Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json)
Hash identifier: oncHxbKvkIY1aEA61l4kG4LOdpNABeU9jrrxbcjN1Sc=
Subject key identifier: D8:CE:AA:18:84:57:62:F8:3D:BC:0E:F0:71:19:9D:84:21:A4:AF:15
Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Certificate serial: 01967D8E82688300CFA9A6E2ABE7136B0985
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
Manifest number: 1386
Signing time: Mon 28 Apr 2025 18:00:13 +0000
Manifest this update: Mon 28 Apr 2025 18:00:13 +0000
Manifest next update: Tue 29 Apr 2025 18:00:13 +0000
Files and hashes: 1: 0uVokjA0n-IKYM4dLwrHfcYoXtI.roa (hash: h5xCuikP/FGyLSLux1dmHiJam1SLoPwDAncSRikSHHc=)
2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: 0TQPwlWNVC9a2ZQpSBuBSzLo1yl8LJWWrXbngQgUIVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:8e:82:68:83:00:cf:a9:a6:e2:ab:e7:13:6b:09:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1
Validity
Not Before: Apr 28 18:00:13 2025 GMT
Not After : Apr 29 18:00:13 2025 GMT
Subject: CN=d8ceaa18845762f83dbc0ef071199d8421a4af15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3a:84:5c:7b:c2:8c:17:32:6a:2b:7c:2c:10:
34:b1:d7:d4:1b:5a:ed:c8:b0:39:b6:4a:aa:f6:df:
cc:43:27:f8:bf:ce:de:e5:61:e4:11:ba:34:2f:6f:
43:b8:a6:b7:11:b8:c9:09:b3:76:84:f9:b5:91:01:
46:83:05:f3:95:c9:9d:d4:bf:6c:91:4c:b5:79:c4:
21:31:e4:72:f5:28:0a:83:28:43:17:41:f9:d0:4f:
97:1f:f3:55:6a:ec:99:91:a3:e2:2c:62:2b:48:65:
9b:8f:0a:f7:c1:55:4d:7e:7d:c4:ae:5c:89:72:9f:
a8:ba:c4:27:57:84:54:66:81:85:b0:f0:00:f3:75:
e8:e8:e0:f8:7d:a3:fb:27:ed:ea:c5:7b:b1:62:b4:
96:c7:67:00:62:cf:10:e5:b5:ab:b7:2f:d0:1e:6a:
25:33:e6:81:ce:85:88:44:2f:b3:11:64:ad:d1:12:
1a:48:88:a8:f4:c4:d7:e5:d2:fd:43:b1:c3:c2:fa:
6a:77:54:92:b5:d1:75:a3:2b:5d:8d:1e:18:2a:29:
7e:c7:11:59:41:06:4a:55:11:56:61:d1:db:f6:c8:
8e:23:65:00:41:26:1b:8c:0c:e5:da:3e:fa:33:7d:
e5:57:4a:8b:cd:49:0f:8a:03:89:37:d8:40:bc:d9:
41:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:CE:AA:18:84:57:62:F8:3D:BC:0E:F0:71:19:9D:84:21:A4:AF:15
X509v3 Authority Key Identifier:
keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:9f:72:a2:b3:6d:6d:b2:85:72:18:a2:2b:4e:76:dc:d7:5b:
61:12:18:d3:15:60:b3:da:4e:47:82:37:b1:e8:72:82:6f:a4:
1f:c2:57:a9:4d:d3:72:fa:5c:23:cf:c8:20:dc:0b:58:88:02:
f1:b1:b4:a9:b6:f9:4f:68:f1:ca:d4:83:b1:63:0a:fe:a1:60:
08:b5:41:c1:9d:4f:36:e8:20:f5:c5:97:e0:88:1f:f5:49:d2:
72:cc:96:bb:65:ef:f1:83:06:2d:58:cf:8b:24:32:e9:dc:eb:
02:d5:12:82:89:a4:40:99:78:62:90:f7:fe:6d:e3:65:f7:d8:
d9:39:e5:a5:84:63:90:36:5f:97:3a:f7:06:41:a1:dc:99:e4:
7f:01:6f:d3:d3:0e:bd:d4:f1:56:11:6f:96:41:99:55:9c:a9:
1d:b5:88:67:2c:bf:f4:5b:e0:a3:69:76:16:04:1b:4f:74:06:
29:c4:78:f8:a9:bd:62:03:2f:62:85:a5:c6:3d:77:c8:6a:b6:
7b:c6:e9:c6:46:03:1d:bd:bb:56:e7:38:37:e3:d4:d2:3e:97:
48:dc:0a:9b:26:11:0c:9f:b9:42:73:73:89:a4:6d:d4:59:6b:
fb:67:85:1f:a3:ac:25:a9:3a:18:9c:a7:e5:45:f2:29:4e:73:
0b:b6:d1:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ9joJogwDPqabiq+cTawmFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxOTBmNWQ1ZjkyYTQ4NjM2MjE3N2E0MmIzZDVlZmRhMjBl
MjIwZTEwHhcNMjUwNDI4MTgwMDEzWhcNMjUwNDI5MTgwMDEzWjAzMTEwLwYDVQQD
EyhkOGNlYWExODg0NTc2MmY4M2RiYzBlZjA3MTE5OWQ4NDIxYTRhZjE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTqEXHvCjBcyait8LBA0sdfUG1rt
yLA5tkqq9t/MQyf4v87e5WHkEbo0L29DuKa3EbjJCbN2hPm1kQFGgwXzlcmd1L9s
kUy1ecQhMeRy9SgKgyhDF0H50E+XH/NVauyZkaPiLGIrSGWbjwr3wVVNfn3ErlyJ
cp+ousQnV4RUZoGFsPAA83Xo6OD4faP7J+3qxXuxYrSWx2cAYs8Q5bWrty/QHmol
M+aBzoWIRC+zEWSt0RIaSIio9MTX5dL9Q7HDwvpqd1SStdF1oytdjR4YKil+xxFZ
QQZKVRFWYdHb9siOI2UAQSYbjAzl2j76M33lV0qLzUkPigOJN9hAvNlBgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNjOqhiEV2L4PbwO8HEZnYQhpK8VMB8GA1UdIwQY
MBaAFHGQ9dX5KkhjYhd6QrPV79og4iDhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS82OGEwMTQtN2RiYS00NDMwLThkZGUt
MDFjODI3ZDZlMGZlLzEvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS82OGEwMTQtN2RiYS00NDMwLThkZGUtMDFjODI3ZDZlMGZl
LzEvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlp9yorNt
bbKFchiiK0523NdbYRIY0xVgs9pOR4I3sehygm+kH8JXqU3TcvpcI8/IINwLWIgC
8bG0qbb5T2jxytSDsWMK/qFgCLVBwZ1PNugg9cWX4Igf9UnScsyWu2Xv8YMGLVjP
iyQy6dzrAtUSgomkQJl4YpD3/m3jZffY2TnlpYRjkDZflzr3BkGh3JnkfwFv09MO
vdTxVhFvlkGZVZypHbWIZyy/9Fvgo2l2FgQbT3QGKcR4+Km9YgMvYoWlxj13yGq2
e8bpxkYDHb27Vuc4N+PU0j6XSNwKmyYRDJ+5QnNziaRt1Flr+2eFH6OsJak6GJyn
5UXyKU5zC7bRxQ==
-----END CERTIFICATE-----
Generated at Mon Apr 28 22:49:37 2025 by rpki-client