Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
File: h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft (raw, json)
Hash identifier: oG2EurTGHzUMYb6FhopiZN3S55nfA7rAmqPiM5svw8w=
Subject key identifier: 35:DE:09:FF:84:2A:90:E8:67:EB:F3:F5:0E:8C:93:E2:78:F8:7F:45
Authority key identifier: 87:F4:5E:3A:40:69:D4:F5:EB:D5:F6:E6:42:1D:8D:3C:AB:E3:09:21
Certificate issuer: /CN=87f45e3a4069d4f5ebd5f6e6421d8d3cabe30921
Certificate serial: 0196297253607E9469D5643CECD447FDF91D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
Manifest number: 1094
Signing time: Sat 12 Apr 2025 10:01:20 +0000
Manifest this update: Sat 12 Apr 2025 10:01:20 +0000
Manifest next update: Sun 13 Apr 2025 10:01:20 +0000
Files and hashes: 1: EqmxfEPR61JZ1PILd4aiLsGlGKg.roa (hash: o+GN8e0CITe+H1MxoXkf/yVp/P7VliN/bKmtLSSdiwk=)
2: h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl (hash: 1x7FXyDyVEzCNXliAnVHLqEQ0McVW0Pf/leP7xANz8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:29:72:53:60:7e:94:69:d5:64:3c:ec:d4:47:fd:f9:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87f45e3a4069d4f5ebd5f6e6421d8d3cabe30921
Validity
Not Before: Apr 12 10:01:20 2025 GMT
Not After : Apr 13 10:01:20 2025 GMT
Subject: CN=35de09ff842a90e867ebf3f50e8c93e278f87f45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:dc:e3:11:9d:5a:88:24:3e:ab:14:30:eb:1a:
01:60:5e:ba:85:b0:7c:f1:26:91:8f:b0:19:6d:33:
84:a0:74:c7:f0:c4:45:1f:bf:80:aa:72:9c:cc:32:
fc:ae:46:55:5e:e8:d5:f2:ad:3d:57:71:31:31:43:
42:3d:47:ca:b4:a5:28:e7:5a:90:f0:3b:ca:3e:de:
e3:35:81:6c:96:85:a9:8f:26:82:b6:e7:b7:be:f2:
a0:e7:2c:2a:c3:2b:af:40:b9:a7:82:43:fc:62:f1:
8e:30:05:24:94:4d:8e:00:74:a1:ea:71:9c:75:b2:
00:52:a0:46:51:e9:1e:cd:56:74:b2:ff:99:4f:e4:
5c:05:11:e3:87:e7:1d:99:dd:ac:45:f4:e6:7d:66:
93:53:6e:c7:04:60:ea:bc:dc:d2:a1:41:28:4f:c5:
20:fa:9e:3d:e3:24:8d:86:f0:72:16:a4:78:d6:0d:
01:28:d4:a5:e5:a3:d0:2b:7b:c4:65:34:4a:12:34:
15:03:63:cc:55:8d:7c:6f:27:14:2a:48:48:93:3c:
66:10:e3:c7:d9:a2:26:47:5e:d9:2c:d8:c0:4d:89:
49:13:5e:14:ec:59:10:81:0d:17:7b:64:6d:f1:e8:
b8:a1:90:f9:fe:7e:63:3f:a0:db:11:73:ae:e7:62:
77:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:DE:09:FF:84:2A:90:E8:67:EB:F3:F5:0E:8C:93:E2:78:F8:7F:45
X509v3 Authority Key Identifier:
keyid:87:F4:5E:3A:40:69:D4:F5:EB:D5:F6:E6:42:1D:8D:3C:AB:E3:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h_ReOkBp1PXr1fbmQh2NPKvjCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bdfd3-d5a1-45b9-9296-6319bb079c44/1/h_ReOkBp1PXr1fbmQh2NPKvjCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:ef:aa:ab:c2:66:55:8a:32:59:1e:39:8f:7e:2d:37:ab:40:
3c:59:99:01:d3:e2:df:96:25:fc:56:38:fb:26:14:e3:c9:02:
b9:c2:83:6c:b9:61:c8:bf:7c:06:a4:cb:4f:8f:bd:4b:c2:35:
46:fd:62:f4:97:49:3f:a0:5e:51:af:62:87:b4:42:34:37:af:
56:85:8b:5b:71:18:2f:1e:b9:93:0f:31:bf:00:af:94:83:15:
86:67:2f:cb:59:9b:1a:b1:1c:18:1c:ca:c2:82:36:c3:89:ae:
5e:b2:0e:42:73:87:18:1a:c3:1e:97:d3:aa:59:a9:c8:af:8d:
4c:0a:5e:4b:19:8b:16:4f:9c:58:de:c9:68:6b:d6:7f:58:f0:
3d:b5:b1:56:e9:87:f5:8a:48:ae:0d:32:f1:aa:5c:3b:6d:02:
2f:bf:c6:bb:73:76:ba:a3:53:10:e6:6a:78:32:08:19:f4:ae:
6d:ba:92:6b:b2:45:f2:9b:46:4d:76:d8:ba:60:fc:a7:a1:6c:
f2:d5:ac:7d:9f:1b:4c:26:6f:72:88:b6:56:17:ae:e7:de:f9:
ae:61:dd:69:8a:be:8f:54:2b:db:71:fc:87:c6:be:bb:94:d7:
90:18:60:4b:a5:b4:a6:b8:20:3f:4b:e0:f7:81:d2:52:8d:a8:
2f:27:5a:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYpclNgfpRp1WQ87NRH/fkdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZjQ1ZTNhNDA2OWQ0ZjVlYmQ1ZjZlNjQyMWQ4ZDNjYWJl
MzA5MjEwHhcNMjUwNDEyMTAwMTIwWhcNMjUwNDEzMTAwMTIwWjAzMTEwLwYDVQQD
EygzNWRlMDlmZjg0MmE5MGU4NjdlYmYzZjUwZThjOTNlMjc4Zjg3ZjQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudzjEZ1aiCQ+qxQw6xoBYF66hbB8
8SaRj7AZbTOEoHTH8MRFH7+AqnKczDL8rkZVXujV8q09V3ExMUNCPUfKtKUo51qQ
8DvKPt7jNYFsloWpjyaCtue3vvKg5ywqwyuvQLmngkP8YvGOMAUklE2OAHSh6nGc
dbIAUqBGUekezVZ0sv+ZT+RcBRHjh+cdmd2sRfTmfWaTU27HBGDqvNzSoUEoT8Ug
+p494ySNhvByFqR41g0BKNSl5aPQK3vEZTRKEjQVA2PMVY18bycUKkhIkzxmEOPH
2aImR17ZLNjATYlJE14U7FkQgQ0Xe2Rt8ei4oZD5/n5jP6DbEXOu52J35QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDXeCf+EKpDoZ+vz9Q6Mk+J4+H9FMB8GA1UdIwQY
MBaAFIf0XjpAadT169X25kIdjTyr4wkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaF9SZU9rQnAxUFhyMWZibVFoMk5QS3ZqQ1NFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC84YmRmZDMtZDVhMS00NWI5LTkyOTYt
NjMxOWJiMDc5YzQ0LzEvaF9SZU9rQnAxUFhyMWZibVFoMk5QS3ZqQ1NFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC84YmRmZDMtZDVhMS00NWI5LTkyOTYtNjMxOWJiMDc5YzQ0
LzEvaF9SZU9rQnAxUFhyMWZibVFoMk5QS3ZqQ1NFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGu+qq8Jm
VYoyWR45j34tN6tAPFmZAdPi35Yl/FY4+yYU48kCucKDbLlhyL98BqTLT4+9S8I1
Rv1i9JdJP6BeUa9ih7RCNDevVoWLW3EYLx65kw8xvwCvlIMVhmcvy1mbGrEcGBzK
woI2w4muXrIOQnOHGBrDHpfTqlmpyK+NTApeSxmLFk+cWN7JaGvWf1jwPbWxVumH
9YpIrg0y8apcO20CL7/Gu3N2uqNTEOZqeDIIGfSubbqSa7JF8ptGTXbYumD8p6Fs
8tWsfZ8bTCZvcoi2Vheu5975rmHdaYq+j1Qr23H8h8a+u5TXkBhgS6W0prggP0vg
94HSUo2oLyda3A==
-----END CERTIFICATE-----
Generated at Sat Apr 12 15:37:05 2025 by rpki-client