Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
File: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft (raw, json)
Hash identifier: SUmb4U+YjWqdhCseNyq97k/DEl7MNzBfMJETygndjhQ=
Subject key identifier: 05:41:42:8B:CF:2A:36:DE:15:CB:7A:62:95:A3:47:85:48:69:50:1E
Authority key identifier: AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
Certificate issuer: /CN=ae7f187c12782fc4d844762235993329c4563a0d
Certificate serial: 0196580258A5BBB9EA04824565D7AF2F3DA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
Manifest number: 0B1C
Signing time: Mon 21 Apr 2025 11:01:10 +0000
Manifest this update: Mon 21 Apr 2025 11:01:10 +0000
Manifest next update: Tue 22 Apr 2025 11:01:10 +0000
Files and hashes: 1: ArXM7RJDnDKHHLBE21eoL2lE76c.roa (hash: n1+IHvUCKe6KRZXjngvQSrArHwaB9mNvliy4XN3wMhA=)
2: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl (hash: JJQCqCqLkJWtOrGI3ncIoWBn27FNDZTlcyetRSBEJXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:02:58:a5:bb:b9:ea:04:82:45:65:d7:af:2f:3d:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f187c12782fc4d844762235993329c4563a0d
Validity
Not Before: Apr 21 11:01:10 2025 GMT
Not After : Apr 22 11:01:10 2025 GMT
Subject: CN=0541428bcf2a36de15cb7a6295a347854869501e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0e:2d:35:d3:a3:63:fb:50:8a:99:07:1a:a3:
9b:54:5e:11:1c:62:ee:21:92:e2:6c:76:e5:0e:b3:
0b:22:1c:fe:a3:7f:f0:d9:71:25:63:02:1b:50:36:
13:53:09:34:fd:16:d1:f7:a7:fe:c2:dd:ec:ab:46:
3f:3b:72:da:4d:8a:f1:95:44:79:9f:ea:28:23:45:
0c:e9:fe:0f:90:d4:43:96:06:81:0b:b7:92:1c:8d:
3a:27:9f:ed:a9:c8:bd:f0:7f:82:2e:0b:6e:d5:f1:
bf:83:aa:e7:94:e5:cf:04:c4:5b:a6:81:21:b8:26:
d3:d2:ee:38:ca:db:6d:be:ee:98:7d:c5:8c:1c:2d:
98:e0:24:5e:1f:f5:55:2d:b9:ec:19:12:f4:2e:9f:
ea:25:f2:25:1d:e3:2c:b8:e8:34:67:c1:9c:0a:5d:
b6:f5:ca:11:c0:0c:18:18:b7:5a:3d:ab:c7:a6:1a:
3a:2f:37:6d:a5:47:bf:35:d7:d9:29:3b:3b:1a:84:
9e:06:fc:d4:04:b3:62:05:d2:ad:bc:a5:94:18:f1:
93:f8:8e:39:ef:57:0f:4a:0c:16:45:ae:c1:cf:f3:
f5:5b:4d:06:ce:72:be:85:de:c6:37:9b:3c:b0:7e:
74:cb:17:0f:81:45:08:bd:4a:74:92:1d:e0:41:52:
f2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:41:42:8B:CF:2A:36:DE:15:CB:7A:62:95:A3:47:85:48:69:50:1E
X509v3 Authority Key Identifier:
keyid:AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:25:45:fd:4f:3b:61:d7:4d:12:71:41:0e:87:ce:c1:92:19:
d9:f0:23:f8:99:62:61:4b:d1:b4:d8:1d:85:81:b4:16:c2:86:
