Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
File: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft (raw, json)
Hash identifier: S/vMg3bGRg430iXk9KAmYAxjmpC/RqqBhSfAKE1TJ68=
Subject key identifier: A8:9D:77:69:9D:3A:D2:2A:81:31:32:88:1E:A9:72:AD:A8:B9:72:19
Authority key identifier: E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF
Certificate issuer: /CN=e1a323546484220cb402063380f4016369262acf
Certificate serial: 0196BE5C6D37C657890A24CA058259E57238
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
Manifest number: 0878
Signing time: Sun 11 May 2025 08:00:50 +0000
Manifest this update: Sun 11 May 2025 08:00:50 +0000
Manifest next update: Mon 12 May 2025 08:00:50 +0000
Files and hashes: 1: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl (hash: hN0gW056R3kjTRM09jbdZbsXE2+QYUChKIMC8SBadeg=)
2: oLxnPDOjx34zqrjQ27ju_ZuWYV4.roa (hash: aFW6lgXJpeg0bmQI7iZHPliZcmK0ToNkD5OYtI2CIQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:5c:6d:37:c6:57:89:0a:24:ca:05:82:59:e5:72:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1a323546484220cb402063380f4016369262acf
Validity
Not Before: May 11 08:00:50 2025 GMT
Not After : May 12 08:00:50 2025 GMT
Subject: CN=a89d77699d3ad22a813132881ea972ada8b97219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:91:f4:a3:4e:4e:2d:2a:8e:28:34:e0:7b:79:
43:55:71:da:3f:d0:09:80:8b:02:c8:74:a2:40:a7:
82:04:85:13:49:b3:b8:59:a2:da:80:e4:e5:b2:9d:
75:6b:63:ee:d8:a1:a5:61:94:14:3b:6c:52:b3:32:
a5:54:ab:a1:62:d5:c6:8e:6b:50:22:90:8c:bd:91:
1f:3e:cf:52:47:d2:68:7f:50:c4:09:c4:d1:b5:ef:
88:2a:29:73:f4:60:32:c9:46:01:f6:dd:4a:96:63:
03:1b:a4:79:f8:de:53:20:29:11:4b:06:b3:7d:c1:
ff:ef:e1:52:89:a7:cf:50:57:2e:d7:93:e0:a8:c9:
7f:7f:25:6b:47:47:a1:02:1f:e3:84:d1:5b:19:40:
81:9c:a6:b6:70:4a:27:fb:b2:e7:fb:ca:bd:4b:55:
58:c0:66:d5:6a:65:09:63:04:40:41:fc:fd:d3:2f:
a2:56:5b:bc:e1:01:11:39:1d:a9:a9:32:c1:cc:c2:
2d:ad:d1:4b:39:47:2b:f3:57:b0:17:03:b4:03:27:
32:7d:e3:88:e3:9f:7e:d9:92:c4:e2:81:b1:a3:e7:
ed:43:22:36:67:f1:ff:9c:64:52:88:9a:c5:7a:35:
49:36:94:72:73:0b:3e:71:1a:e9:e4:e0:7e:d9:e5:
52:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:9D:77:69:9D:3A:D2:2A:81:31:32:88:1E:A9:72:AD:A8:B9:72:19
X509v3 Authority Key Identifier:
keyid:E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:b9:0c:1a:ca:51:51:e4:b8:27:d1:21:38:b6:16:9d:85:d7:
a7:da:b0:c5:8d:42:a9:93:c2:8e:90:5b:b4:01:ad:8e:ed:a2:
8c:b3:ff:14:95:af:59:ce:8e:1a:2d:8e:4e:f3:a2:f2:a2:65:
a7:ea:e5:b4:f4:93:b4:c2:25:ec:f2:8a:7b:87:10:ac:5b:a5:
ee:73:27:da:db:69:0a:7a:da:1c:9e:7d:24:0c:48:f9:0b:ff:
ad:7a:49:ce:ad:bf:a1:3f:fe:98:fd:75:9a:76:19:ad:b5:24:
7d:3f:c7:0b:3e:d0:da:a0:4c:e4:79:ef:e7:c4:7f:01:08:8d:
64:a8:42:7d:0d:24:51:31:4b:70:51:4f:ee:9d:70:74:59:7a:
49:2e:29:3f:07:b7:a5:17:bb:fb:f4:99:c6:fa:52:ca:d7:b1:
cb:50:c2:d8:df:22:df:d2:1f:43:dc:4a:9f:35:e1:20:94:8a:
58:be:f9:07:1e:a8:6a:39:d4:a9:92:3d:1b:ec:9a:c5:63:57:
aa:b5:d2:f7:72:9d:62:23:62:62:46:c9:a6:b9:00:48:83:e4:
6b:40:bb:8f:eb:38:47:07:6d:58:62:52:6f:17:4b:0b:3a:aa:
40:a0:1a:ad:e8:0b:b8:67:49:58:f8:0a:de:f5:0a:76:1c:bb:
1b:b9:19:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa+XG03xleJCiTKBYJZ5XI4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxYTMyMzU0NjQ4NDIyMGNiNDAyMDYzMzgwZjQwMTYzNjky
NjJhY2YwHhcNMjUwNTExMDgwMDUwWhcNMjUwNTEyMDgwMDUwWjAzMTEwLwYDVQQD
EyhhODlkNzc2OTlkM2FkMjJhODEzMTMyODgxZWE5NzJhZGE4Yjk3MjE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJH0o05OLSqOKDTge3lDVXHaP9AJ
gIsCyHSiQKeCBIUTSbO4WaLagOTlsp11a2Pu2KGlYZQUO2xSszKlVKuhYtXGjmtQ
IpCMvZEfPs9SR9Jof1DECcTRte+IKilz9GAyyUYB9t1KlmMDG6R5+N5TICkRSwaz
fcH/7+FSiafPUFcu15PgqMl/fyVrR0ehAh/jhNFbGUCBnKa2cEon+7Ln+8q9S1VY
wGbVamUJYwRAQfz90y+iVlu84QEROR2pqTLBzMItrdFLOUcr81ewFwO0AycyfeOI
459+2ZLE4oGxo+ftQyI2Z/H/nGRSiJrFejVJNpRycws+cRrp5OB+2eVS7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKidd2mdOtIqgTEyiB6pcq2ouXIZMB8GA1UdIwQY
MBaAFOGjI1RkhCIMtAIGM4D0AWNpJirPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNGFNalZHU0VJZ3kwQWdZemdQUUJZMmttS3M4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9kMjFkYTQtZjY1Yi00NTMxLTk3NmEt
OGVjMDYwNGU2OTI5LzEvNGFNalZHU0VJZ3kwQWdZemdQUUJZMmttS3M4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9kMjFkYTQtZjY1Yi00NTMxLTk3NmEtOGVjMDYwNGU2OTI5
LzEvNGFNalZHU0VJZ3kwQWdZemdQUUJZMmttS3M4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAErkMGspR
UeS4J9EhOLYWnYXXp9qwxY1CqZPCjpBbtAGtju2ijLP/FJWvWc6OGi2OTvOi8qJl
p+rltPSTtMIl7PKKe4cQrFul7nMn2ttpCnraHJ59JAxI+Qv/rXpJzq2/oT/+mP11
mnYZrbUkfT/HCz7Q2qBM5Hnv58R/AQiNZKhCfQ0kUTFLcFFP7p1wdFl6SS4pPwe3
pRe7+/SZxvpSytexy1DC2N8i39IfQ9xKnzXhIJSKWL75Bx6oajnUqZI9G+yaxWNX
qrXS93KdYiNiYkbJprkASIPka0C7j+s4RwdtWGJSbxdLCzqqQKAaregLuGdJWPgK
3vUKdhy7G7kZhQ==
-----END CERTIFICATE-----
Generated at Sun May 11 12:40:49 2025 by rpki-client