Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json)
Hash identifier: UqBRei8TQFxRBkwzJGuwC1a+79LoYK7i40wGIwZ5w4o=
Subject key identifier: 49:99:2A:B3:32:F8:CB:80:41:D5:7A:FB:33:44:4F:7E:45:73:C8:9C
Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Certificate serial: 01962B2977D97737553DC2C3025F3C612EAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
Manifest number: 14EB
Signing time: Sat 12 Apr 2025 18:00:59 +0000
Manifest this update: Sat 12 Apr 2025 18:00:59 +0000
Manifest next update: Sun 13 Apr 2025 18:00:59 +0000
Files and hashes: 1: 1-rU3n-MmX0x7vSSIglpKrM6p7wc.roa (hash: c73xh5XkAcPFRSo/oWqlfjE2NzFubQ+3BLO5+whFr6o=)
2: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: RyXnvbDf2uUmszGLfEdP7UJBJqswFA5POEiu60bmp0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2b:29:77:d9:77:37:55:3d:c2:c3:02:5f:3c:61:2e:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Validity
Not Before: Apr 12 18:00:59 2025 GMT
Not After : Apr 13 18:00:59 2025 GMT
Subject: CN=49992ab332f8cb8041d57afb33444f7e4573c89c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:82:b6:7c:67:76:b7:3e:17:c2:85:3e:ab:7b:
b5:b9:8a:4a:72:9a:27:26:7e:b4:40:0f:cf:37:56:
63:c8:71:5f:44:fe:59:43:de:68:ad:95:df:2e:c8:
0c:2e:15:c8:39:61:2f:5f:0c:d6:45:ae:0e:75:54:
60:dc:76:73:ef:87:5f:88:03:9d:a1:52:b6:62:13:
47:d9:7c:a5:78:3f:6b:49:44:ad:f1:10:1e:d6:8e:
74:f3:9d:88:45:c0:cb:22:96:f7:50:4f:6b:f7:d3:
91:1f:5f:0a:d2:da:7c:97:a2:69:7e:33:55:ef:d3:
11:99:dc:9b:2e:7c:b7:67:1f:af:ff:05:e6:d3:10:
32:0d:27:95:a4:ad:2f:43:0e:35:49:cb:10:20:15:
8c:76:37:65:74:09:5d:5a:7e:10:cc:a9:ab:d5:87:
dd:b7:6e:85:d1:b4:54:47:2c:3d:3d:f0:f7:4e:91:
a3:76:3c:b7:d8:a9:4d:e3:90:12:08:9d:ee:18:f2:
d9:d7:20:92:6c:71:d1:5c:14:15:dd:ec:d1:51:58:
be:77:22:f3:98:13:85:db:aa:d9:ef:52:61:ad:bb:
07:e6:b7:63:50:18:51:e3:91:e7:99:d7:ea:30:7a:
c3:26:3b:9c:13:23:59:22:6f:d1:60:9e:09:12:05:
72:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:99:2A:B3:32:F8:CB:80:41:D5:7A:FB:33:44:4F:7E:45:73:C8:9C
X509v3 Authority Key Identifier:
keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:03:a8:e9:14:a2:21:b9:1a:15:40:4a:1b:c8:fc:70:9e:5e:
e4:18:0c:29:60:56:0b:d6:07:98:21:12:46:d4:53:12:e4:ac:
2e:0f:6a:65:26:71:95:a1:2d:08:92:98:77:fe:9e:4e:c0:9a:
50:d7:8f:80:81:95:7e:f1:7a:a5:1b:94:1f:ee:65:62:70:97:
41:e0:00:86:11:9a:60:9d:a8:c1:b8:94:f9:71:ce:79:da:30:
d8:af:97:25:d4:1a:72:ca:79:27:08:1f:60:da:dc:da:9a:41:
88:5c:b7:5b:73:87:a6:5c:d8:81:c9:33:a4:cb:63:14:ee:f2:
ca:de:54:17:0f:2b:22:e2:94:7a:a5:ce:23:20:0c:e9:91:52:
04:15:cd:a4:3e:66:63:0a:ee:b3:c5:02:5d:81:03:06:6b:50:
f8:e3:ab:99:2f:93:da:a9:83:05:17:cf:6e:5b:1b:a6:d4:bb:
56:fb:66:29:99:a9:3f:36:83:fa:a5:27:dd:81:aa:2a:41:25:
29:57:4f:d0:a3:d2:95:2b:6b:b5:4e:fb:b8:04:d5:83:e8:5e:
45:3b:f8:cb:6b:77:8d:37:60:54:08:1c:fa:00:b9:12:23:71:
e9:30:e1:c9:a6:90:7b:ee:8a:47:30:95:b3:3c:27:02:13:5b:
26:0d:08:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYrKXfZdzdVPcLDAl88YS6uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyZGEyM2QzYjkzMGQ0YzFmM2FjNzMwNjVkNzFhNjA3YzM1
ZDI5MDAwHhcNMjUwNDEyMTgwMDU5WhcNMjUwNDEzMTgwMDU5WjAzMTEwLwYDVQQD
Eyg0OTk5MmFiMzMyZjhjYjgwNDFkNTdhZmIzMzQ0NGY3ZTQ1NzNjODljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14K2fGd2tz4XwoU+q3u1uYpKcpon
Jn60QA/PN1ZjyHFfRP5ZQ95orZXfLsgMLhXIOWEvXwzWRa4OdVRg3HZz74dfiAOd
oVK2YhNH2XyleD9rSUSt8RAe1o50852IRcDLIpb3UE9r99ORH18K0tp8l6JpfjNV
79MRmdybLny3Zx+v/wXm0xAyDSeVpK0vQw41ScsQIBWMdjdldAldWn4QzKmr1Yfd
t26F0bRURyw9PfD3TpGjdjy32KlN45ASCJ3uGPLZ1yCSbHHRXBQV3ezRUVi+dyLz
mBOF26rZ71JhrbsH5rdjUBhR45HnmdfqMHrDJjucEyNZIm/RYJ4JEgVyHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEmZKrMy+MuAQdV6+zNET35Fc8icMB8GA1UdIwQY
MBaAFOLaI9O5MNTB86xzBl1xpgfDXSkAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9kZWViYjgtYWU4Ni00Njk0LWE5NzIt
ODI3YTBhYzA0YTlkLzEvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9kZWViYjgtYWU4Ni00Njk0LWE5NzItODI3YTBhYzA0YTlk
LzEvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdgOo6RSi
IbkaFUBKG8j8cJ5e5BgMKWBWC9YHmCESRtRTEuSsLg9qZSZxlaEtCJKYd/6eTsCa
UNePgIGVfvF6pRuUH+5lYnCXQeAAhhGaYJ2owbiU+XHOedow2K+XJdQacsp5Jwgf
YNrc2ppBiFy3W3OHplzYgckzpMtjFO7yyt5UFw8rIuKUeqXOIyAM6ZFSBBXNpD5m
Ywrus8UCXYEDBmtQ+OOrmS+T2qmDBRfPblsbptS7VvtmKZmpPzaD+qUn3YGqKkEl
KVdP0KPSlStrtU77uATVg+heRTv4y2t3jTdgVAgc+gC5EiNx6TDhyaaQe+6KRzCV
szwnAhNbJg0IEA==
-----END CERTIFICATE-----
Generated at Sat Apr 12 21:11:09 2025 by rpki-client