Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
File: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft (raw, json)
Hash identifier: bvi0M0umgOVA+uYjTJ3Q2fsN17ySL0qR9yTWpyu5irI=
Subject key identifier: 37:D6:A6:79:FA:39:8F:E7:61:95:36:23:CC:4C:DC:8D:1E:8D:31:73
Authority key identifier: 94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6
Certificate issuer: /CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6
Certificate serial: 019691156165B1E99BDBD04B05A65EE1BF35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
Manifest number: 11B7
Signing time: Fri 02 May 2025 13:00:19 +0000
Manifest this update: Fri 02 May 2025 13:00:19 +0000
Manifest next update: Sat 03 May 2025 13:00:19 +0000
Files and hashes: 1: GkmNRez_B8q96uaVOleqThEPoEs.roa (hash: aNQGHPeLClAe2Gmzc0jqm+MRXJ2xuLHjsljQiK1K4qw=)
2: lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl (hash: DRGHkHN2b/o+w50HH+9G/aLN7hfJoaXG7FDv/e4fp2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:91:15:61:65:b1:e9:9b:db:d0:4b:05:a6:5e:e1:bf:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94fa6c4299321dc5fc91fc7963aa51487e4af5e6
Validity
Not Before: May 2 13:00:19 2025 GMT
Not After : May 3 13:00:19 2025 GMT
Subject: CN=37d6a679fa398fe761953623cc4cdc8d1e8d3173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:83:db:0a:62:52:ce:13:2d:d2:d1:d0:dd:f5:
e8:af:18:98:cb:03:a5:3b:a1:e4:5c:0e:9e:9a:5f:
24:5c:98:63:4f:cc:af:b8:50:5f:df:8d:74:37:03:
7f:1c:83:48:80:e3:64:93:89:dc:7b:8b:29:ea:d9:
d9:3b:7d:97:01:b5:15:3a:79:2e:6a:d0:69:bf:2f:
2e:25:30:29:33:f3:8b:51:2f:03:55:e9:66:34:57:
6c:ed:26:19:da:dc:b2:cc:19:3e:25:93:7a:74:de:
2a:c3:c4:b9:92:e0:57:cb:f9:cd:6b:75:32:60:66:
bc:8a:4a:37:c2:6f:13:1e:7f:d7:f9:af:39:f0:4b:
7b:83:37:46:a1:9d:81:24:ef:f4:49:a8:76:7c:6f:
64:db:e1:a1:1b:76:fb:b1:00:73:e7:17:61:46:ef:
56:12:0e:aa:ba:20:57:bb:fb:38:ce:62:25:ff:e7:
3c:2a:87:e4:3b:64:d5:49:fd:63:ab:5a:04:f3:8d:
5c:6b:1a:38:65:b8:84:4b:3c:ca:62:1e:50:1d:48:
57:3e:cd:6d:45:a6:08:32:4a:d7:48:bf:ba:5c:ca:
45:09:f8:81:66:8a:dd:47:9b:a5:38:6d:89:ff:38:
8b:7e:9d:21:12:d5:6f:fa:96:35:00:6d:c5:10:0f:
e4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D6:A6:79:FA:39:8F:E7:61:95:36:23:CC:4C:DC:8D:1E:8D:31:73
X509v3 Authority Key Identifier:
keyid:94:FA:6C:42:99:32:1D:C5:FC:91:FC:79:63:AA:51:48:7E:4A:F5:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/43d255-284a-468f-8b6e-fb1e9db0c388/1/lPpsQpkyHcX8kfx5Y6pRSH5K9eY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:42:f2:3a:c9:2f:d1:93:19:68:2a:e5:ea:ef:11:70:80:f5:
