Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft
File: pPhDYAPTdgICa2VTF1XKj80xvtI.mft (raw, json)
Hash identifier: LWHaxPNeApek0BsqTkvs8eah8IW/bS9DwfcF2haT8k0=
Subject key identifier: 7C:A4:93:93:84:CE:EE:88:2D:7A:4A:4E:16:1D:30:CE:89:B0:AF:23
Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2
Certificate serial: 01967CB331BF907F7D26EDE026D1B9D3C028
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft
Manifest number: 152C
Signing time: Mon 28 Apr 2025 14:00:40 +0000
Manifest this update: Mon 28 Apr 2025 14:00:40 +0000
Manifest next update: Tue 29 Apr 2025 14:00:40 +0000
Files and hashes: 1: HMGH1OixlUbIZln6UuRHK_JoRTM.roa (hash: hIobepQhJMDuyYwWr9rOBNqOIvasbF7MFvvQPTjZKdk=)
2: PQ45AYuoXrKgjYd4a2nYqs6hfn8.roa (hash: 7Md1PLbDzWkJqH/gps7rzdw/URXMoRhj3yufH4c5pmc=)
3: XXKuildCsFJXdNyCwBMrowurkY0.roa (hash: NXW1f3EG3KW4h6xADEdnRgY4ZNLFSP48OU6WesEP2Jo=)
4: pPhDYAPTdgICa2VTF1XKj80xvtI.crl (hash: A1+orJ3bjdx+v69NVS4hzjtvpERS2NyWT738gabNX5o=)
5: pjx3rNTZc8zgxWfuwXBOXgS3sqk.roa (hash: WRGBj9YhrJQ6r6myfQ5P/R+NIt879XmbiNbiLcGeJP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 14:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:b3:31:bf:90:7f:7d:26:ed:e0:26:d1:b9:d3:c0:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2
Validity
Not Before: Apr 28 14:00:40 2025 GMT
Not After : Apr 29 14:00:40 2025 GMT
Subject: CN=7ca4939384ceee882d7a4a4e161d30ce89b0af23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b7:cf:fa:13:3e:00:09:8f:1b:c1:22:c6:6f:
91:6e:dc:b5:ac:13:40:24:1b:e8:b1:ca:d8:53:43:
bb:cc:67:6f:22:cc:92:20:43:61:26:40:8a:72:d5:
62:1b:63:9b:f0:d4:82:d4:52:d7:a3:93:61:14:93:
0c:cc:4f:c3:a7:6b:42:e7:6b:63:17:93:81:0c:e2:
ca:62:46:37:b5:6c:2e:f1:0e:f3:da:22:96:1f:59:
3d:29:75:5e:74:00:50:d9:0d:04:a3:81:97:eb:fd:
98:67:57:fa:b2:ba:e2:53:6a:f6:ba:44:48:85:19:
86:75:7b:9b:05:c7:84:92:1c:de:a2:61:cf:fa:38:
e6:54:5c:57:d3:db:c9:06:94:f2:02:ce:e8:b2:7f:
f1:67:a9:0f:9e:0d:d9:f1:74:2a:6e:8f:58:71:ad:
0e:51:22:dc:03:64:a1:e3:93:b4:d4:1b:6e:37:4a:
be:ce:39:47:25:d1:2a:45:21:10:da:b8:67:ed:de:
0a:27:96:f9:90:0e:05:2b:37:28:74:b9:0b:62:dc:
8d:d2:6e:ea:c7:5e:4d:f5:68:40:f9:85:1e:4c:d1:
b3:be:ed:2d:4f:04:a9:ca:af:4d:70:e4:1a:46:67:
14:70:2b:bc:a0:62:6f:1a:25:0e:22:7e:b2:fa:00:
28:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A4:93:93:84:CE:EE:88:2D:7A:4A:4E:16:1D:30:CE:89:B0:AF:23
X509v3 Authority Key Identifier:
keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:56:f5:4a:43:3c:36:90:ff:34:d4:b3:25:29:29:5a:1c:02:
76:51:c7:fd:04:83:62:5b:17:b8:60:db:94:71:8c:31:0a:e4:
d5:14:85:5b:ed:19:cb:ae:81:f3:1b:da:79:2c:64:e9:a5:c3:
91:73:15:88:44:3e:75:bb:69:0b:eb:93:b5:da:fc:d3:87:22:
24:34:70:b6:55:66:ff:e6:ef:b2:ed:73:51:2d:c7:01:9b:e8:
45:fb:cc:b2:a7:e5:f0:4e:95:53:02:c2:21:e3:dd:7e:ac:76:
ec:1d:47:f7:f7:e8:05:e1:21:b3:4c:31:c0:2a:58:a6:d8:c7:
45:6d:4a:85:50:cd:37:f3:ae:ef:af:e3:54:23:57:5d:ec:e6:
95:22:70:83:33:e3:93:53:d8:70:c0:42:df:34:a8:50:11:3e:
65:09:3c:ef:25:e0:9a:81:ad:7e:09:d1:f5:46:e6:4a:c3:ed:
d7:05:2d:1a:2d:48:fa:74:b8:a7:fb:67:ee:80:64:3f:61:be:
31:c6:45:db:3c:af:3c:1a:0e:fb:7e:c7:ee:08:f2:2a:7f:08:
70:a6:a1:71:cb:9a:ad:00:07:96:70:63:fc:3d:1b:7d:ca:74:
c5:54:ae:06:29:3a:71:a1:42:cb:c2:f2:23:e0:8e:bd:dc:4a:
d0:2f:3e:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ8szG/kH99Ju3gJtG508AoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0Zjg0MzYwMDNkMzc2MDIwMjZiNjU1MzE3NTVjYThmY2Qz
MWJlZDIwHhcNMjUwNDI4MTQwMDQwWhcNMjUwNDI5MTQwMDQwWjAzMTEwLwYDVQQD
Eyg3Y2E0OTM5Mzg0Y2VlZTg4MmQ3YTRhNGUxNjFkMzBjZTg5YjBhZjIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7fP+hM+AAmPG8Eixm+Rbty1rBNA
JBvoscrYU0O7zGdvIsySIENhJkCKctViG2Ob8NSC1FLXo5NhFJMMzE/Dp2tC52tj
F5OBDOLKYkY3tWwu8Q7z2iKWH1k9KXVedABQ2Q0Eo4GX6/2YZ1f6srriU2r2ukRI
hRmGdXubBceEkhzeomHP+jjmVFxX09vJBpTyAs7osn/xZ6kPng3Z8XQqbo9Yca0O
USLcA2Sh45O01BtuN0q+zjlHJdEqRSEQ2rhn7d4KJ5b5kA4FKzcodLkLYtyN0m7q
x15N9WhA+YUeTNGzvu0tTwSpyq9NcOQaRmcUcCu8oGJvGiUOIn6y+gAovwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHykk5OEzu6ILXpKThYdMM6JsK8jMB8GA1UdIwQY
MBaAFKT4Q2AD03YCAmtlUxdVyo/NMb7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFBoRFlBUFRkZ0lDYTJWVEYxWEtqODB4dnRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS81MTU2MDgtNTAxMi00YTQwLWIzMjQt
MjdiZjgzY2RlZDZiLzEvcFBoRFlBUFRkZ0lDYTJWVEYxWEtqODB4dnRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS81MTU2MDgtNTAxMi00YTQwLWIzMjQtMjdiZjgzY2RlZDZi
LzEvcFBoRFlBUFRkZ0lDYTJWVEYxWEtqODB4dnRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb1b1SkM8
NpD/NNSzJSkpWhwCdlHH/QSDYlsXuGDblHGMMQrk1RSFW+0Zy66B8xvaeSxk6aXD
kXMViEQ+dbtpC+uTtdr804ciJDRwtlVm/+bvsu1zUS3HAZvoRfvMsqfl8E6VUwLC
IePdfqx27B1H9/foBeEhs0wxwCpYptjHRW1KhVDNN/Ou76/jVCNXXezmlSJwgzPj
k1PYcMBC3zSoUBE+ZQk87yXgmoGtfgnR9UbmSsPt1wUtGi1I+nS4p/tn7oBkP2G+
McZF2zyvPBoO+37H7gjyKn8IcKahccuarQAHlnBj/D0bfcp0xVSuBik6caFCy8Ly
I+COvdxK0C8+FA==
-----END CERTIFICATE-----
Generated at Tue Apr 29 00:33:45 2025 by rpki-client