Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: CtdR7NlFkP2RWJBgSp9AggKI+jLRcGx6GmGezPkT694=
Subject key identifier: F3:72:F0:E2:C7:D7:94:47:97:B3:49:61:91:F1:DF:D9:CC:F0:B3:33
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 0196556E7D1746CD9B776EEF05BF8F570A96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 14FF
Signing time: Sun 20 Apr 2025 23:00:26 +0000
Manifest this update: Sun 20 Apr 2025 23:00:26 +0000
Manifest next update: Mon 21 Apr 2025 23:00:26 +0000
Files and hashes: 1: qZsU012FOT7iNKmn0Q6fmLHg-jY.roa (hash: t+/X1ob1d2V1rnzYvMBrQBRc/+JtrsZ+AHNltw325kg=)
2: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: 6VaoqJwukwxPUo78uw0tsAcTq0xCdoim+peJkR3Y5O8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:6e:7d:17:46:cd:9b:77:6e:ef:05:bf:8f:57:0a:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Apr 20 23:00:26 2025 GMT
Not After : Apr 21 23:00:26 2025 GMT
Subject: CN=f372f0e2c7d7944797b3496191f1dfd9ccf0b333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f5:a1:2a:df:c9:a7:01:fc:72:6c:c6:72:9b:
ed:10:71:88:5f:91:0b:ec:fe:fc:e2:a1:09:b2:fb:
54:c0:46:a2:19:cf:1e:80:96:1b:f0:3b:c0:fd:2b:
c6:3d:a7:11:f1:49:b8:5d:0c:92:46:e1:09:0f:b5:
51:a1:48:51:b7:8f:52:28:41:2a:fa:09:ae:c5:d5:
f8:1f:d2:4b:48:7f:32:5d:c4:fa:37:d4:55:45:31:
ca:1c:32:36:2f:be:82:a0:3c:db:47:98:ff:17:2d:
b8:79:86:3c:8d:4a:87:ab:09:3a:db:e7:13:63:ab:
d3:cd:07:e4:56:80:7c:68:f1:3f:93:eb:b9:e6:f3:
02:f7:16:bf:04:36:94:70:9b:59:cb:60:85:e0:f5:
83:c3:76:18:76:9d:f0:16:8b:02:05:bc:ad:22:2d:
6d:97:ef:be:86:f8:7e:56:4e:09:70:9b:3e:08:00:
0f:d0:d8:f2:08:33:0f:fb:b0:1e:71:ac:09:51:8e:
e4:4e:48:ea:70:f3:c4:2a:92:1a:e4:75:5c:b5:70:
b5:42:a0:74:06:4d:1a:7e:97:42:98:0c:3d:50:64:
c6:0c:f2:73:98:83:ab:ed:b3:2f:4a:85:76:5f:b8:
ec:8a:db:b1:2f:ba:5e:6a:0f:b5:93:81:6a:ec:ad:
d8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:72:F0:E2:C7:D7:94:47:97:B3:49:61:91:F1:DF:D9:CC:F0:B3:33
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:a2:e0:0b:2f:48:73:cf:5d:35:55:f1:a6:15:8e:b5:40:02:
38:62:c9:4c:40:d2:83:d6:19:69:b5:11:3c:58:13:e7:7c:27:
c5:06:e1:8e:6d:db:48:54:8c:da:23:5b:70:80:58:1a:b1:30:
64:d7:02:2c:0d:70:32:1b:14:16:44:f7:21:06:39:6e:df:33:
4a:05:1f:b6:ab:cf:fe:63:11:93:62:61:99:37:63:7a:7d:fc:
70:a4:56:0b:9b:fc:71:03:2d:3f:97:ec:5c:05:c6:87:a7:bf:
72:94:9b:62:37:95:0b:7c:92:21:37:f8:be:d0:48:fd:dd:34:
a6:29:db:eb:fd:8c:ea:51:2a:c2:01:1f:d9:ba:81:aa:b1:67:
25:b2:9d:b8:83:4e:c0:28:b6:da:5d:eb:ae:50:8b:e5:1f:ea:
12:8b:81:85:59:88:1b:15:79:fd:63:9c:49:2b:5f:a8:1d:6d:
97:6b:8c:46:9f:cb:fa:0c:fd:08:be:ef:82:06:74:b4:93:43:
a1:e2:36:59:de:1a:d7:05:d7:b0:db:0b:b7:38:5a:59:16:1b:
d9:65:66:19:ac:fa:80:19:87:f9:0d:4d:d2:32:d2:f7:d0:7e:
43:7a:5b:19:9e:ac:a3:68:42:c4:d1:e4:fc:7f:f7:25:47:1f:
db:19:67:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVbn0XRs2bd27vBb+PVwqWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNzgxYzg0NTMzOTkwMGY3ZTZiMjAzM2U2Mzg4OGI1M2Fl
NTc4NzUwHhcNMjUwNDIwMjMwMDI2WhcNMjUwNDIxMjMwMDI2WjAzMTEwLwYDVQQD
EyhmMzcyZjBlMmM3ZDc5NDQ3OTdiMzQ5NjE5MWYxZGZkOWNjZjBiMzMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PWhKt/JpwH8cmzGcpvtEHGIX5EL
7P784qEJsvtUwEaiGc8egJYb8DvA/SvGPacR8Um4XQySRuEJD7VRoUhRt49SKEEq
+gmuxdX4H9JLSH8yXcT6N9RVRTHKHDI2L76CoDzbR5j/Fy24eYY8jUqHqwk62+cT
Y6vTzQfkVoB8aPE/k+u55vMC9xa/BDaUcJtZy2CF4PWDw3YYdp3wFosCBbytIi1t
l+++hvh+Vk4JcJs+CAAP0NjyCDMP+7AecawJUY7kTkjqcPPEKpIa5HVctXC1QqB0
Bk0afpdCmAw9UGTGDPJzmIOr7bMvSoV2X7jsituxL7peag+1k4Fq7K3YfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPNy8OLH15RHl7NJYZHx39nM8LMzMB8GA1UdIwQY
MBaAFK94HIRTOZAPfmsgM+Y4iLU65Xh1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kMWM3MWQtYWE1MC00ZDc4LThlNTIt
NWNmMzdhMzQ4MzBkLzEvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9kMWM3MWQtYWE1MC00ZDc4LThlNTItNWNmMzdhMzQ4MzBk
LzEvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJaLgCy9I
c89dNVXxphWOtUACOGLJTEDSg9YZabURPFgT53wnxQbhjm3bSFSM2iNbcIBYGrEw
ZNcCLA1wMhsUFkT3IQY5bt8zSgUftqvP/mMRk2JhmTdjen38cKRWC5v8cQMtP5fs
XAXGh6e/cpSbYjeVC3ySITf4vtBI/d00pinb6/2M6lEqwgEf2bqBqrFnJbKduINO
wCi22l3rrlCL5R/qEouBhVmIGxV5/WOcSStfqB1tl2uMRp/L+gz9CL7vggZ0tJND
oeI2Wd4a1wXXsNsLtzhaWRYb2WVmGaz6gBmH+Q1N0jLS99B+Q3pbGZ6so2hCxNHk
/H/3JUcf2xlnrg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:25:39 2025 by rpki-client