Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
File: 1AYg6l2vilSq6hfyy57N8114UwY.mft (raw, json)
Hash identifier: A3n2y6eOKKfogP30pvjyYD+Y5+4Sz/v1tkY/llCoQXU=
Subject key identifier: ED:F6:2D:9C:9F:B9:DE:03:A5:83:5B:91:5C:BF:EF:8F:90:43:B9:2D
Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Certificate serial: 01964D4764AF09259FDD5970BD4FA07F21AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
Manifest number: 0FD2
Signing time: Sat 19 Apr 2025 09:00:46 +0000
Manifest this update: Sat 19 Apr 2025 09:00:46 +0000
Manifest next update: Sun 20 Apr 2025 09:00:46 +0000
Files and hashes: 1: 1AYg6l2vilSq6hfyy57N8114UwY.crl (hash: 6rP/8zZULIh6Ee1/32QRHhpk925mGRuS7PLzGA/R1X0=)
2: gGx-x2iRamyRfnlhx5me1YxCw6s.roa (hash: JLnMtxeLdoGYGRa/pvkNkIdX/aY0zlXxd7zsjwME0tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:47:64:af:09:25:9f:dd:59:70:bd:4f:a0:7f:21:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306
Validity
Not Before: Apr 19 09:00:46 2025 GMT
Not After : Apr 20 09:00:46 2025 GMT
Subject: CN=edf62d9c9fb9de03a5835b915cbfef8f9043b92d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7b:4d:77:ca:aa:55:77:79:89:cf:73:67:27:
f3:95:94:ec:56:98:61:b6:d4:49:1e:22:09:20:9d:
80:3a:5c:1c:12:f6:d6:e6:1d:ad:5a:26:94:43:a8:
82:63:2a:db:f4:e7:38:3c:c5:6c:9c:7f:d4:fd:8e:
17:5a:91:e6:8b:1f:a4:2c:9f:ce:46:c5:d3:e0:46:
4f:17:26:75:f4:60:b0:4a:00:ef:1b:e6:9e:64:f0:
84:17:11:fe:5b:d5:7f:16:d4:c6:c8:ff:02:9d:6c:
c2:e5:1f:62:6e:a3:2c:5c:f2:ce:77:ae:52:05:5a:
eb:7f:ca:00:2b:e9:6b:b2:87:31:78:6e:3a:6f:e1:
43:44:12:95:18:96:55:83:88:17:58:12:87:5a:5f:
e2:b0:ee:43:c1:43:9b:ea:90:ac:f5:61:62:b0:f5:
82:b6:5f:cf:53:22:d7:db:80:da:86:58:5b:42:84:
5f:df:e7:a9:8e:24:c2:00:db:af:fd:3b:d6:c2:b3:
97:d4:40:a4:7e:a5:4b:24:30:cf:2f:65:1c:4c:dd:
b3:8c:80:8d:a9:d2:24:8b:58:7c:bd:d3:ea:d5:cd:
b9:67:4d:f5:af:3e:5d:19:16:4f:57:26:b1:8a:1a:
0f:3f:47:b1:e4:31:8b:f3:3f:f1:b4:b1:41:d3:b8:
27:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F6:2D:9C:9F:B9:DE:03:A5:83:5B:91:5C:BF:EF:8F:90:43:B9:2D
X509v3 Authority Key Identifier:
keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:86:c6:8c:fc:c2:86:22:5e:6b:cf:3c:4e:f7:1b:e1:0a:b6:
c5:d8:ed:aa:f0:ac:a1:e8:2a:e1:67:a4:ec:31:86:bd:eb:a7:
84:a2:e4:75:59:d4:9f:de:5a:0f:ec:87:de:27:b7:c9:11:75:
00:8d:60:d8:4e:51:e5:14:a2:88:d9:31:dc:60:a1:6d:12:be:
d3:8f:e4:69:a9:c1:1d:e7:3d:58:f0:48:80:d9:7e:b0:09:3d:
18:74:d6:80:c6:33:fc:37:10:34:c9:d1:8c:d4:35:4c:2f:47:
64:db:1c:8a:42:c9:9c:79:06:8c:ee:3e:9f:09:34:d0:2e:00:
a0:35:21:d5:81:1e:ec:fc:7f:54:c4:74:24:6a:38:39:b6:70:
c6:bb:af:2e:f7:63:0a:3e:ed:e4:f2:af:f3:e0:33:b2:34:3c:
54:8e:dc:42:c2:03:9f:16:f9:dc:b2:94:08:97:84:c3:e0:41:
99:c0:e8:cd:fc:a9:c1:b1:05:56:01:13:49:1e:c6:3c:23:41:
68:a8:eb:10:7f:52:87:b8:72:d3:6c:24:ba:93:23:3e:77:d1:
5c:2c:f7:8c:45:55:59:76:41:bb:62:2e:bd:d1:d8:47:3c:59:
68:d1:ee:3b:f5:8f:56:ca:ea:ac:d1:b5:24:ee:58:b0:a3:55:
e8:33:98:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNR2SvCSWf3VlwvU+gfyGvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0MDYyMGVhNWRhZjhhNTRhYWVhMTdmMmNiOWVjZGYzNWQ3
ODUzMDYwHhcNMjUwNDE5MDkwMDQ2WhcNMjUwNDIwMDkwMDQ2WjAzMTEwLwYDVQQD
EyhlZGY2MmQ5YzlmYjlkZTAzYTU4MzViOTE1Y2JmZWY4ZjkwNDNiOTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvntNd8qqVXd5ic9zZyfzlZTsVphh
ttRJHiIJIJ2AOlwcEvbW5h2tWiaUQ6iCYyrb9Oc4PMVsnH/U/Y4XWpHmix+kLJ/O
RsXT4EZPFyZ19GCwSgDvG+aeZPCEFxH+W9V/FtTGyP8CnWzC5R9ibqMsXPLOd65S
BVrrf8oAK+lrsocxeG46b+FDRBKVGJZVg4gXWBKHWl/isO5DwUOb6pCs9WFisPWC
tl/PUyLX24DahlhbQoRf3+epjiTCANuv/TvWwrOX1ECkfqVLJDDPL2UcTN2zjICN
qdIki1h8vdPq1c25Z031rz5dGRZPVyaxihoPP0ex5DGL8z/xtLFB07gnBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO32LZyfud4DpYNbkVy/74+QQ7ktMB8GA1UdIwQY
MBaAFNQGIOpdr4pUquoX8suezfNdeFMGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi83OThmYzUtYjU0Yy00MWMxLThhZmUt
ZjA5ZTQ2YzY5YmY4LzEvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi83OThmYzUtYjU0Yy00MWMxLThhZmUtZjA5ZTQ2YzY5YmY4
LzEvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj4bGjPzC
hiJea888Tvcb4Qq2xdjtqvCsoegq4Wek7DGGveunhKLkdVnUn95aD+yH3ie3yRF1
AI1g2E5R5RSiiNkx3GChbRK+04/kaanBHec9WPBIgNl+sAk9GHTWgMYz/DcQNMnR
jNQ1TC9HZNscikLJnHkGjO4+nwk00C4AoDUh1YEe7Px/VMR0JGo4ObZwxruvLvdj
Cj7t5PKv8+AzsjQ8VI7cQsIDnxb53LKUCJeEw+BBmcDozfypwbEFVgETSR7GPCNB
aKjrEH9Sh7hy02wkupMjPnfRXCz3jEVVWXZBu2IuvdHYRzxZaNHuO/WPVsrqrNG1
JO5YsKNV6DOY8A==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:26:35 2025 by rpki-client