Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: qZH+e4I3MZme85B9St1stcyti4bn74z9Kt8aMeEEl/c=
Subject key identifier: C2:3D:F7:13:9E:73:44:7D:5A:6B:F2:0E:4A:12:B6:30:90:85:C6:FC
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 01969416CBCC13F17EF201A3C5856F31A8E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 14ED
Signing time: Sat 03 May 2025 03:00:44 +0000
Manifest this update: Sat 03 May 2025 03:00:44 +0000
Manifest next update: Sun 04 May 2025 03:00:44 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: kPSCdpds12uB/1FqNY32iwRirEuiVcqX17K0wPZ1nyM=)
2: LSDLxpYG9vUS-ynb5NuKXC0hxwk.roa (hash: iU/GAJxLreLcqJkb0jyy5NFNWuEEVZB548A5w51V+6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 03:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:94:16:cb:cc:13:f1:7e:f2:01:a3:c5:85:6f:31:a8:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: May 3 03:00:44 2025 GMT
Not After : May 4 03:00:44 2025 GMT
Subject: CN=c23df7139e73447d5a6bf20e4a12b6309085c6fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:35:94:e8:d3:0c:97:f8:e2:7c:0f:fd:fb:d0:
6c:48:56:e6:2b:12:52:62:de:84:b2:4d:81:05:91:
f5:47:74:f8:b2:8d:b8:18:c2:13:55:c4:9b:0c:59:
27:b7:22:1d:00:60:f9:01:ab:15:a6:34:52:23:8c:
fc:0f:b5:9d:3d:87:34:96:c2:56:9a:21:22:1e:31:
f6:d6:39:b7:3b:e7:4b:80:07:21:20:8c:0d:0b:22:
e2:26:be:c6:de:c3:f5:d1:bb:06:04:63:ae:13:40:
38:5b:4e:6f:e3:0d:d9:83:98:29:19:dc:5f:26:4f:
36:d1:dc:23:31:a9:2b:39:16:4a:c9:04:76:86:2d:
a6:59:c8:be:3b:45:93:a9:97:26:83:27:c1:18:b4:
2c:cf:f0:af:bc:78:ac:e5:9c:62:83:04:ec:75:ad:
f1:65:a1:57:07:37:b9:26:7b:5d:78:98:63:a4:d0:
3b:c5:54:a9:dc:82:e2:4d:7d:ab:a5:00:c1:ff:d5:
4e:80:7f:14:c6:8d:da:5d:88:67:a4:d7:73:6a:b3:
5d:0b:5a:53:15:4f:c0:3a:62:93:e0:52:90:1d:ed:
ee:a8:a6:be:3a:ca:9c:21:bf:dd:03:a6:62:23:54:
75:b7:9b:5a:c5:92:44:87:2b:0c:e0:24:f4:f0:7b:
c7:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:3D:F7:13:9E:73:44:7D:5A:6B:F2:0E:4A:12:B6:30:90:85:C6:FC
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:c7:58:29:40:d1:d9:29:98:68:3e:7d:b0:f6:dc:cd:cd:67:
cb:3d:a6:ad:5b:82:fe:25:80:0d:3e:ce:a3:85:02:0b:9b:e1:
4d:18:5d:b9:90:6f:3d:58:be:e2:27:0f:ef:37:6e:64:f9:93:
d4:5d:f7:70:7f:ab:14:fb:d6:2f:cd:e7:b3:91:25:e6:29:48:
cc:74:fa:b4:99:88:a5:46:d4:93:f8:c6:d6:87:e9:52:a3:60:
ce:7a:fb:4e:3d:e2:dd:d2:05:d9:be:ad:ac:68:d4:29:7d:db:
ce:53:70:ab:bb:9f:cc:76:e7:64:96:16:6d:60:69:eb:87:bc:
df:40:ac:6d:99:f0:34:97:79:65:06:21:48:63:11:ec:86:de:
62:14:8f:ff:17:d1:6e:80:72:c3:d2:aa:f3:e6:9d:17:78:44:
bd:b2:2f:02:9f:08:2a:9d:e7:04:60:2b:85:d5:b9:95:9b:e1:
3f:14:b3:cf:22:65:34:59:ae:0c:30:c0:c1:aa:73:21:b4:d3:
60:d4:79:aa:2d:2d:58:b6:46:d5:05:1a:44:0f:15:1f:fd:2c:
f5:ac:99:ff:f4:bc:1c:c5:9d:52:64:bc:f5:72:84:6e:74:97:
10:06:d4:39:1d:2a:e2:1e:d4:12:07:e6:f0:ac:16:67:69:aa:
53:be:f0:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaUFsvME/F+8gGjxYVvMajlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyNThiM2E5NzQxYjQzMWQ3YmVjZDY0Mjg2YjllNmJjZTBl
OTc1ZGEwHhcNMjUwNTAzMDMwMDQ0WhcNMjUwNTA0MDMwMDQ0WjAzMTEwLwYDVQQD
EyhjMjNkZjcxMzllNzM0NDdkNWE2YmYyMGU0YTEyYjYzMDkwODVjNmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTWU6NMMl/jifA/9+9BsSFbmKxJS
Yt6Esk2BBZH1R3T4so24GMITVcSbDFkntyIdAGD5AasVpjRSI4z8D7WdPYc0lsJW
miEiHjH21jm3O+dLgAchIIwNCyLiJr7G3sP10bsGBGOuE0A4W05v4w3Zg5gpGdxf
Jk820dwjMakrORZKyQR2hi2mWci+O0WTqZcmgyfBGLQsz/CvvHis5ZxigwTsda3x
ZaFXBze5JntdeJhjpNA7xVSp3ILiTX2rpQDB/9VOgH8Uxo3aXYhnpNdzarNdC1pT
FU/AOmKT4FKQHe3uqKa+OsqcIb/dA6ZiI1R1t5taxZJEhysM4CT08HvHWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMI99xOec0R9WmvyDkoStjCQhcb8MB8GA1UdIwQY
MBaAFPJYs6l0G0Mde+zWQoa55rzg6XXaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8wOTVkNWYtMjY5My00MTgyLTkzOTct
Y2RhOTRmYjc5NmQxLzEvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi8wOTVkNWYtMjY5My00MTgyLTkzOTctY2RhOTRmYjc5NmQx
LzEvOGxpenFYUWJReDE3N05aQ2hybm12T0RwZGRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUcdYKUDR
2SmYaD59sPbczc1nyz2mrVuC/iWADT7Oo4UCC5vhTRhduZBvPVi+4icP7zduZPmT
1F33cH+rFPvWL83ns5El5ilIzHT6tJmIpUbUk/jG1ofpUqNgznr7Tj3i3dIF2b6t
rGjUKX3bzlNwq7ufzHbnZJYWbWBp64e830CsbZnwNJd5ZQYhSGMR7IbeYhSP/xfR
boByw9Kq8+adF3hEvbIvAp8IKp3nBGArhdW5lZvhPxSzzyJlNFmuDDDAwapzIbTT
YNR5qi0tWLZG1QUaRA8VH/0s9ayZ//S8HMWdUmS89XKEbnSXEAbUOR0q4h7UEgfm
8KwWZ2mqU77wSg==
-----END CERTIFICATE-----
Generated at Sat May 3 12:44:43 2025 by rpki-client