Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
File: to-PMlFKGD6Xejx982Rz1WJgxKQ.mft (raw, json)
Hash identifier: PbMvbjd0a5puGUo/y2XECDh1F42dbuvlE2qnmfePdUQ=
Subject key identifier: 1E:2B:C1:95:DA:D5:3A:EF:33:68:AF:95:87:DB:7C:0C:6B:F3:9C:C3
Authority key identifier: B6:8F:8F:32:51:4A:18:3E:97:7A:3C:7D:F3:64:73:D5:62:60:C4:A4
Certificate issuer: /CN=b68f8f32514a183e977a3c7df36473d56260c4a4
Certificate serial: 01968E82DEB7186B18FADCE3B019F07A48E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
Manifest number: 097D
Signing time: Fri 02 May 2025 01:01:03 +0000
Manifest this update: Fri 02 May 2025 01:01:03 +0000
Manifest next update: Sat 03 May 2025 01:01:03 +0000
Files and hashes: 1: tQOCxRT0aCE_1_qk1kC7RdCFOSc.roa (hash: n1WxYWjnXTsr8gKXroY5cgEaMb8X/+3xuLpCg/Qcbnk=)
2: to-PMlFKGD6Xejx982Rz1WJgxKQ.crl (hash: aVic2vfzf5g/ZUwwg9stXL/97twF/bxe+Z+w9DYYTno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8e:82:de:b7:18:6b:18:fa:dc:e3:b0:19:f0:7a:48:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68f8f32514a183e977a3c7df36473d56260c4a4
Validity
Not Before: May 2 01:01:03 2025 GMT
Not After : May 3 01:01:03 2025 GMT
Subject: CN=1e2bc195dad53aef3368af9587db7c0c6bf39cc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:61:45:8c:8c:2b:6f:66:ed:3d:9f:97:22:ab:
db:e1:ea:9d:29:b0:0a:d1:aa:f4:0e:21:db:dc:90:
c7:f6:43:41:a6:72:9f:7d:39:38:c1:ca:4c:fc:23:
d4:90:2b:4a:05:06:d3:4c:68:f3:b7:da:ee:d0:b8:
1a:8b:3d:df:69:b2:0d:08:9d:2a:ad:89:34:ca:3e:
f8:e1:29:d2:16:17:b0:0a:54:80:52:fb:b2:a1:46:
cc:2b:47:ef:5a:bc:e9:fa:dd:8a:46:0f:89:cc:ac:
f9:51:c8:4c:5c:4a:ee:d8:7c:ac:57:dd:65:ae:f6:
f4:1c:30:d2:d8:c0:d4:d9:20:2a:22:da:29:c9:2a:
dd:5b:97:ea:35:a3:2d:62:20:f4:59:b5:41:ed:3e:
3a:ab:49:4c:92:05:8e:aa:4e:0a:c3:03:7f:30:51:
f0:40:ff:9b:a1:e5:b2:bb:70:5c:bb:76:6f:fd:4b:
ee:70:d7:e3:0d:28:37:e6:57:8c:01:2a:c6:00:b2:
ae:66:16:32:31:c1:8d:f0:ed:1c:54:3c:6a:ac:96:
23:a7:66:f0:9b:54:c4:12:0f:f3:d2:28:f5:83:05:
69:86:b1:0c:b2:f4:91:30:e1:85:16:f1:81:16:9b:
e4:ab:6d:47:fa:1c:df:0b:c7:76:30:03:41:1d:82:
a6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:2B:C1:95:DA:D5:3A:EF:33:68:AF:95:87:DB:7C:0C:6B:F3:9C:C3
X509v3 Authority Key Identifier:
keyid:B6:8F:8F:32:51:4A:18:3E:97:7A:3C:7D:F3:64:73:D5:62:60:C4:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:e5:61:3e:93:a2:90:a8:8f:bb:63:1e:79:60:5c:31:75:ec:
