Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
File: rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft (raw, json)
Hash identifier: ysTIAtctFxbB/4658qGJFzWqsUJ372wuuOOUvp0Xbxg=
Subject key identifier: B4:18:9C:08:F9:DC:E1:A5:94:0B:BA:82:8F:B1:56:E7:27:A8:97:9C
Authority key identifier: AE:1E:F3:D6:26:A7:54:E4:3D:07:C7:00:D0:51:3C:11:4B:66:0E:F5
Certificate issuer: /CN=ae1ef3d626a754e43d07c700d0513c114b660ef5
Certificate serial: 0196BB9263BEB5D166BDD98E6A18DE7FC905
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
Manifest number: 1532
Signing time: Sat 10 May 2025 19:00:55 +0000
Manifest this update: Sat 10 May 2025 19:00:55 +0000
Manifest next update: Sun 11 May 2025 19:00:55 +0000
Files and hashes: 1: 4Z6xjw98hxZ8bvYUhmvQisZFvOM.roa (hash: j5d+sT1h6lzMh+Fw7CHOI9NqQUP8la0OU484/Ch6a44=)
2: rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl (hash: SFP+EuoIQAnrtvcubmjl7BdSNvxWkHgIq9nw6U1imeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 19:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:92:63:be:b5:d1:66:bd:d9:8e:6a:18:de:7f:c9:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae1ef3d626a754e43d07c700d0513c114b660ef5
Validity
Not Before: May 10 19:00:55 2025 GMT
Not After : May 11 19:00:55 2025 GMT
Subject: CN=b4189c08f9dce1a5940bba828fb156e727a8979c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a7:d1:ce:d2:7e:79:8f:6c:94:88:b9:21:96:
f6:7a:9d:91:09:dd:85:66:fa:ce:22:91:f2:35:c5:
5c:67:0d:09:e9:40:ef:25:55:d9:14:5f:80:a0:cf:
ab:bd:a3:71:17:a4:bb:e8:ae:03:15:33:ea:6f:f6:
8c:69:d1:9b:c6:59:74:df:91:21:e9:53:33:2d:5f:
fa:d0:7f:40:34:22:4c:4d:b6:91:e7:7d:91:21:32:
4f:9b:df:c8:7e:bb:86:da:0e:ae:d6:68:7a:08:d2:
2f:45:95:5b:aa:a3:ab:2f:85:20:cc:7a:b3:3f:2e:
08:f0:ea:43:0a:ff:f3:72:64:73:d9:c8:e2:bd:3d:
7c:1c:72:bb:24:7f:e4:29:52:76:20:9f:bf:b0:fb:
d2:e1:55:21:ec:6d:4c:f7:08:2f:a6:db:0e:db:e3:
7e:a7:18:ad:37:74:d7:2f:15:fe:51:fe:8d:ab:4e:
fe:dc:db:ac:2d:e4:8c:44:32:09:43:0a:9d:58:fd:
7a:9d:b5:b0:88:98:c5:07:4d:06:de:fe:a0:27:1e:
48:76:67:1e:a0:17:8b:80:13:83:61:37:39:11:9b:
da:32:ca:31:df:88:bc:59:53:20:5a:71:ad:8d:ed:
47:f5:24:cd:3e:bf:52:23:1e:8e:63:fc:1d:69:93:
dc:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:18:9C:08:F9:DC:E1:A5:94:0B:BA:82:8F:B1:56:E7:27:A8:97:9C
X509v3 Authority Key Identifier:
keyid:AE:1E:F3:D6:26:A7:54:E4:3D:07:C7:00:D0:51:3C:11:4B:66:0E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:a4:d0:79:50:4c:a7:8d:af:af:97:00:84:27:dd:bd:5b:39:
