Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
File: hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft (raw, json)
Hash identifier: ONb7SZ9u2JWjRHj/AFRTHLiC0kFIe8Ls2vQJyDZ1odc=
Subject key identifier: A0:63:79:D8:24:ED:47:86:B3:80:78:3C:30:B0:B7:5F:73:C4:05:24
Authority key identifier: 84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
Certificate issuer: /CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Certificate serial: 0196C803FB1250B6A8B99830191E2AD01C9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
Manifest number: 0FD4
Signing time: Tue 13 May 2025 05:00:26 +0000
Manifest this update: Tue 13 May 2025 05:00:26 +0000
Manifest next update: Wed 14 May 2025 05:00:26 +0000
Files and hashes: 1: XLQfftOCYwZhCKWBFvPgcWtM3ng.roa (hash: e5IwRRubP2iih1RAenDvyf84x82YlIWC8mC3l2YoKV8=)
2: hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl (hash: LlGuEMw2oiwyQ7Fv0vk/rKUX6e1g5zNLoLUr3cgJV1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:03:fb:12:50:b6:a8:b9:98:30:19:1e:2a:d0:1c:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Validity
Not Before: May 13 05:00:26 2025 GMT
Not After : May 14 05:00:26 2025 GMT
Subject: CN=a06379d824ed4786b380783c30b0b75f73c40524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:96:bb:0b:ac:e0:c1:e4:cd:9e:2b:9a:bf:80:
ff:94:51:b8:d9:27:1c:75:2e:e3:19:d3:7d:59:17:
f8:3a:36:91:52:7f:ac:16:27:6b:9d:05:b9:f2:62:
e2:89:80:4b:64:9d:fa:45:55:c8:05:05:0c:2d:f8:
c0:2f:b5:1b:82:a2:4a:82:a7:98:76:ce:a4:9d:b6:
0f:86:6e:12:ac:cf:03:a5:76:50:71:89:d0:b1:29:
f3:94:45:1d:e6:9d:00:d4:b2:4a:2d:e8:1b:f0:f6:
91:74:74:3a:8d:70:49:a2:e9:aa:c6:88:f0:56:1d:
10:0f:ee:db:6e:6c:47:51:77:ed:30:44:07:25:29:
9b:85:c1:ad:d4:7d:c7:0e:bb:5d:53:a4:83:e1:ae:
aa:85:90:bb:74:ed:04:f1:b2:8b:d8:d7:0f:5c:5d:
3f:b3:51:f1:4f:de:c4:54:09:9a:91:c1:50:f9:13:
6d:50:f9:db:bc:d4:73:07:61:5c:d8:0e:c2:0a:db:
1d:2c:e6:09:99:0a:54:af:0e:cc:4f:63:98:c9:48:
d5:af:c0:23:3b:fa:19:98:ad:46:33:d8:f3:4c:1b:
07:8a:0a:0b:0f:f4:ef:60:5c:ab:26:d6:60:0a:23:
00:60:7c:96:4b:62:30:38:e6:50:2e:ce:00:0d:0c:
fa:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:63:79:D8:24:ED:47:86:B3:80:78:3C:30:B0:B7:5F:73:C4:05:24
X509v3 Authority Key Identifier:
keyid:84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:8a:9e:71:88:4d:78:39:2e:3c:34:59:0d:c7:56:5f:11:a8:
90:69:6a:1b:b3:96:c7:f2:0f:be:15:66:1c:56:6f:1a:83:4a:
5e:7c:09:ab:be:7d:a4:9a:3d:7c:c8:0e:39:4f:df:47:e9:2b:
27:90:e2:3d:c3:fa:35:07:4a:0f:3f:86:f2:d0:1c:4c:93:ba:
a5:0c:d9:55:f5:6c:c2:e0:cc:3d:58:1d:7c:a6:c8:d2:5c:73:
a3:2e:47:66:4d:59:e0:d9:47:fc:ac:2a:25:78:6a:1b:cb:c3:
1d:2a:73:51:3a:ad:19:c6:68:33:f8:66:1c:ae:6f:bc:0a:da:
14:9b:f2:a0:16:e0:75:38:5b:dd:19:9f:7f:2a:19:b8:b2:51:
75:ca:87:e3:03:e0:d5:9b:a2:0d:40:ba:01:a2:35:09:7d:3f:
11:ea:57:85:73:1a:c3:2b:9d:4a:99:e0:0d:6c:8b:26:57:40:
60:3a:7c:c8:ff:1f:84:df:07:8d:c5:76:93:69:f7:d9:b1:48:
f1:01:e5:ee:54:98:e9:75:f2:67:19:1d:5d:ec:46:86:95:5b:
93:e9:a7:e0:80:2f:8c:1e:6c:b0:b5:db:1f:42:d6:a2:13:76:
ad:72:ad:78:83:96:1a:02:68:38:4c:83:9f:c9:b9:f1:39:81:
29:6a:41:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbIA/sSULaouZgwGR4q0ByeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NmQ0NTIyNWNmMGQ0ZmE5YzY1YWVlODg4NjFkMjI2MTIw
M2FkMDAwHhcNMjUwNTEzMDUwMDI2WhcNMjUwNTE0MDUwMDI2WjAzMTEwLwYDVQQD
EyhhMDYzNzlkODI0ZWQ0Nzg2YjM4MDc4M2MzMGIwYjc1ZjczYzQwNTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15a7C6zgweTNniuav4D/lFG42Scc
dS7jGdN9WRf4OjaRUn+sFidrnQW58mLiiYBLZJ36RVXIBQUMLfjAL7UbgqJKgqeY
ds6knbYPhm4SrM8DpXZQcYnQsSnzlEUd5p0A1LJKLegb8PaRdHQ6jXBJoumqxojw
Vh0QD+7bbmxHUXftMEQHJSmbhcGt1H3HDrtdU6SD4a6qhZC7dO0E8bKL2NcPXF0/
s1HxT97EVAmakcFQ+RNtUPnbvNRzB2Fc2A7CCtsdLOYJmQpUrw7MT2OYyUjVr8Aj
O/oZmK1GM9jzTBsHigoLD/TvYFyrJtZgCiMAYHyWS2IwOOZQLs4ADQz6GwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKBjedgk7UeGs4B4PDCwt19zxAUkMB8GA1UdIwQY
MBaAFIRtRSJc8NT6nGWu6Ihh0iYSA60AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEcxRklsencxUHFjWmE3b2lHSFNKaElEclFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8xNjNmNGItZGU1OS00ODdhLTkxMTAt
NDYzNTMxMDQ2YzdmLzEvaEcxRklsencxUHFjWmE3b2lHSFNKaElEclFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC8xNjNmNGItZGU1OS00ODdhLTkxMTAtNDYzNTMxMDQ2Yzdm
LzEvaEcxRklsencxUHFjWmE3b2lHSFNKaElEclFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAv4qecYhN
eDkuPDRZDcdWXxGokGlqG7OWx/IPvhVmHFZvGoNKXnwJq759pJo9fMgOOU/fR+kr
J5DiPcP6NQdKDz+G8tAcTJO6pQzZVfVswuDMPVgdfKbI0lxzoy5HZk1Z4NlH/Kwq
JXhqG8vDHSpzUTqtGcZoM/hmHK5vvAraFJvyoBbgdThb3RmffyoZuLJRdcqH4wPg
1ZuiDUC6AaI1CX0/EepXhXMawyudSpngDWyLJldAYDp8yP8fhN8HjcV2k2n32bFI
8QHl7lSY6XXyZxkdXexGhpVbk+mn4IAvjB5ssLXbH0LWohN2rXKteIOWGgJoOEyD
n8m58TmBKWpBvA==
-----END CERTIFICATE-----
Generated at Tue May 13 10:25:24 2025 by rpki-client