:82:05:20:76:fe:94:06:d5:d4:96:59:
57:5a:12:45:fa:5e:aa:3a:2e:52:e1:ff:4f:f0:24:32:b1:d0:
89:50:0d:b3:df:d1:ed:e2:26:9c:d4:ab:83:1d:38:9a:ca:74:
7e:bc:57:5b:03:2c:0c:f5:90:68:4b:cf:b9:ff:b9:04:8a:5b:
da:d7:47:c2:d8:91:11:70:ad:20:af:e5:75:e8:0f:08:1e:30:
a1:d0:d3:84:d0:5f:ea:fa:55:36:29:cd:0e:b4:8f:0c:9f:4f:
de:53:5c:c6:34:df:e7:af:83:5f:a2:97:85:66:50:d7:dd:ef:
0d:5a:44:d9:2a:83:7e:67:94:2f:d5:ea:c8:cc:b9:32:5e:59:
d7:8c:bb:9e:d3:50:18:9a:17:03:ad:ea:fd:e3:80:79:93:d4:
96:93:53:80:84:ae:49:bd:1f:a6:f0:cd:eb:61:a5:73:f0:68:
5d:b0:ef:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ1ZxOhkOA5Fclbfmn3wACUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NTEwYjY1MWJmYmRmMDljODQ4NmE4MTM2MjAwMDA1YmVm
YjQ5N2QwHhcNMjUwNDI3MDQwMDExWhcNMjUwNDI4MDQwMDExWjAzMTEwLwYDVQQD
Eyg5NDBjM2Y0NWNlNjZjNjlhZDMxZmJiZGRiNDNlOGMxNGZiYWI4M2VlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXsr4FC2QZcS/iTfwJnt7mZOyuVF
0iPTiY5jmnMG4VAEFDVTfcjTJpgt5JXQ3IhV1KqEiBs+QpxeGcErd/JI1XuyhRhh
Kkj34KNtBaKR1uxJM+YEFJaeRXn4FZ3abq3EApb+/PPRrx2HmKKUY0ZhfGxveWhL
RiI6cfVi3XrY9DQDP1tiP1E+r4TrFP6IP/Iy4wMupOB3Zm2HlUrgCb/3F7fEQ82E
pVnRjhN2EOEKq/2eJp+kZ5ME6Lv8SwV5bX+DstqVGcYtQZREzzwtTY9SQAhwXb7Q
NBpj/jpOX/DXqjC139NF5vNU1+PN5wrUG3cVtdHKrNtmtjllJGudOPnDDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJQMP0XOZsaa0x+73bQ+jBT7q4PuMB8GA1UdIwQY
MBaAFLdRC2Ub+98JyEhqgTYgAAW++0l9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFFTFpSdjczd25JU0dxQk5pQUFCYjc3U1gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iZmYxYzMtMDA4NC00MmJiLWJjZjct
MmNiODg3N2ZkOTcwLzEvdDFFTFpSdjczd25JU0dxQk5pQUFCYjc3U1gwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9iZmYxYzMtMDA4NC00MmJiLWJjZjctMmNiODg3N2ZkOTcw
LzEvdDFFTFpSdjczd25JU0dxQk5pQUFCYjc3U1gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkaKxAktZ
FwsOrIBcBDvjh0JBI8rDsFuIdxH6qgmdvlPYy9IiIBAlfXJw1ayFxuQX+cBET6Wt
Q1oKUNlqtjJzEteqSNZnFrkknDn2UiezeIIFIHb+lAbV1JZZV1oSRfpeqjouUuH/
T/AkMrHQiVANs9/R7eImnNSrgx04msp0frxXWwMsDPWQaEvPuf+5BIpb2tdHwtiR
EXCtIK/ldegPCB4wodDThNBf6vpVNinNDrSPDJ9P3lNcxjTf56+DX6KXhWZQ193v
DVpE2SqDfmeUL9XqyMy5Ml5Z14y7ntNQGJoXA63q/eOAeZPUlpNTgISuSb0fpvDN
62Glc/BoXbDvtw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 07:10:56 2025 by rpki-client