9a:1a:06:f1:bd:17:2d:b3:7d:5a:d9:84:1d:7b:58:5a:c7:14:
40:a1:85:36:5a:8f:9a:5a:bd:f0:fa:1d:93:a3:5c:ed:71:b3:
18:00:4b:c5:be:50:41:6c:c5:f1:5a:a6:1d:e0:f1:94:d8:f0:
2a:b7:22:42:e4:43:11:5e:dc:8c:a0:fa:21:43:0a:bd:51:41:
de:db:38:67:81:2d:4e:0d:4e:db:4c:8a:a7:a8:9d:bb:b8:e3:
5b:12:04:b3:5d:94:42:a0:27:6f:ab:ac:67:e5:fc:c5:2d:0d:
55:6c:40:db:e3:3b:3a:a0:30:ef:25:0e:d5:17:6b:66:de:1d:
b7:13:59:08:ce:aa:f3:bb:21:51:b6:b1:24:60:7f:c8:41:92:
a1:56:5d:16:43:c3:ba:f3:a3:12:92:96:cb:5a:fe:cf:28:f4:
fe:c7:65:3d:0b:97:c8:02:dc:90:8c:76:e9:8e:c9:a0:1a:2f:
da:5d:ad:6b:b8:f5:bb:36:78:89:16:fd:6c:6c:b3:bc:70:2e:
54:32:cb:7a:27:de:8d:7c:1b:c7:72:1e:70:16:1f:97:e6:16:
79:30:9f:5e:8a:bd:46:2c:80:fd:f5:67:0b:59:66:8e:cd:0d:
27:29:4a:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaOgt63GGsY+tzjsBnwekjiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2OGY4ZjMyNTE0YTE4M2U5NzdhM2M3ZGYzNjQ3M2Q1NjI2
MGM0YTQwHhcNMjUwNTAyMDEwMTAzWhcNMjUwNTAzMDEwMTAzWjAzMTEwLwYDVQQD
EygxZTJiYzE5NWRhZDUzYWVmMzM2OGFmOTU4N2RiN2MwYzZiZjM5Y2MzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmFFjIwrb2btPZ+XIqvb4eqdKbAK
0ar0DiHb3JDH9kNBpnKffTk4wcpM/CPUkCtKBQbTTGjzt9ru0Lgaiz3fabINCJ0q
rYk0yj744SnSFhewClSAUvuyoUbMK0fvWrzp+t2KRg+JzKz5UchMXEru2HysV91l
rvb0HDDS2MDU2SAqItopySrdW5fqNaMtYiD0WbVB7T46q0lMkgWOqk4KwwN/MFHw
QP+boeWyu3Bcu3Zv/UvucNfjDSg35leMASrGALKuZhYyMcGN8O0cVDxqrJYjp2bw
m1TEEg/z0ij1gwVphrEMsvSRMOGFFvGBFpvkq21H+hzfC8d2MANBHYKmHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB4rwZXa1TrvM2ivlYfbfAxr85zDMB8GA1UdIwQY
MBaAFLaPjzJRShg+l3o8ffNkc9ViYMSkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdG8tUE1sRktHRDZYZWp4OTgyUnoxV0pneEtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8zODg3ZTQtYjU5OC00NWUzLThkODUt
MjIxMGVkOWQwODYxLzEvdG8tUE1sRktHRDZYZWp4OTgyUnoxV0pneEtRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8zODg3ZTQtYjU5OC00NWUzLThkODUtMjIxMGVkOWQwODYx
LzEvdG8tUE1sRktHRDZYZWp4OTgyUnoxV0pneEtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAteVhPpOi
kKiPu2MeeWBcMXXsmhoG8b0XLbN9WtmEHXtYWscUQKGFNlqPmlq98Podk6Nc7XGz
GABLxb5QQWzF8VqmHeDxlNjwKrciQuRDEV7cjKD6IUMKvVFB3ts4Z4EtTg1O20yK
p6idu7jjWxIEs12UQqAnb6usZ+X8xS0NVWxA2+M7OqAw7yUO1RdrZt4dtxNZCM6q
87shUbaxJGB/yEGSoVZdFkPDuvOjEpKWy1r+zyj0/sdlPQuXyALckIx26Y7JoBov
2l2ta7j1uzZ4iRb9bGyzvHAuVDLLeifejXwbx3IecBYfl+YWeTCfXoq9RiyA/fVn
C1lmjs0NJylKLw==
-----END CERTIFICATE-----
Generated at Fri May 2 07:08:44 2025 by rpki-client