Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
File: HDotyHGc8y1ZegUekO2VAmg15Pg.mft (raw, json)
Hash identifier: J8Sh4oKtarlkYrsEQiu86VbHWQhQAXqd8f7VMoWc+ec=
Subject key identifier: A4:AB:DC:40:4E:D0:E5:6B:62:60:02:4A:C3:0C:1E:3B:10:44:93:6A
Authority key identifier: 1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
Certificate issuer: /CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Certificate serial: 0196575D1513056E97AC68CB8105D3F3D24A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
Manifest number: 0616
Signing time: Mon 21 Apr 2025 08:00:40 +0000
Manifest this update: Mon 21 Apr 2025 08:00:40 +0000
Manifest next update: Tue 22 Apr 2025 08:00:40 +0000
Files and hashes: 1: HDotyHGc8y1ZegUekO2VAmg15Pg.crl (hash: SElO/TfW79B7cK1Y3tiFBkMA1J417VX6hdO/c4KwBAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:5d:15:13:05:6e:97:ac:68:cb:81:05:d3:f3:d2:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Validity
Not Before: Apr 21 08:00:40 2025 GMT
Not After : Apr 22 08:00:40 2025 GMT
Subject: CN=a4abdc404ed0e56b6260024ac30c1e3b1044936a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ca:47:ba:9d:57:34:36:94:49:3a:59:b3:ee:
b4:05:bc:d1:ca:9e:b4:08:48:51:22:f4:9b:07:a0:
00:f2:9a:08:36:a4:e3:f5:ac:8c:f0:8e:38:97:be:
50:b6:87:98:35:ff:06:8b:62:fa:34:15:ba:1a:bf:
4c:a4:84:9c:b5:4b:98:35:c8:45:59:e6:b8:0a:9b:
a6:ce:0a:f7:2d:28:2b:e8:fc:fe:08:b7:11:7c:43:
df:bc:33:2e:13:d6:3f:2d:2a:4d:7a:2b:08:f5:c0:
aa:e1:58:e5:62:fd:1f:45:24:d7:70:54:0e:23:d5:
5e:bc:b3:85:f4:0c:8e:06:ba:97:f9:94:bb:f6:e1:
31:11:05:25:15:28:93:ea:4c:c3:4c:0f:ef:75:9d:
bb:fb:17:b2:d3:ef:c1:d1:50:2c:70:bf:08:35:d6:
18:e8:64:be:fa:61:b0:f7:e7:df:ab:65:0e:87:0b:
46:90:32:a7:01:7e:b8:9d:55:d4:a0:59:7f:67:a6:
41:54:c0:76:f7:d9:02:2f:ae:5f:50:9d:37:02:a8:
91:32:70:d3:c8:e9:a3:a4:ab:b6:ef:84:5b:38:47:
00:e5:49:eb:de:49:a7:d2:4a:07:6f:77:45:35:b6:
7c:71:09:ac:ce:38:46:db:69:e1:0f:65:47:5c:53:
9b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:AB:DC:40:4E:D0:E5:6B:62:60:02:4A:C3:0C:1E:3B:10:44:93:6A
X509v3 Authority Key Identifier:
keyid:1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:9c:88:23:74:3d:17:c7:8f:30:ce:99:bb:07:f0:2a:f7:6f:
ff:69:f0:14:e0:fa:c9:f9:2c:ad:7f:a3:db:4b:5e:6c:1f:b8:
82:6d:89:7e:52:9d:e4:d1:95:75:ba:f5:f6:b4:f9:52:45:f7:
15:7c:41:eb:ad:74:3e:b2:c7:ed:8e:c3:42:05:0a:15:80:03:
57:39:9f:c9:2a:22:c4:29:bd:99:13:60:cd:f8:3d:cd:53:08:
17:90:9e:fd:2b:25:5f:56:ee:07:a6:d0:55:8d:45:c3:8a:29:
65:a2:1e:17:38:0c:2c:07:21:75:1b:ce:f9:66:9c:04:84:75:
5b:2d:b0:2e:e5:cc:ee:de:31:26:14:07:e7:7c:e3:81:85:63:
e1:df:8d:2d:f9:11:7a:c5:de:5a:ba:4f:16:66:5f:be:85:3c:
46:e6:b9:9b:4f:97:5a:16:2a:f7:87:ee:ba:ec:a3:e7:ff:2d:
a7:96:e7:a4:8a:dc:45:de:75:42:11:67:06:dd:15:f9:fa:08:
ab:9c:f3:2e:ff:0a:20:80:7d:e2:ef:23:02:c6:cd:bd:ba:ee:
f0:91:96:ba:d6:b1:5d:da:3b:64:5d:a3:f9:5b:a8:8b:fc:39:
59:07:62:83:a6:23:f8:26:86:2a:90:08:45:61:29:a7:82:50:
c4:77:f4:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZXXRUTBW6XrGjLgQXT89JKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjM2EyZGM4NzE5Y2YzMmQ1OTdhMDUxZTkwZWQ5NTAyNjgz
NWU0ZjgwHhcNMjUwNDIxMDgwMDQwWhcNMjUwNDIyMDgwMDQwWjAzMTEwLwYDVQQD
EyhhNGFiZGM0MDRlZDBlNTZiNjI2MDAyNGFjMzBjMWUzYjEwNDQ5MzZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwspHup1XNDaUSTpZs+60BbzRyp60
CEhRIvSbB6AA8poINqTj9ayM8I44l75QtoeYNf8Gi2L6NBW6Gr9MpISctUuYNchF
Wea4Cpumzgr3LSgr6Pz+CLcRfEPfvDMuE9Y/LSpNeisI9cCq4VjlYv0fRSTXcFQO
I9VevLOF9AyOBrqX+ZS79uExEQUlFSiT6kzDTA/vdZ27+xey0+/B0VAscL8INdYY
6GS++mGw9+ffq2UOhwtGkDKnAX64nVXUoFl/Z6ZBVMB299kCL65fUJ03AqiRMnDT
yOmjpKu274RbOEcA5Unr3kmn0koHb3dFNbZ8cQmszjhG22nhD2VHXFOb1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKSr3EBO0OVrYmACSsMMHjsQRJNqMB8GA1UdIwQY
MBaAFBw6LchxnPMtWXoFHpDtlQJoNeT4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSERvdHlIR2M4eTFaZWdVZWtPMlZBbWcxNVBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9hMTRmZGQtMmVjOC00NGM4LWE0NzAt
YTY2NTY1MWZjYjIwLzEvSERvdHlIR2M4eTFaZWdVZWtPMlZBbWcxNVBnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9hMTRmZGQtMmVjOC00NGM4LWE0NzAtYTY2NTY1MWZjYjIw
LzEvSERvdHlIR2M4eTFaZWdVZWtPMlZBbWcxNVBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaJyII3Q9
F8ePMM6ZuwfwKvdv/2nwFOD6yfksrX+j20tebB+4gm2JflKd5NGVdbr19rT5UkX3
FXxB6610PrLH7Y7DQgUKFYADVzmfySoixCm9mRNgzfg9zVMIF5Ce/SslX1buB6bQ
VY1Fw4opZaIeFzgMLAchdRvO+WacBIR1Wy2wLuXM7t4xJhQH53zjgYVj4d+NLfkR
esXeWrpPFmZfvoU8Rua5m0+XWhYq94fuuuyj5/8tp5bnpIrcRd51QhFnBt0V+foI
q5zzLv8KIIB94u8jAsbNvbru8JGWutaxXdo7ZF2j+Vuoi/w5WQdig6Yj+CaGKpAI
RWEpp4JQxHf0Sw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 10:37:38 2025 by rpki-client