Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
File: hoRh4GD99IzUHTOtknHIB9Qk60I.mft (raw, json)
Hash identifier: pky7SIxGEB9+tIBNb0F1hnv1twDDYtoKJElM2a/PYZk=
Subject key identifier: EC:2D:0F:6B:03:6A:BF:6A:F9:D5:B1:76:FC:43:7D:D5:9D:EF:0A:64
Authority key identifier: 86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
Certificate issuer: /CN=868461e060fdf48cd41d33ad9271c807d424eb42
Certificate serial: 019655A62E32873958A489377A642F1D0150
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
Manifest number: 23
Signing time: Mon 21 Apr 2025 00:01:16 +0000
Manifest this update: Mon 21 Apr 2025 00:01:16 +0000
Manifest next update: Tue 22 Apr 2025 00:01:16 +0000
Files and hashes: 1: H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa (hash: i8bOFbhv/rSJKPzgYxH26TzbQ5J62pViGnxTa332Y9Q=)
2: hoRh4GD99IzUHTOtknHIB9Qk60I.crl (hash: /nh6wMKikzVNcC1TjiC4uF/6hYwpzGGayEzynV0vVtQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a6:2e:32:87:39:58:a4:89:37:7a:64:2f:1d:01:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868461e060fdf48cd41d33ad9271c807d424eb42
Validity
Not Before: Apr 21 00:01:16 2025 GMT
Not After : Apr 22 00:01:16 2025 GMT
Subject: CN=ec2d0f6b036abf6af9d5b176fc437dd59def0a64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:39:10:17:89:46:71:dc:6f:38:f2:5b:3f:68:
08:bc:d0:37:eb:ba:56:14:84:2a:ac:63:f3:44:f7:
de:bc:03:7a:b9:ee:dd:f6:2e:ee:d8:91:b6:0b:04:
0e:5d:d9:c7:8e:a7:f6:22:e9:ff:dc:90:3b:90:d8:
df:0e:1f:4f:03:fa:7c:86:e3:69:b2:10:8b:d6:26:
72:24:82:87:d8:02:39:3b:3f:92:96:ad:94:78:79:
b5:ae:f3:51:d3:f4:0a:5b:ed:46:aa:bb:6e:f5:72:
32:d5:f8:cb:c6:83:f0:9c:33:21:7d:a0:e9:95:cf:
16:cc:5e:16:0b:59:83:9a:5e:6b:86:8a:1e:11:ae:
ce:6f:c1:42:e7:da:58:43:28:13:b7:a9:7b:cd:81:
d3:6f:06:7b:4d:fd:df:5f:4d:9d:c3:75:d7:ee:8a:
de:9f:24:94:44:78:c9:92:aa:b4:bb:b4:20:35:77:
6b:10:ba:5d:fa:b8:a6:58:13:9b:26:f8:71:03:e2:
6e:40:8f:3d:9d:25:73:5b:78:5e:a8:92:38:9b:f5:
37:fc:8a:4f:d4:2e:3e:eb:fb:56:dd:e4:ec:60:ac:
75:e6:76:d7:dc:6f:a1:ec:28:31:62:61:9d:83:77:
5b:d4:74:cc:c0:e1:55:e9:8b:16:84:5a:78:fb:82:
fa:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:2D:0F:6B:03:6A:BF:6A:F9:D5:B1:76:FC:43:7D:D5:9D:EF:0A:64
X509v3 Authority Key Identifier:
keyid:86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:36:2e:8e:7f:85:61:d2:a2:11:60:9b:1b:2d:42:18:42:11:
e4:4a:2d:71:c5:31:0a:1d:38:05:79:2d:21:41:3a:5f:35:f1:
