Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.mft
File: ge7hf9vLCdu87vZjxhV7X-MIH_Q.mft (raw, json)
Hash identifier: bsRm4nEfB+F2W325nKxKCtuH5IFXGVUDDotfWTkWcxU=
Subject key identifier: 4F:39:35:37:04:66:F0:9F:5E:A5:F0:03:5D:CB:0B:DD:C5:8A:EF:FE
Authority key identifier: 81:EE:E1:7F:DB:CB:09:DB:BC:EE:F6:63:C6:15:7B:5F:E3:08:1F:F4
Certificate issuer: /CN=81eee17fdbcb09dbbceef663c6157b5fe3081ff4
Certificate serial: 01964B224EA57466776B38CA46ACF90569D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ge7hf9vLCdu87vZjxhV7X-MIH_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.mft
Manifest number: 14FA
Signing time: Fri 18 Apr 2025 23:01:01 +0000
Manifest this update: Fri 18 Apr 2025 23:01:01 +0000
Manifest next update: Sat 19 Apr 2025 23:01:01 +0000
Files and hashes: 1: F4qvGIYkJR23AR8i3U55htWfFrA.roa (hash: sLcl2GBXiso+t+Z5Jf9zcobxR79ID28gM2VuGSdiFAw=)
2: ge7hf9vLCdu87vZjxhV7X-MIH_Q.crl (hash: 2DbeGOXCAo5MbAVZVuvHTC4QYnK1dr1z87F3gpeBsJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ge7hf9vLCdu87vZjxhV7X-MIH_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:22:4e:a5:74:66:77:6b:38:ca:46:ac:f9:05:69:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81eee17fdbcb09dbbceef663c6157b5fe3081ff4
Validity
Not Before: Apr 18 23:01:01 2025 GMT
Not After : Apr 19 23:01:01 2025 GMT
Subject: CN=4f3935370466f09f5ea5f0035dcb0bddc58aeffe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:51:0c:ac:ee:89:be:4a:07:56:36:fd:aa:d4:
f3:e8:60:39:8c:cb:63:e7:c7:e5:a3:b8:6c:27:85:
51:dc:dc:78:e7:ff:c4:0f:be:0d:38:e6:73:19:b0:
f6:66:70:34:ea:50:90:51:bb:69:b0:74:e2:df:6f:
ef:ff:34:2a:cf:32:00:84:2e:44:1f:30:81:08:ac:
77:dc:9c:89:b0:42:b0:1a:5a:bf:56:6d:fb:f5:fd:
17:29:8d:88:f8:9c:e1:09:d9:fc:f3:92:27:75:7a:
f4:83:ba:c4:64:6b:4e:5a:c2:33:67:c6:bf:88:53:
fd:d6:82:87:e9:32:0d:90:20:85:5c:92:00:c6:4a:
46:b6:d9:58:c1:39:4e:eb:1f:6c:40:a4:bb:6d:40:
b1:21:61:b4:8a:87:55:c4:02:0a:29:38:96:c2:4a:
18:74:9e:70:db:0e:0f:0d:1d:56:65:1b:86:51:0f:
0f:ba:c9:bb:47:b7:5d:e3:2d:cb:3e:78:32:0b:17:
d1:01:2d:57:13:a5:95:43:6c:bc:f6:8d:a5:16:4b:
57:94:0b:5f:3e:60:d5:e7:f6:d8:05:04:ec:f5:db:
67:02:13:ca:ca:b8:f9:67:e2:6a:6b:ac:51:7f:0d:
3c:89:da:24:a9:8a:60:4e:4e:4f:d8:af:ec:ba:79:
62:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:39:35:37:04:66:F0:9F:5E:A5:F0:03:5D:CB:0B:DD:C5:8A:EF:FE
X509v3 Authority Key Identifier:
keyid:81:EE:E1:7F:DB:CB:09:DB:BC:EE:F6:63:C6:15:7B:5F:E3:08:1F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ge7hf9vLCdu87vZjxhV7X-MIH_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:52:ce:cb:ce:88:86:69:ae:a7:10:37:df:ec:3e:03:3a:2a:
d3:7e:5f:a9:89:f7:fc:ce:d8:40:b2:75:6d:2c:7a:9f:59:c1:
52:b8:ce:e2:bb:c7:b7:7d:16:3f:03:c5:90:46:7f:f5:c1:a8:
97:1c:50:d7:f2:54:28:d7:49:31:7d:3f:ff:15:d3:29:88:27:
b3:0d:e4:2d:42:a8:5c:6e:98:06:27:f5:8d:28:b6:73:ce:2f:
d7:1b:c2:d1:3b:8e:5b:20:40:67:3d:75:68:9b:21:51:a2:02:
d2:e1:77:c5:c5:5d:f4:3b:db:07:21:8b:5b:73:42:17:63:8f:
0c:9e:4a:3b:d7:7c:0c:df:b1:76:22:c9:09:14:37:5b:26:d6:
e3:78:5e:f7:27:9e:48:0b:b8:c8:d6:49:c0:13:cc:01:eb:c5:
a9:b1:c6:41:df:c1:40:1e:40:15:56:42:df:6e:9c:65:9b:c9:
f2:93:cf:1d:07:d2:8e:68:99:d4:73:c7:c2:3d:fd:8f:2d:aa:
2b:ea:a3:cb:6d:6b:39:d5:c2:dc:3d:8d:c2:94:9d:9d:83:ef:
1c:00:e9:5d:43:f4:fb:db:66:e8:f0:54:50:ea:00:1d:4d:58:
86:9a:7f:7f:80:ae:9a:8c:5d:2b:54:90:47:2d:1c:3d:4d:56:
f8:e6:91:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZLIk6ldGZ3azjKRqz5BWnXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxZWVlMTdmZGJjYjA5ZGJiY2VlZjY2M2M2MTU3YjVmZTMw
ODFmZjQwHhcNMjUwNDE4MjMwMTAxWhcNMjUwNDE5MjMwMTAxWjAzMTEwLwYDVQQD
Eyg0ZjM5MzUzNzA0NjZmMDlmNWVhNWYwMDM1ZGNiMGJkZGM1OGFlZmZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5FEMrO6JvkoHVjb9qtTz6GA5jMtj
58flo7hsJ4VR3Nx45//ED74NOOZzGbD2ZnA06lCQUbtpsHTi32/v/zQqzzIAhC5E
HzCBCKx33JyJsEKwGlq/Vm379f0XKY2I+JzhCdn885IndXr0g7rEZGtOWsIzZ8a/
iFP91oKH6TINkCCFXJIAxkpGttlYwTlO6x9sQKS7bUCxIWG0iodVxAIKKTiWwkoY
dJ5w2w4PDR1WZRuGUQ8Pusm7R7dd4y3LPngyCxfRAS1XE6WVQ2y89o2lFktXlAtf
PmDV5/bYBQTs9dtnAhPKyrj5Z+Jqa6xRfw08idokqYpgTk5P2K/sunli9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE85NTcEZvCfXqXwA13LC93Fiu/+MB8GA1UdIwQY
MBaAFIHu4X/bywnbvO72Y8YVe1/jCB/0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2U3aGY5dkxDZHU4N3ZaanhoVjdYLU1JSF9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi82NTBhNmItNDgyNi00YzFlLWE5NzIt
NDhhZDE0YmE3NDk4LzEvZ2U3aGY5dkxDZHU4N3ZaanhoVjdYLU1JSF9RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi82NTBhNmItNDgyNi00YzFlLWE5NzItNDhhZDE0YmE3NDk4
LzEvZ2U3aGY5dkxDZHU4N3ZaanhoVjdYLU1JSF9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj1LOy86I
hmmupxA33+w+Azoq035fqYn3/M7YQLJ1bSx6n1nBUrjO4rvHt30WPwPFkEZ/9cGo
lxxQ1/JUKNdJMX0//xXTKYgnsw3kLUKoXG6YBif1jSi2c84v1xvC0TuOWyBAZz11
aJshUaIC0uF3xcVd9DvbByGLW3NCF2OPDJ5KO9d8DN+xdiLJCRQ3WybW43he9yee
SAu4yNZJwBPMAevFqbHGQd/BQB5AFVZC326cZZvJ8pPPHQfSjmiZ1HPHwj39jy2q
K+qjy21rOdXC3D2NwpSdnYPvHADpXUP0+9tm6PBUUOoAHU1Yhpp/f4CumoxdK1SQ
Ry0cPU1W+OaRnA==
-----END CERTIFICATE-----
Generated at Sat Apr 19 00:55:41 2025 by rpki-client