25:7a:5c:33:2f:04:9e:b4:3e:3e:92:9b:32:ed:36:a5:b4:6d:
45:47:9c:40:63:6d:2b:c2:16:68:43:11:67:fb:f0:84:e0:60:
ef:20:94:11:45:b6:5e:b6:37:4b:2b:73:fa:37:09:94:03:ed:
eb:fa:75:e4:98:43:14:f6:ea:f6:be:bd:64:10:24:b0:24:3a:
9c:54:87:19:1e:6b:ab:e0:6e:84:89:80:6e:73:ee:e3:12:36:
39:6b:9f:be:3f:a9:b4:86:ea:95:f5:96:2c:16:89:cf:29:e8:
28:30:e8:8d:f0:0c:c9:17:a4:c4:da:50:f6:fb:a4:78:98:e6:
6c:8e:dd:8c:04:65:ed:a6:43:75:b7:ae:ec:79:ec:cf:59:07:
49:ea:a0:7e:9b:c5:c0:a2:e1:23:04:00:af:6e:de:c9:5a:14:
a0:ed:bc:f5:f4:f2:aa:8e:a3:56:63:d8:b9:e0:a7:a2:83:33:
66:f7:63:81:d3:68:fc:f0:a7:b9:e9:ba:51:52:d1:a2:bb:04:
f6:9c:a2:82:ef:5b:d8:62:80:ec:10:64:1e:63:cd:92:0e:88:
c7:02:57:8b:3e:c2:4d:44:dd:dc:53:13:f6:5a:2b:41:19:89:
59:c8:6f:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaRFWFlsemb29BLBaZe4b81MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ZmE2YzQyOTkzMjFkYzVmYzkxZmM3OTYzYWE1MTQ4N2U0
YWY1ZTYwHhcNMjUwNTAyMTMwMDE5WhcNMjUwNTAzMTMwMDE5WjAzMTEwLwYDVQQD
EygzN2Q2YTY3OWZhMzk4ZmU3NjE5NTM2MjNjYzRjZGM4ZDFlOGQzMTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAroPbCmJSzhMt0tHQ3fXorxiYywOl
O6HkXA6eml8kXJhjT8yvuFBf3410NwN/HINIgONkk4nce4sp6tnZO32XAbUVOnku
atBpvy8uJTApM/OLUS8DVelmNFds7SYZ2tyyzBk+JZN6dN4qw8S5kuBXy/nNa3Uy
YGa8iko3wm8THn/X+a858Et7gzdGoZ2BJO/0Sah2fG9k2+GhG3b7sQBz5xdhRu9W
Eg6quiBXu/s4zmIl/+c8KofkO2TVSf1jq1oE841caxo4ZbiESzzKYh5QHUhXPs1t
RaYIMkrXSL+6XMpFCfiBZordR5ulOG2J/ziLfp0hEtVv+pY1AG3FEA/kRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDfWpnn6OY/nYZU2I8xM3I0ejTFzMB8GA1UdIwQY
MBaAFJT6bEKZMh3F/JH8eWOqUUh+SvXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFBwc1Fwa3lIY1g4a2Z4NVk2cFJTSDVLOWVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC80M2QyNTUtMjg0YS00NjhmLThiNmUt
ZmIxZTlkYjBjMzg4LzEvbFBwc1Fwa3lIY1g4a2Z4NVk2cFJTSDVLOWVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC80M2QyNTUtMjg0YS00NjhmLThiNmUtZmIxZTlkYjBjMzg4
LzEvbFBwc1Fwa3lIY1g4a2Z4NVk2cFJTSDVLOWVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE0LyOskv
0ZMZaCrl6u8RcID1JXpcMy8EnrQ+PpKbMu02pbRtRUecQGNtK8IWaEMRZ/vwhOBg
7yCUEUW2XrY3Sytz+jcJlAPt6/p15JhDFPbq9r69ZBAksCQ6nFSHGR5rq+BuhImA
bnPu4xI2OWufvj+ptIbqlfWWLBaJzynoKDDojfAMyRekxNpQ9vukeJjmbI7djARl
7aZDdbeu7Hnsz1kHSeqgfpvFwKLhIwQAr27eyVoUoO289fTyqo6jVmPYueCnooMz
ZvdjgdNo/PCnuem6UVLRorsE9pyigu9b2GKA7BBkHmPNkg6IxwJXiz7CTUTd3FMT
9lorQRmJWchvyA==
-----END CERTIFICATE-----
Generated at Fri May 2 16:31:19 2025 by rpki-client