b2:aa:ba:10:c1:c7:6d:bf:40:85:64:07:5d:c9:8c:af:8b:41:
1b:fc:c0:6a:9d:15:f0:da:d9:1e:0d:9d:4b:f2:14:2f:2a:9c:
aa:ab:a9:60:7c:f6:05:24:33:65:22:02:37:66:fa:21:56:69:
24:d7:07:b3:a5:52:e5:14:af:e8:c6:14:1f:91:43:07:38:ee:
be:02:a0:79:29:93:f3:8a:34:48:78:a8:06:d0:b7:1d:93:d0:
7f:bd:5c:ad:a6:5c:00:7d:bd:03:58:53:f4:f7:d1:a4:2f:aa:
e6:66:79:98:24:e1:a5:4e:cb:0d:e0:eb:e7:9a:c9:45:64:3e:
80:b0:5a:b1:39:0e:3b:21:1a:a7:4c:c4:ee:2c:37:d6:1f:69:
4e:38:60:a3:d1:fa:1d:7c:be:53:c4:c7:95:4d:33:60:5f:bb:
bd:65:25:4b:b0:09:fe:a7:d5:57:2e:5e:4c:eb:cd:79:2c:6d:
2e:2f:b0:d2:c8:ed:55:85:8d:3a:69:a0:ed:9c:c0:c9:5d:75:
a1:a0:04:15:87:c9:23:15:a4:b9:29:de:79:9f:c0:bd:f5:45:
68:71:fa:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVpi4yhzlYpIk3emQvHQFQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ODQ2MWUwNjBmZGY0OGNkNDFkMzNhZDkyNzFjODA3ZDQy
NGViNDIwHhcNMjUwNDIxMDAwMTE2WhcNMjUwNDIyMDAwMTE2WjAzMTEwLwYDVQQD
EyhlYzJkMGY2YjAzNmFiZjZhZjlkNWIxNzZmYzQzN2RkNTlkZWYwYTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjkQF4lGcdxvOPJbP2gIvNA367pW
FIQqrGPzRPfevAN6ue7d9i7u2JG2CwQOXdnHjqf2Iun/3JA7kNjfDh9PA/p8huNp
shCL1iZyJIKH2AI5Oz+Slq2UeHm1rvNR0/QKW+1Gqrtu9XIy1fjLxoPwnDMhfaDp
lc8WzF4WC1mDml5rhooeEa7Ob8FC59pYQygTt6l7zYHTbwZ7Tf3fX02dw3XX7ore
nySURHjJkqq0u7QgNXdrELpd+rimWBObJvhxA+JuQI89nSVzW3heqJI4m/U3/IpP
1C4+6/tW3eTsYKx15nbX3G+h7CgxYmGdg3db1HTMwOFV6YsWhFp4+4L6dwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOwtD2sDar9q+dWxdvxDfdWd7wpkMB8GA1UdIwQY
MBaAFIaEYeBg/fSM1B0zrZJxyAfUJOtCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaG9SaDRHRDk5SXpVSFRPdGtuSElCOVFrNjBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My80YWY0YmUtNzBmMS00MTk0LTkxMWYt
NTlhYjk2YmMzNWM2LzEvaG9SaDRHRDk5SXpVSFRPdGtuSElCOVFrNjBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My80YWY0YmUtNzBmMS00MTk0LTkxMWYtNTlhYjk2YmMzNWM2
LzEvaG9SaDRHRDk5SXpVSFRPdGtuSElCOVFrNjBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfTYujn+F
YdKiEWCbGy1CGEIR5EotccUxCh04BXktIUE6XzXxsqq6EMHHbb9AhWQHXcmMr4tB
G/zAap0V8NrZHg2dS/IULyqcqqupYHz2BSQzZSICN2b6IVZpJNcHs6VS5RSv6MYU
H5FDBzjuvgKgeSmT84o0SHioBtC3HZPQf71craZcAH29A1hT9PfRpC+q5mZ5mCTh
pU7LDeDr55rJRWQ+gLBasTkOOyEap0zE7iw31h9pTjhgo9H6HXy+U8THlU0zYF+7
vWUlS7AJ/qfVVy5eTOvNeSxtLi+w0sjtVYWNOmmg7ZzAyV11oaAEFYfJIxWkuSne
eZ/AvfVFaHH60w==
-----END CERTIFICATE-----
Generated at Mon Apr 21 04:06:46 2025 by rpki-client