09:54:6a:fe:a6:f8:ea:47:38:c5:e2:1e:56:9f:d5:bd:ce:6a:
2a:91:ae:71:ff:3a:2a:cc:8c:db:6d:4a:23:67:14:74:1e:53:
ae:ea:dd:48:ee:2a:2c:7c:ba:59:3a:37:9e:70:84:55:f8:02:
1e:ac:64:c8:52:a1:a8:bc:70:4a:0a:ae:f2:a7:72:0b:1c:1c:
51:db:40:88:48:9f:e0:80:3d:a3:3f:23:7b:f7:24:d1:d1:c6:
81:8e:43:4e:25:f3:f8:07:23:3e:b5:e0:50:46:d8:75:da:4a:
7c:d3:e3:5e:23:b2:a6:02:2d:f1:fa:50:8f:0b:89:4c:09:81:
db:37:1d:7f:2d:fa:36:be:32:df:8d:92:29:f7:73:0d:fd:15:
8d:62:66:36:4a:ef:94:41:90:e5:fd:ad:8f:5b:3e:5e:b3:1d:
45:0c:db:d9:e3:87:25:db:72:0c:13:77:49:43:20:7e:3b:00:
8c:35:ef:ea:e9:58:e3:b2:8b:ee:84:80:dd:fa:2d:58:f9:15:
bd:9a:bc:76:3c:2b:b5:cc:44:26:2a:13:03:d7:88:ee:98:dc:
c3:3d:a6:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZYAlilu7nqBIJFZdevLz2pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlN2YxODdjMTI3ODJmYzRkODQ0NzYyMjM1OTkzMzI5YzQ1
NjNhMGQwHhcNMjUwNDIxMTEwMTEwWhcNMjUwNDIyMTEwMTEwWjAzMTEwLwYDVQQD
EygwNTQxNDI4YmNmMmEzNmRlMTVjYjdhNjI5NWEzNDc4NTQ4Njk1MDFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkg4tNdOjY/tQipkHGqObVF4RHGLu
IZLibHblDrMLIhz+o3/w2XElYwIbUDYTUwk0/RbR96f+wt3sq0Y/O3LaTYrxlUR5
n+ooI0UM6f4PkNRDlgaBC7eSHI06J5/tqci98H+CLgtu1fG/g6rnlOXPBMRbpoEh
uCbT0u44ytttvu6YfcWMHC2Y4CReH/VVLbnsGRL0Lp/qJfIlHeMsuOg0Z8GcCl22
9coRwAwYGLdaPavHpho6LzdtpUe/NdfZKTs7GoSeBvzUBLNiBdKtvKWUGPGT+I45
71cPSgwWRa7Bz/P1W00GznK+hd7GN5s8sH50yxcPgUUIvUp0kh3gQVLyiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAVBQovPKjbeFct6YpWjR4VIaVAeMB8GA1UdIwQY
MBaAFK5/GHwSeC/E2ER2IjWZMynEVjoNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm44WWZCSjRMOFRZUkhZaU5aa3pLY1JXT2cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9jOGY2NDctZWQ3OS00MmQ5LThkZjYt
MDU4Nzc2MDRhMDFkLzEvcm44WWZCSjRMOFRZUkhZaU5aa3pLY1JXT2cwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9jOGY2NDctZWQ3OS00MmQ5LThkZjYtMDU4Nzc2MDRhMDFk
LzEvcm44WWZCSjRMOFRZUkhZaU5aa3pLY1JXT2cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnCVF/U87
YddNEnFBDofOwZIZ2fAj+JliYUvRtNgdhYG0FsKGCVRq/qb46kc4xeIeVp/Vvc5q
KpGucf86KsyM221KI2cUdB5TrurdSO4qLHy6WTo3nnCEVfgCHqxkyFKhqLxwSgqu
8qdyCxwcUdtAiEif4IA9oz8je/ck0dHGgY5DTiXz+AcjPrXgUEbYddpKfNPjXiOy
pgIt8fpQjwuJTAmB2zcdfy36Nr4y342SKfdzDf0VjWJmNkrvlEGQ5f2tj1s+XrMd
RQzb2eOHJdtyDBN3SUMgfjsAjDXv6ulY47KL7oSA3fotWPkVvZq8djwrtcxEJioT
A9eI7pjcwz2mOA==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:39 2025 by rpki-client