Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
File: 0krezYS7F0i9NbmezqRncuAeyTU.mft (raw, json)
Hash identifier: YwYOuLMZVCV0fCDTKlmE2gITYOV1wPSwWrcrRmgt7Xk=
Subject key identifier: 5E:EE:0C:BB:FF:1C:0A:F6:82:51:2C:AD:A8:45:47:D6:ED:5B:EE:21
Authority key identifier: D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
Certificate issuer: /CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Certificate serial: 01968DDDE1E5EFA3318AEB734F47AAC8FC78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
Manifest number: 151E
Signing time: Thu 01 May 2025 22:00:50 +0000
Manifest this update: Thu 01 May 2025 22:00:50 +0000
Manifest next update: Fri 02 May 2025 22:00:50 +0000
Files and hashes: 1: 0krezYS7F0i9NbmezqRncuAeyTU.crl (hash: yPDs8M2/vLWoRmTr8/mOj05Lu5Br97n+pJ+q7tWEiyQ=)
2: UON5AT9SXUWq39L68I_y2_ZUikk.roa (hash: JwjZjFuzIaj/y6AQtmJH9bJqGEr4cg/qlCiSjx+pXxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 22:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8d:dd:e1:e5:ef:a3:31:8a:eb:73:4f:47:aa:c8:fc:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Validity
Not Before: May 1 22:00:50 2025 GMT
Not After : May 2 22:00:50 2025 GMT
Subject: CN=5eee0cbbff1c0af682512cada84547d6ed5bee21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a5:7b:56:86:5e:63:a4:e8:02:1e:12:f6:46:
f6:6a:14:c8:fe:b5:fe:b0:3e:73:63:f4:1f:45:fd:
c0:68:d7:2b:a7:95:f6:e5:05:7e:78:ba:cb:50:12:
e0:7d:05:a5:76:33:13:b2:5d:67:6c:22:a3:87:aa:
16:d1:ca:32:67:ad:35:16:f6:29:7a:05:6e:4c:4a:
cb:18:17:bb:9f:91:89:f2:c5:5d:64:45:28:8f:46:
ea:2e:ff:47:b0:22:a4:b8:2c:06:db:84:53:bf:e5:
31:ec:e0:3b:08:c7:1a:9c:34:06:20:5e:29:8d:30:
aa:75:e2:9f:2a:ba:7b:8b:6c:8d:64:f6:20:82:1c:
db:36:0f:86:19:76:2b:fb:df:a2:83:03:d6:85:68:
a5:ea:38:eb:af:f9:eb:7a:80:7f:9f:b6:07:c0:52:
92:b0:9a:31:1a:1a:6b:a7:9d:41:c0:39:2f:fa:fd:
30:9b:91:93:10:fc:01:27:76:d2:51:47:a6:a9:e4:
ec:6f:d7:6a:46:e5:dd:f0:db:99:7f:7f:60:fa:7a:
30:ae:bf:fb:a1:1b:89:9d:d6:cc:a5:54:96:4f:f4:
d6:d6:f9:a0:5b:1b:03:3a:87:03:14:97:04:e9:34:
5c:15:3b:ab:cb:b5:f2:88:99:e5:a9:d8:2f:af:98:
b5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:EE:0C:BB:FF:1C:0A:F6:82:51:2C:AD:A8:45:47:D6:ED:5B:EE:21
X509v3 Authority Key Identifier:
keyid:D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:49:5c:36:89:68:2a:79:5a:93:83:b5:b0:2a:36:cb:4f:25:
5b:0a:df:fd:9f:d1:30:ce:72:59:02:5f:b6:2a:1f:ae:67:75:
