Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
File: XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft (raw, json)
Hash identifier: uC3URjTx+YnPGsTzXwLufR0LktpfAQn1T6i66cYvgsU=
Subject key identifier: 16:DB:04:56:8C:E0:C4:42:59:18:BB:E9:38:57:9E:6F:3E:E8:C2:1C
Authority key identifier: 5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
Certificate issuer: /CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Certificate serial: 01967CB2C7CBE6F44773F4172C66341A0A98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
Manifest number: 0C8F
Signing time: Mon 28 Apr 2025 14:00:13 +0000
Manifest this update: Mon 28 Apr 2025 14:00:13 +0000
Manifest next update: Tue 29 Apr 2025 14:00:13 +0000
Files and hashes: 1: 1-EeSCCOFCUoz0VplGP1Lo0h-9As.roa (hash: ZLnUsrTQcRzljBuufN+eacOU/oxAjJXf2wRzESRepgg=)
2: XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl (hash: Q42azh6q0IwgrcIPKB5Lz3FVuQu6f9dWVYSQsPeI6jU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 14:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:b2:c7:cb:e6:f4:47:73:f4:17:2c:66:34:1a:0a:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Validity
Not Before: Apr 28 14:00:13 2025 GMT
Not After : Apr 29 14:00:13 2025 GMT
Subject: CN=16db04568ce0c4425918bbe938579e6f3ee8c21c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:fb:6c:d3:49:ac:92:b5:39:30:d9:f8:ea:5c:
0a:9a:15:35:e7:0d:ab:06:da:29:c1:5b:14:6d:fe:
49:17:1e:ae:b7:7b:0b:14:67:df:f9:6a:52:31:15:
5a:fe:90:ab:87:be:16:7a:33:82:ec:da:57:1c:58:
4e:2f:84:5e:28:5a:d9:c3:a4:aa:31:39:47:4e:ee:
55:59:33:a2:19:28:f3:62:9c:da:18:67:a3:3c:fd:
01:1c:be:dc:23:53:6e:74:4a:a4:89:e5:3e:4c:72:
2a:6b:a1:7a:b4:a9:8d:fe:16:37:02:41:6a:c2:d6:
74:28:1d:ef:86:94:6a:e7:16:05:76:ad:b1:ef:59:
f9:3e:81:16:d5:b6:ea:0f:cb:98:8d:3d:b9:14:a5:
67:de:40:01:65:d2:b3:65:d3:67:38:27:c8:df:b6:
88:84:ab:b0:be:23:78:ef:d0:47:3b:27:80:79:28:
f9:cc:cb:6c:cf:d5:ba:a8:12:fe:2e:6a:51:35:92:
c2:59:1a:25:63:89:21:42:7c:35:ee:fb:eb:3c:7d:
c1:19:e7:3b:10:b5:d4:54:52:0d:39:2e:2a:b2:f2:
a7:60:6c:0e:ad:be:b2:a4:dc:ee:f4:06:7d:25:1d:
7e:99:bf:7e:ff:81:23:78:81:50:08:94:05:f3:73:
45:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:DB:04:56:8C:E0:C4:42:59:18:BB:E9:38:57:9E:6F:3E:E8:C2:1C
X509v3 Authority Key Identifier:
keyid:5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:86:e9:85:e4:19:50:5c:c9:a0:3a:b1:be:83:61:26:a4:28:
50:8d:dc:ca:bc:45:b1:f3:6c:05:12:3e:3a:ce:09:1e:5d:eb:
31:24:63:99:9d:6e:72:21:ba:35:16:56:ed:61:20:bc:36:f1:
fb:20:1f:af:a2:2d:6c:6c:90:cd:92:00:21:dd:ed:9e:cf:03:
21:96:92:64:d2:73:ef:5d:85:e8:bc:96:0b:ff:82:d6:fa:f6:
e5:79:68:16:cf:5f:74:12:d7:cd:7a:a0:a6:36:0f:74:92:a9:
16:2d:68:95:26:d4:e2:6a:42:52:e7:b8:fc:cd:07:53:31:83:
17:cb:08:e7:bd:df:34:8b:b3:26:f2:8e:41:dd:72:21:e0:8e:
02:e5:cb:87:25:e8:4a:1b:ab:a9:70:26:1e:1c:8d:85:98:ac:
55:22:21:eb:44:93:17:57:04:28:7f:04:3a:bb:fa:20:4b:4e:
62:ae:df:dc:18:42:2b:55:1e:5f:07:6d:e2:c0:0c:a0:ae:4a:
ec:1e:b2:2e:97:2f:6d:33:2e:74:d9:80:fd:d8:87:4c:d2:aa:
5e:04:e7:2f:a6:59:d6:11:c9:12:e3:23:99:de:b8:3d:b1:2d:
50:d8:f1:1f:2a:6a:32:6a:e5:fa:2f:f4:48:95:84:71:bd:2b:
b0:71:c3:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ8ssfL5vRHc/QXLGY0GgqYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZDM3OWNlZGNkYzIwZjA4NzVjNGIwOGI5NGI0MTE2MWIz
ZThjMDMwHhcNMjUwNDI4MTQwMDEzWhcNMjUwNDI5MTQwMDEzWjAzMTEwLwYDVQQD
EygxNmRiMDQ1NjhjZTBjNDQyNTkxOGJiZTkzODU3OWU2ZjNlZThjMjFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4fts00mskrU5MNn46lwKmhU15w2r
BtopwVsUbf5JFx6ut3sLFGff+WpSMRVa/pCrh74WejOC7NpXHFhOL4ReKFrZw6Sq
MTlHTu5VWTOiGSjzYpzaGGejPP0BHL7cI1NudEqkieU+THIqa6F6tKmN/hY3AkFq
wtZ0KB3vhpRq5xYFdq2x71n5PoEW1bbqD8uYjT25FKVn3kABZdKzZdNnOCfI37aI
hKuwviN479BHOyeAeSj5zMtsz9W6qBL+LmpRNZLCWRolY4khQnw17vvrPH3BGec7
ELXUVFINOS4qsvKnYGwOrb6ypNzu9AZ9JR1+mb9+/4EjeIFQCJQF83NFTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBbbBFaM4MRCWRi76ThXnm8+6MIcMB8GA1UdIwQY
MBaAFFzTec7c3CDwh1xLCLlLQRYbPowDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE5ONXp0emNJUENIWEVzSXVVdEJGaHMtakFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9mM2NjYTQtZjZiZi00NzM0LWFiYmQt
MDk2NDQ2NGMxNzUxLzEvWE5ONXp0emNJUENIWEVzSXVVdEJGaHMtakFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS9mM2NjYTQtZjZiZi00NzM0LWFiYmQtMDk2NDQ2NGMxNzUx
LzEvWE5ONXp0emNJUENIWEVzSXVVdEJGaHMtakFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOobpheQZ
UFzJoDqxvoNhJqQoUI3cyrxFsfNsBRI+Os4JHl3rMSRjmZ1uciG6NRZW7WEgvDbx
+yAfr6ItbGyQzZIAId3tns8DIZaSZNJz712F6LyWC/+C1vr25XloFs9fdBLXzXqg
pjYPdJKpFi1olSbU4mpCUue4/M0HUzGDF8sI573fNIuzJvKOQd1yIeCOAuXLhyXo
ShurqXAmHhyNhZisVSIh60STF1cEKH8EOrv6IEtOYq7f3BhCK1UeXwdt4sAMoK5K
7B6yLpcvbTMudNmA/diHTNKqXgTnL6ZZ1hHJEuMjmd64PbEtUNjxHypqMmrl+i/0
SJWEcb0rsHHDMA==
-----END CERTIFICATE-----
Generated at Tue Apr 29 00:40:17 2025 by rpki-client