Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
File: THGxR-uHN6vMM1-AIJUbJf8mVqY.mft (raw, json)
Hash identifier: 11UD4HiEkRVrVjQs6ay/dIXpZls2xR3ydjmq1ZEsJWw=
Subject key identifier: 4B:D8:BC:7E:36:BF:8D:61:3F:0A:98:30:E8:39:5A:22:3B:44:60:8F
Authority key identifier: 4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
Certificate issuer: /CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Certificate serial: 0196BC6DF8098B4E0C5DEC9DABBE26F6FA7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
Manifest number: 09CD
Signing time: Sat 10 May 2025 23:00:45 +0000
Manifest this update: Sat 10 May 2025 23:00:45 +0000
Manifest next update: Sun 11 May 2025 23:00:45 +0000
Files and hashes: 1: THGxR-uHN6vMM1-AIJUbJf8mVqY.crl (hash: xFuGHP9AkwDN/dzTohV28qwSyv2NLNyvZATI7xqGRkE=)
2: aZp_-IqiVFoAaaD08gi82AqrlBM.roa (hash: xAjdvDvJZRM8tEfeaFE3V9XsMT9Nsdi0raaN7LzCKfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6d:f8:09:8b:4e:0c:5d:ec:9d:ab:be:26:f6:fa:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Validity
Not Before: May 10 23:00:45 2025 GMT
Not After : May 11 23:00:45 2025 GMT
Subject: CN=4bd8bc7e36bf8d613f0a9830e8395a223b44608f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a9:a6:26:d2:59:b0:80:c0:f1:37:2c:e9:f6:
6e:57:f8:e8:7a:4a:3f:6f:0f:32:56:f4:34:96:c3:
90:03:71:30:0e:68:cd:4d:ec:c7:98:ec:52:99:85:
68:f9:05:3b:69:6b:46:db:26:07:b5:26:9d:08:49:
a3:d4:05:95:ae:46:94:a0:f3:dd:c6:ad:da:19:ee:
8f:09:4d:a7:82:a2:81:db:cf:b3:27:49:ba:79:08:
63:22:ce:89:9c:f6:97:47:a3:27:6a:7a:18:9b:6c:
ef:28:a2:aa:21:de:34:d4:1b:75:0c:1a:72:5b:06:
4d:5c:0a:a7:e9:9c:ce:2d:8b:3a:2b:8c:a1:17:33:
ad:55:93:23:12:d4:a1:26:67:7d:cd:d0:8b:15:96:
0d:f7:22:ca:5d:ac:1b:89:4b:56:48:bb:8a:f5:44:
32:a8:a8:59:b7:72:ed:76:7c:55:d6:6c:e7:4f:cb:
d3:9c:51:7c:e3:93:31:8f:e6:31:3e:e7:61:b1:de:
d8:e8:9f:2b:09:2a:34:68:20:db:53:dc:c0:9f:c0:
ab:3a:fd:d3:dc:78:a0:9c:9d:7c:ca:80:76:95:b1:
79:e5:cf:ae:f9:a0:04:1f:14:76:af:d7:9a:ab:76:
2d:4e:1a:2b:5f:84:b3:d8:01:88:02:03:e9:08:22:
10:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:D8:BC:7E:36:BF:8D:61:3F:0A:98:30:E8:39:5A:22:3B:44:60:8F
X509v3 Authority Key Identifier:
keyid:4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:4d:e6:3e:91:e8:dd:e9:93:49:49:15:43:cc:af:bf:66:04:
