Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
File: uFsMinWJOk-OHvDZpNQUeNizMng.mft (raw, json)
Hash identifier: fj8MydGScOWbfcMkqeoB4w0OHaN7H/TLlLoBuuu2k0E=
Subject key identifier: BD:D5:F7:5E:A7:88:3C:53:F5:D5:1F:03:07:1D:3A:DB:D2:A4:A3:44
Authority key identifier: B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
Certificate issuer: /CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Certificate serial: 0196783146B0DCE5CCF4C4DD93DE27316DA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
Manifest number: 1466
Signing time: Sun 27 Apr 2025 17:00:17 +0000
Manifest this update: Sun 27 Apr 2025 17:00:17 +0000
Manifest next update: Mon 28 Apr 2025 17:00:17 +0000
Files and hashes: 1: FAbnnF69oHTmqk-_EL74zctuaA4.roa (hash: fltdyHSTKiTHvNl3z1Whswl3hhYadpjXzd/kAG+oHEc=)
2: aJV7GbLDrd2CQzyoG7J6OnTP5DY.roa (hash: RYvSIhl4EMxqFZiyrQ0zAL7ZWanzg67h6dO8KAffWY0=)
3: uFsMinWJOk-OHvDZpNQUeNizMng.crl (hash: Y1spsCyNNsXsK9yQzO+Et+iBegE/5TmWnaem/xU+0tY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:31:46:b0:dc:e5:cc:f4:c4:dd:93:de:27:31:6d:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Validity
Not Before: Apr 27 17:00:17 2025 GMT
Not After : Apr 28 17:00:17 2025 GMT
Subject: CN=bdd5f75ea7883c53f5d51f03071d3adbd2a4a344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:61:7d:10:5c:f7:cc:c9:4e:76:c9:b1:22:1e:
01:ce:b6:b1:87:bf:cf:d3:c5:5d:30:96:7c:85:ee:
a9:48:48:13:1a:ae:a1:6a:fe:da:88:fe:fc:64:8b:
bd:ac:c1:f8:7f:1f:b9:c1:4e:2a:f3:5c:52:9b:42:
48:4f:2d:d9:55:35:56:e3:64:c5:4b:95:00:c5:9a:
61:e5:c8:43:38:97:d9:23:c1:bf:89:d6:c2:0d:d4:
a6:8d:46:8d:33:a1:ea:0c:fa:43:03:ec:44:a8:94:
13:13:d9:da:2a:fd:40:7e:14:bc:c9:67:53:81:da:
fe:55:d0:01:fd:2d:3c:05:23:7f:3f:b3:04:d1:5c:
67:bc:5f:07:1b:4b:6c:63:64:33:12:6b:57:b1:72:
df:19:90:11:ac:60:f9:bc:42:47:dc:5f:bb:25:ab:
ad:73:f2:98:24:34:3b:84:f8:09:79:a4:d4:b7:71:
5f:f1:ae:2a:1b:e5:39:79:1f:d5:a1:44:16:9c:eb:
12:2c:f0:d7:f2:e1:54:39:4a:36:22:a9:14:e1:54:
98:72:b1:0c:e7:3f:bd:00:9e:80:6d:2d:ee:13:90:
a3:65:ab:cc:bd:fa:8e:4d:cc:ce:52:3b:6d:e5:5d:
00:54:ea:1e:b6:4e:f5:df:09:70:2b:a9:b5:65:fa:
b3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D5:F7:5E:A7:88:3C:53:F5:D5:1F:03:07:1D:3A:DB:D2:A4:A3:44
X509v3 Authority Key Identifier:
keyid:B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:15:83:5a:e4:b5:2e:50:ac:3a:9a:26:25:10:aa:99:37:e2:
