Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json)
Hash identifier: w0gHM2EYLv7UbTnJk6nQc7d+Es++SOe4uVhXLHHrYR0=
Subject key identifier: C4:D3:BE:F8:6D:A3:8D:B3:06:15:EE:70:43:78:05:3F:15:F6:CE:57
Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Certificate serial: 0196BC0083476857D4D688DB521004B302DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
Manifest number: 1536
Signing time: Sat 10 May 2025 21:01:12 +0000
Manifest this update: Sat 10 May 2025 21:01:12 +0000
Manifest next update: Sun 11 May 2025 21:01:12 +0000
Files and hashes: 1: 1-rU3n-MmX0x7vSSIglpKrM6p7wc.roa (hash: c73xh5XkAcPFRSo/oWqlfjE2NzFubQ+3BLO5+whFr6o=)
2: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: yo7koReRcWbkcWt9Hm8CdoVnUVrd5zTKONoCQ2VjpRA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 21:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:00:83:47:68:57:d4:d6:88:db:52:10:04:b3:02:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Validity
Not Before: May 10 21:01:12 2025 GMT
Not After : May 11 21:01:12 2025 GMT
Subject: CN=c4d3bef86da38db30615ee704378053f15f6ce57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a9:96:61:0e:27:e7:4d:ea:94:f4:e7:aa:b4:
f7:86:43:15:8b:d2:95:53:94:68:52:d0:72:b8:ea:
ee:72:ed:e0:2f:db:08:f0:2a:99:9c:4e:37:02:f4:
bb:98:b9:42:48:63:fa:73:9c:af:13:d5:25:b6:36:
b7:27:e7:46:49:e3:83:ef:d0:d8:81:c5:bd:97:90:
30:47:ce:f3:f2:61:b0:e4:5a:53:56:e5:82:ee:6e:
e9:71:95:54:9e:04:24:f9:27:1a:9e:3f:46:b6:e9:
06:2c:60:bb:02:3e:40:f1:83:90:87:22:6c:27:27:
43:ef:9b:02:d4:b8:a3:30:f5:68:c3:fc:b9:1c:8c:
49:dc:cd:41:b8:6d:99:d2:07:24:f8:e5:e6:d2:83:
c7:87:1e:90:3e:a0:c9:9f:1f:7a:ac:23:d9:d2:47:
68:86:13:8c:b6:fa:1d:77:1e:ed:37:2d:4a:bf:10:
2c:e2:0f:8e:7c:49:8f:07:0b:39:e8:8d:67:b1:ce:
6f:7b:71:de:6e:6f:b6:e6:97:6a:25:57:06:39:85:
df:99:0b:fe:cf:ef:0f:b1:12:f7:a2:3d:fb:9b:32:
06:c1:a3:a2:9f:f2:2c:20:48:a9:11:dc:8c:a6:f6:
8b:e9:d8:ba:68:6b:bf:84:54:02:fd:84:da:91:92:
51:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:D3:BE:F8:6D:A3:8D:B3:06:15:EE:70:43:78:05:3F:15:F6:CE:57
X509v3 Authority Key Identifier:
keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:3c:d7:18:89:8d:ce:86:fc:2a:03:74:49:3f:4b:7c:6a:92:
26:df:dc:39:b3:bd:98:51:95:29:d6:a2:30:2b:19:ee:f7:c6:
78:ec:17:a3:83:3e:d1:4a:30:9e:84:aa:f3:77:e1:2d:8b:30:
88:93:e3:04:a7:2a:94:04:3c:c1:36:2a:07:b7:45:ef:04:22:
ed:11:ec:18:4f:67:e2:6f:9e:c1:12:24:0e:6c:55:c3:fb:fe:
c0:ce:e0:d1:33:5d:57:e3:51:5e:3c:bf:d2:e9:f1:fb:57:06:
4a:ea:7d:cd:9e:00:b4:40:d2:e8:49:56:9d:54:3d:9c:ca:0c:
59:5e:f7:db:ff:cf:74:cf:a6:42:15:b0:a5:ba:18:80:1f:37:
74:c4:27:db:b6:0e:ec:9a:6a:4e:28:c4:cd:97:8b:3f:cc:d1:
77:74:f8:e6:2e:fd:c5:80:e7:5d:48:d8:0b:1c:6b:fc:03:66:
61:1b:19:bf:8d:c2:52:87:51:d7:50:56:b2:cd:6c:0f:e2:89:
b3:2b:97:22:97:3f:21:99:50:a8:4a:ec:73:4f:8f:9b:02:e3:
89:3f:62:18:a9:c9:3d:ab:21:e1:a1:60:7c:f7:d3:74:95:e7:
ab:3d:89:21:e7:25:91:32:30:35:ad:16:ce:83:2f:a5:31:ea:
e9:6a:70:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa8AINHaFfU1ojbUhAEswLcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyZGEyM2QzYjkzMGQ0YzFmM2FjNzMwNjVkNzFhNjA3YzM1
ZDI5MDAwHhcNMjUwNTEwMjEwMTEyWhcNMjUwNTExMjEwMTEyWjAzMTEwLwYDVQQD
EyhjNGQzYmVmODZkYTM4ZGIzMDYxNWVlNzA0Mzc4MDUzZjE1ZjZjZTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6mWYQ4n503qlPTnqrT3hkMVi9KV
U5RoUtByuOrucu3gL9sI8CqZnE43AvS7mLlCSGP6c5yvE9Ultja3J+dGSeOD79DY
gcW9l5AwR87z8mGw5FpTVuWC7m7pcZVUngQk+Scanj9GtukGLGC7Aj5A8YOQhyJs
JydD75sC1LijMPVow/y5HIxJ3M1BuG2Z0gck+OXm0oPHhx6QPqDJnx96rCPZ0kdo
hhOMtvoddx7tNy1KvxAs4g+OfEmPBws56I1nsc5ve3Hebm+25pdqJVcGOYXfmQv+
z+8PsRL3oj37mzIGwaOin/IsIEipEdyMpvaL6di6aGu/hFQC/YTakZJRNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMTTvvhto42zBhXucEN4BT8V9s5XMB8GA1UdIwQY
MBaAFOLaI9O5MNTB86xzBl1xpgfDXSkAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9kZWViYjgtYWU4Ni00Njk0LWE5NzIt
ODI3YTBhYzA0YTlkLzEvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9kZWViYjgtYWU4Ni00Njk0LWE5NzItODI3YTBhYzA0YTlk
LzEvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHjzXGImN
zob8KgN0ST9LfGqSJt/cObO9mFGVKdaiMCsZ7vfGeOwXo4M+0UownoSq83fhLYsw
iJPjBKcqlAQ8wTYqB7dF7wQi7RHsGE9n4m+ewRIkDmxVw/v+wM7g0TNdV+NRXjy/
0unx+1cGSup9zZ4AtEDS6ElWnVQ9nMoMWV732//PdM+mQhWwpboYgB83dMQn27YO
7JpqTijEzZeLP8zRd3T45i79xYDnXUjYCxxr/ANmYRsZv43CUodR11BWss1sD+KJ
syuXIpc/IZlQqErsc0+PmwLjiT9iGKnJPash4aFgfPfTdJXnqz2JIeclkTIwNa0W
zoMvpTHq6WpwAg==
-----END CERTIFICATE-----
Generated at Sun May 11 03:58:04 2025 by rpki-client