e0:63:fc:00:3b:d2:3a:04:60:ca:dc:c8:78:d3:41:b5:12:64:
f4:8a:f3:5d:8a:4a:e4:8a:ab:bb:a2:59:c5:f7:12:50:de:5e:
a5:dc:42:fd:55:d3:bd:c2:96:5e:f0:9f:a0:f1:48:ce:71:b9:
56:8e:1e:eb:93:bf:f2:8b:c1:05:e4:88:f9:0e:6f:70:76:e5:
b1:6f:cc:f7:b5:e4:91:a6:40:68:cb:dc:89:eb:28:ef:c6:56:
5f:05:84:42:d7:ac:4b:78:42:58:45:2c:56:92:e2:98:1f:f9:
0f:5c:d1:07:e8:61:b9:51:5f:30:eb:6f:0d:c8:19:0e:2b:6b:
80:9d:b9:d7:f4:95:e0:14:46:74:4f:bc:1c:c2:a1:fa:55:1c:
af:42:ec:06:9c:d8:93:61:8f:65:cf:a7:b3:b6:ec:bd:64:b6:
0b:c8:2b:25:28:ce:f7:6f:95:04:e0:6c:21:ab:47:be:19:e4:
5c:7d:5d:13:ee:4a:6f:a2:bc:bd:96:05:02:84:1e:39:5b:12:
34:82:43:ee:ec:20:e2:19:34:aa:c8:44:cf:6c:ec:f8:9d:80:
59:61:12:0c:2c:9e:a3:1c:bd:e1:21:fe:e0:82:b1:b1:9e:50:
e8:5c:2a:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa8bfgJi04MXeydq74m9vp/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjNzFiMTQ3ZWI4NzM3YWJjYzMzNWY4MDIwOTUxYjI1ZmYy
NjU2YTYwHhcNMjUwNTEwMjMwMDQ1WhcNMjUwNTExMjMwMDQ1WjAzMTEwLwYDVQQD
Eyg0YmQ4YmM3ZTM2YmY4ZDYxM2YwYTk4MzBlODM5NWEyMjNiNDQ2MDhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA16mmJtJZsIDA8Tcs6fZuV/joeko/
bw8yVvQ0lsOQA3EwDmjNTezHmOxSmYVo+QU7aWtG2yYHtSadCEmj1AWVrkaUoPPd
xq3aGe6PCU2ngqKB28+zJ0m6eQhjIs6JnPaXR6MnanoYm2zvKKKqId401Bt1DBpy
WwZNXAqn6ZzOLYs6K4yhFzOtVZMjEtShJmd9zdCLFZYN9yLKXawbiUtWSLuK9UQy
qKhZt3LtdnxV1mznT8vTnFF845Mxj+YxPudhsd7Y6J8rCSo0aCDbU9zAn8CrOv3T
3HignJ18yoB2lbF55c+u+aAEHxR2r9eaq3YtThorX4Sz2AGIAgPpCCIQawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEvYvH42v41hPwqYMOg5WiI7RGCPMB8GA1UdIwQY
MBaAFExxsUfrhzerzDNfgCCVGyX/JlamMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9mOTI4NzEtMGQzYS00ZDg3LWFmZGMt
MDcxYjk5MWFmMDFmLzEvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My9mOTI4NzEtMGQzYS00ZDg3LWFmZGMtMDcxYjk5MWFmMDFm
LzEvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUU3mPpHo
3emTSUkVQ8yvv2YE4GP8ADvSOgRgytzIeNNBtRJk9IrzXYpK5Iqru6JZxfcSUN5e
pdxC/VXTvcKWXvCfoPFIznG5Vo4e65O/8ovBBeSI+Q5vcHblsW/M97XkkaZAaMvc
ieso78ZWXwWEQtesS3hCWEUsVpLimB/5D1zRB+hhuVFfMOtvDcgZDitrgJ251/SV
4BRGdE+8HMKh+lUcr0LsBpzYk2GPZc+ns7bsvWS2C8grJSjO92+VBOBsIatHvhnk
XH1dE+5Kb6K8vZYFAoQeOVsSNIJD7uwg4hk0qshEz2zs+J2AWWESDCyeoxy94SH+
4IKxsZ5Q6Fwqrw==
-----END CERTIFICATE-----
Generated at Sun May 11 06:15:12 2025 by rpki-client