a9:4c:92:2e:58:9a:a4:e3:39:76:6c:5d:50:5d:75:67:82:32:
69:39:ca:ec:ee:ef:3c:b1:e0:bd:15:09:ec:52:f5:79:f1:ca:
15:6a:81:c5:8f:75:63:b1:17:9a:76:2d:48:78:85:1e:b0:28:
86:a9:7f:12:d4:aa:6b:9c:40:f8:a6:ec:60:0a:a0:c4:50:6d:
26:20:e1:36:af:a2:bd:36:8d:9a:3e:c3:0b:d8:75:6b:29:c8:
67:de:46:86:06:58:ed:07:cb:db:5c:2c:4a:2d:f9:4c:6f:3d:
a2:15:6d:d6:3f:8d:66:82:43:f1:ad:56:95:46:1d:01:03:d0:
96:4a:4f:d4:df:32:1b:7d:33:38:76:2b:78:73:3d:81:91:0b:
33:e2:c9:58:ce:99:e9:32:d3:d1:09:72:cf:51:f4:9b:1a:82:
db:e5:67:2e:c7:1a:8f:2b:2c:e1:46:1d:1e:eb:b3:d3:e3:dd:
41:ec:c4:5a:78:19:92:eb:29:d5:8c:f2:52:d8:9e:d3:0f:0f:
77:a9:a4:1c:cd:1b:af:ef:7e:cf:3c:ae:86:ad:14:30:a3:91:
9b:e9:18:29:6a:25:e8:4f:29:15:fc:e0:7e:bb:44:32:d0:83:
7c:1e:8e:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa7kmO+tdFmvdmOahjef8kFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlMWVmM2Q2MjZhNzU0ZTQzZDA3YzcwMGQwNTEzYzExNGI2
NjBlZjUwHhcNMjUwNTEwMTkwMDU1WhcNMjUwNTExMTkwMDU1WjAzMTEwLwYDVQQD
EyhiNDE4OWMwOGY5ZGNlMWE1OTQwYmJhODI4ZmIxNTZlNzI3YTg5NzljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1afRztJ+eY9slIi5IZb2ep2RCd2F
ZvrOIpHyNcVcZw0J6UDvJVXZFF+AoM+rvaNxF6S76K4DFTPqb/aMadGbxll035Eh
6VMzLV/60H9ANCJMTbaR532RITJPm9/IfruG2g6u1mh6CNIvRZVbqqOrL4UgzHqz
Py4I8OpDCv/zcmRz2cjivT18HHK7JH/kKVJ2IJ+/sPvS4VUh7G1M9wgvptsO2+N+
pxitN3TXLxX+Uf6Nq07+3NusLeSMRDIJQwqdWP16nbWwiJjFB00G3v6gJx5Idmce
oBeLgBODYTc5EZvaMsox34i8WVMgWnGtje1H9STNPr9SIx6OY/wdaZPcSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLQYnAj53OGllAu6go+xVucnqJecMB8GA1UdIwQY
MBaAFK4e89Ymp1TkPQfHANBRPBFLZg71MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmg3ejFpYW5WT1E5QjhjQTBGRThFVXRtRHZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9hZmU5YjgtZTg4MS00NDYyLWExZWUt
OGU4MWQxMzUwNzM2LzEvcmg3ejFpYW5WT1E5QjhjQTBGRThFVXRtRHZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9hZmU5YjgtZTg4MS00NDYyLWExZWUtOGU4MWQxMzUwNzM2
LzEvcmg3ejFpYW5WT1E5QjhjQTBGRThFVXRtRHZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdKTQeVBM
p42vr5cAhCfdvVs5qUySLliapOM5dmxdUF11Z4IyaTnK7O7vPLHgvRUJ7FL1efHK
FWqBxY91Y7EXmnYtSHiFHrAohql/EtSqa5xA+KbsYAqgxFBtJiDhNq+ivTaNmj7D
C9h1aynIZ95GhgZY7QfL21wsSi35TG89ohVt1j+NZoJD8a1WlUYdAQPQlkpP1N8y
G30zOHYreHM9gZELM+LJWM6Z6TLT0Qlyz1H0mxqC2+VnLscajyss4UYdHuuz0+Pd
QezEWngZkusp1YzyUtie0w8Pd6mkHM0br+9+zzyuhq0UMKORm+kYKWol6E8pFfzg
frtEMtCDfB6O1A==
-----END CERTIFICATE-----
Generated at Sun May 11 03:58:57 2025 by rpki-client