89:22:c2:bd:c2:08:9d:9a:ce:9c:34:67:92:ff:05:61:d4:68:
2e:a6:a9:58:ca:62:11:77:cf:45:c7:5c:7b:e4:06:7b:df:71:
bb:ab:c3:36:22:18:f2:02:fa:a2:9f:9c:8b:2b:df:ed:9d:90:
1e:aa:a1:07:19:f6:bf:ba:67:cb:9e:04:0c:e1:c1:43:64:1f:
8d:34:9c:94:fd:fd:6a:b5:71:b9:5e:61:70:ff:63:76:8a:17:
d8:b5:ed:a9:bf:fc:67:b5:a3:b6:68:cb:4f:1f:50:42:2e:6e:
b6:a8:74:1e:7e:47:cd:7f:00:0c:c7:50:f7:76:c9:54:17:65:
42:ea:90:92:37:74:56:d7:96:e6:fb:5c:33:bc:77:98:1d:fb:
db:fc:e4:f9:bb:97:26:d3:b4:a2:5d:a9:c3:e5:46:43:88:d3:
40:0a:cb:ef:40:a0:38:49:ab:41:5c:43:cf:b7:df:00:86:58:
55:9e:56:39:9a:18:f4:f5:4e:61:22:31:23:10:a8:11:cb:b2:
eb:a5:45:fa:c8:55:16:7d:ce:03:fd:f6:51:2c:41:6a:b2:1d:
7d:93:b6:f6:d9:09:09:5e:e4:af:65:e2:b1:eb:73:1b:4a:81:
cd:8c:7f:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ4MUaw3OXM9MTdk94nMW2mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4NWIwYzhhNzU4OTNhNGY4ZTFlZjBkOWE0ZDQxNDc4ZDhi
MzMyNzgwHhcNMjUwNDI3MTcwMDE3WhcNMjUwNDI4MTcwMDE3WjAzMTEwLwYDVQQD
EyhiZGQ1Zjc1ZWE3ODgzYzUzZjVkNTFmMDMwNzFkM2FkYmQyYTRhMzQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2GF9EFz3zMlOdsmxIh4Bzraxh7/P
08VdMJZ8he6pSEgTGq6hav7aiP78ZIu9rMH4fx+5wU4q81xSm0JITy3ZVTVW42TF
S5UAxZph5chDOJfZI8G/idbCDdSmjUaNM6HqDPpDA+xEqJQTE9naKv1AfhS8yWdT
gdr+VdAB/S08BSN/P7ME0VxnvF8HG0tsY2QzEmtXsXLfGZARrGD5vEJH3F+7Jaut
c/KYJDQ7hPgJeaTUt3Ff8a4qG+U5eR/VoUQWnOsSLPDX8uFUOUo2IqkU4VSYcrEM
5z+9AJ6AbS3uE5CjZavMvfqOTczOUjtt5V0AVOoetk713wlwK6m1Zfqz6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL3V916niDxT9dUfAwcdOtvSpKNEMB8GA1UdIwQY
MBaAFLhbDIp1iTpPjh7w2aTUFHjYszJ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUZzTWluV0pPay1PSHZEWnBOUVVlTml6TW5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC84ODE5ZTItYzRlMy00YmNlLWE2MWMt
MzA1ZDQxZDUzYTY1LzEvdUZzTWluV0pPay1PSHZEWnBOUVVlTml6TW5nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC84ODE5ZTItYzRlMy00YmNlLWE2MWMtMzA1ZDQxZDUzYTY1
LzEvdUZzTWluV0pPay1PSHZEWnBOUVVlTml6TW5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqhWDWuS1
LlCsOpomJRCqmTfiiSLCvcIInZrOnDRnkv8FYdRoLqapWMpiEXfPRcdce+QGe99x
u6vDNiIY8gL6op+ciyvf7Z2QHqqhBxn2v7pny54EDOHBQ2QfjTSclP39arVxuV5h
cP9jdooX2LXtqb/8Z7WjtmjLTx9QQi5utqh0Hn5HzX8ADMdQ93bJVBdlQuqQkjd0
VteW5vtcM7x3mB372/zk+buXJtO0ol2pw+VGQ4jTQArL70CgOEmrQVxDz7ffAIZY
VZ5WOZoY9PVOYSIxIxCoEcuy66VF+shVFn3OA/32USxBarIdfZO29tkJCV7kr2Xi
setzG0qBzYx/og==
-----END CERTIFICATE-----
Generated at Sun Apr 27 19:36:38 2025 by rpki-client