49:46:e6:03:a2:74:57:5b:8f:9a:9b:76:7e:1a:b3:c3:c9:5e:
32:85:1c:a0:1d:a2:cf:83:dc:ad:05:48:59:fa:de:13:85:a4:
8d:98:19:e1:bc:b3:bd:2f:5b:92:dd:f3:d2:09:dc:54:83:b1:
6b:78:d4:9b:13:b8:6c:f7:3f:6f:ae:af:d1:a1:77:0f:f4:cd:
0d:15:f1:2f:7d:80:41:11:b2:8d:84:16:0e:9f:3b:6d:eb:d6:
53:c8:0f:f9:a0:e8:d8:51:fe:47:b4:c3:03:eb:04:08:f2:b7:
1b:61:56:9f:b9:91:d7:07:8c:f3:27:6f:01:ac:f5:d7:03:3e:
b6:10:3d:f1:43:0b:36:b0:18:e9:a0:37:58:7c:18:08:f9:a0:
09:b8:e5:30:32:10:54:9a:17:dd:53:fd:fe:23:61:f8:af:b6:
91:c7:48:62:b5:ef:51:2c:57:09:7f:54:da:87:de:d0:07:13:
53:41:52:da:1a:09:1d:a8:d8:5d:58:e2:d7:8b:14:48:83:73:
4d:cf:bf:cb:f0:86:68:8f:79:ca:e3:ee:df:c7:0c:37:cd:00:
7a:54:81:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaN3eHl76MxiutzT0eqyPx4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNGFkZWNkODRiYjE3NDhiZDM1Yjk5ZWNlYTQ2NzcyZTAx
ZWM5MzUwHhcNMjUwNTAxMjIwMDUwWhcNMjUwNTAyMjIwMDUwWjAzMTEwLwYDVQQD
Eyg1ZWVlMGNiYmZmMWMwYWY2ODI1MTJjYWRhODQ1NDdkNmVkNWJlZTIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6V7VoZeY6ToAh4S9kb2ahTI/rX+
sD5zY/QfRf3AaNcrp5X25QV+eLrLUBLgfQWldjMTsl1nbCKjh6oW0coyZ601FvYp
egVuTErLGBe7n5GJ8sVdZEUoj0bqLv9HsCKkuCwG24RTv+Ux7OA7CMcanDQGIF4p
jTCqdeKfKrp7i2yNZPYgghzbNg+GGXYr+9+igwPWhWil6jjrr/nreoB/n7YHwFKS
sJoxGhprp51BwDkv+v0wm5GTEPwBJ3bSUUemqeTsb9dqRuXd8NuZf39g+nowrr/7
oRuJndbMpVSWT/TW1vmgWxsDOocDFJcE6TRcFTury7XyiJnlqdgvr5i1xQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF7uDLv/HAr2glEsrahFR9btW+4hMB8GA1UdIwQY
MBaAFNJK3s2EuxdIvTW5ns6kZ3LgHsk1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGtyZXpZUzdGMGk5TmJtZXpxUm5jdUFleVRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS82M2E4NDUtOGMwOS00ZDY5LWE3NzEt
NDhhNjA3YmJlMjVlLzEvMGtyZXpZUzdGMGk5TmJtZXpxUm5jdUFleVRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS82M2E4NDUtOGMwOS00ZDY5LWE3NzEtNDhhNjA3YmJlMjVl
LzEvMGtyZXpZUzdGMGk5TmJtZXpxUm5jdUFleVRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQUlcNolo
Knlak4O1sCo2y08lWwrf/Z/RMM5yWQJftiofrmd1SUbmA6J0V1uPmpt2fhqzw8le
MoUcoB2iz4PcrQVIWfreE4WkjZgZ4byzvS9bkt3z0gncVIOxa3jUmxO4bPc/b66v
0aF3D/TNDRXxL32AQRGyjYQWDp87bevWU8gP+aDo2FH+R7TDA+sECPK3G2FWn7mR
1weM8ydvAaz11wM+thA98UMLNrAY6aA3WHwYCPmgCbjlMDIQVJoX3VP9/iNh+K+2
kcdIYrXvUSxXCX9U2ofe0AcTU0FS2hoJHajYXVji14sUSINzTc+/y/CGaI95yuPu
38cMN80AelSB2w==
-----END CERTIFICATE-----
Generated at Fri May 2 06:21:58 2025 by rpki-client