Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
File: gh8Shdd1qfWJJD6shErcWridl8k.mft (raw, json)
Hash identifier: +DKaAqKIvBizql9fD8FchLz/UabgwlyNge/pawguCng=
Subject key identifier: 16:31:72:E4:7B:A1:18:EC:7F:36:0C:69:71:70:28:3D:AA:45:7B:81
Authority key identifier: 82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
Certificate issuer: /CN=821f1285d775a9f589243eac844adc5ab89d97c9
Certificate serial: 01962F746BBD8179694F7DAE2D55A4A3E95D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
Manifest number: 098F
Signing time: Sun 13 Apr 2025 14:01:20 +0000
Manifest this update: Sun 13 Apr 2025 14:01:20 +0000
Manifest next update: Mon 14 Apr 2025 14:01:20 +0000
Files and hashes: 1: 9ZpW1MFLfzhcDdO5wTaJpRND5LI.roa (hash: eD8scxSV/Ipj3PNHolMKD1Dy5Nq6O0rfumsVRuff780=)
2: gh8Shdd1qfWJJD6shErcWridl8k.crl (hash: h9xlhMBiRAMUDVD9XyGacMe7ufdVj/tpXW/HdFyQcVc=)
3: yGExv6aT2zwwq4E64R4PQ7ZXbjU.roa (hash: UK4ZT9heAIw8jcnXNcqfBznXiBKMuH0NwH/ajGH3z/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2f:74:6b:bd:81:79:69:4f:7d:ae:2d:55:a4:a3:e9:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821f1285d775a9f589243eac844adc5ab89d97c9
Validity
Not Before: Apr 13 14:01:20 2025 GMT
Not After : Apr 14 14:01:20 2025 GMT
Subject: CN=163172e47ba118ec7f360c697170283daa457b81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:81:2f:ec:f9:0b:fd:41:8a:f4:7e:21:b0:f2:
9b:90:8b:33:ca:48:67:60:b6:0f:64:dc:b8:43:5a:
a1:f3:bd:f7:fc:b4:3d:c3:2c:03:32:41:c1:db:e3:
6d:4c:e4:d4:a0:8f:12:71:f5:85:e3:2b:07:9d:73:
fc:fe:3c:a9:04:b5:46:b2:ad:37:60:10:f3:ee:ca:
4d:18:cd:d4:e2:a4:8d:17:cd:27:a6:08:c5:2f:d6:
ed:71:9f:59:6e:51:ce:99:70:82:b4:ca:f6:e7:46:
b1:63:0a:b5:3a:0c:7d:b1:ee:92:f3:84:0b:93:84:
8e:97:c1:25:ae:12:29:01:65:23:ca:b1:1f:a4:56:
99:d7:a8:07:01:d1:71:89:ad:87:d5:eb:0f:96:3a:
19:bc:af:cf:30:82:24:82:fe:68:55:04:06:f5:6e:
a4:93:0c:d8:fd:6e:07:cf:ef:59:02:50:a8:7e:a8:
c8:ae:90:aa:d8:da:d7:1f:79:04:ad:ab:ae:fc:32:
48:dc:8e:b5:41:29:80:66:f9:97:b5:b9:75:b6:46:
e3:3c:bc:e8:48:03:59:ee:4b:9a:8b:d1:45:2c:b4:
16:92:34:6c:ea:0e:95:56:2a:37:0a:aa:89:c9:53:
ff:d1:e7:62:94:30:7f:f2:45:3e:75:11:64:fa:1b:
b6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:31:72:E4:7B:A1:18:EC:7F:36:0C:69:71:70:28:3D:AA:45:7B:81
X509v3 Authority Key Identifier:
keyid:82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:a0:ee:3b:a2:c6:de:dc:de:90:ba:b3:cc:6f:b5:fa:e1:ae:
da:de:30:49:b9:08:92:a0:6b:87:28:a8:7a:b8:89:cf:39:96:
42:af:e7:26:ec:87:60:e1:c5:76:6e:ae:c1:3a:b4:6d:c9:9c:
3c:5c:fb:6d:8c:5d:87:b0:cc:2a:e4:cd:0c:7f:d0:44:a0:1e:
74:53:1b:a1:79:17:03:55:68:d4:5f:02:43:97:89:93:3b:6b:
3d:28:15:94:9a:8f:a2:f9:28:22:28:52:a3:50:83:5f:28:0e:
29:1b:be:4d:20:c7:e5:6e:29:9b:d8:83:48:95:8e:9d:7a:48:
a5:0e:85:03:5e:73:1e:07:aa:c9:85:63:eb:e2:13:37:65:b2:
ff:ca:6f:55:e7:87:bf:f2:8f:12:1e:07:de:55:62:d3:48:da:
4a:e2:7f:e0:7f:4a:dd:1c:1a:24:9e:0d:98:15:04:a5:6e:5f:
89:ca:68:91:26:61:8a:8f:e0:01:98:b6:18:ab:a2:10:ef:c9:
45:8c:1b:a4:52:d7:11:39:37:f9:09:f2:14:3a:34:b9:7f:5c:
cd:93:1c:8c:0a:cd:d7:8b:1f:ac:88:0c:7a:59:de:68:80:56:
2f:e2:45:ac:e5:9c:17:63:ba:85:f7:39:f3:da:28:cd:6d:8b:
00:f8:3a:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYvdGu9gXlpT32uLVWko+ldMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyMWYxMjg1ZDc3NWE5ZjU4OTI0M2VhYzg0NGFkYzVhYjg5
ZDk3YzkwHhcNMjUwNDEzMTQwMTIwWhcNMjUwNDE0MTQwMTIwWjAzMTEwLwYDVQQD
EygxNjMxNzJlNDdiYTExOGVjN2YzNjBjNjk3MTcwMjgzZGFhNDU3YjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4Ev7PkL/UGK9H4hsPKbkIszykhn
YLYPZNy4Q1qh8733/LQ9wywDMkHB2+NtTOTUoI8ScfWF4ysHnXP8/jypBLVGsq03
YBDz7spNGM3U4qSNF80npgjFL9btcZ9ZblHOmXCCtMr250axYwq1Ogx9se6S84QL
k4SOl8ElrhIpAWUjyrEfpFaZ16gHAdFxia2H1esPljoZvK/PMIIkgv5oVQQG9W6k
kwzY/W4Hz+9ZAlCofqjIrpCq2NrXH3kErauu/DJI3I61QSmAZvmXtbl1tkbjPLzo
SANZ7kuai9FFLLQWkjRs6g6VVio3CqqJyVP/0edilDB/8kU+dRFk+hu2/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBYxcuR7oRjsfzYMaXFwKD2qRXuBMB8GA1UdIwQY
MBaAFIIfEoXXdan1iSQ+rIRK3Fq4nZfJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2g4U2hkZDFxZldKSkQ2c2hFcmNXcmlkbDhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xN2Q4MWQtMTczZC00NDg2LTk1NWQt
NDhlZWE4ZDVmZWYxLzEvZ2g4U2hkZDFxZldKSkQ2c2hFcmNXcmlkbDhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi8xN2Q4MWQtMTczZC00NDg2LTk1NWQtNDhlZWE4ZDVmZWYx
LzEvZ2g4U2hkZDFxZldKSkQ2c2hFcmNXcmlkbDhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGaDuO6LG
3tzekLqzzG+1+uGu2t4wSbkIkqBrhyioeriJzzmWQq/nJuyHYOHFdm6uwTq0bcmc
PFz7bYxdh7DMKuTNDH/QRKAedFMboXkXA1Vo1F8CQ5eJkztrPSgVlJqPovkoIihS
o1CDXygOKRu+TSDH5W4pm9iDSJWOnXpIpQ6FA15zHgeqyYVj6+ITN2Wy/8pvVeeH
v/KPEh4H3lVi00jaSuJ/4H9K3RwaJJ4NmBUEpW5ficpokSZhio/gAZi2GKuiEO/J
RYwbpFLXETk3+QnyFDo0uX9czZMcjArN14sfrIgMelneaIBWL+JFrOWcF2O6hfc5
89oozW2LAPg6DQ==
-----END CERTIFICATE-----
Generated at Sun Apr 13 18:20:23 2025 by rpki-client