Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
File: RMKVym7oyucAa1d69U43ZiPfd5k.mft (raw, json)
Hash identifier: bUYkcoW3NqJGX+QEt4nu2QMU8obEVc4Ha54nRMYaj84=
Subject key identifier: CB:C6:2A:65:6D:DF:26:35:37:A5:4F:3B:8A:4B:6B:F3:D2:EC:87:BB
Authority key identifier: 44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
Certificate issuer: /CN=44c295ca6ee8cae7006b577af54e376623df7799
Certificate serial: 01964FDA501CD6825562F9C68E060749D0F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
Manifest number: 12C9
Signing time: Sat 19 Apr 2025 21:00:29 +0000
Manifest this update: Sat 19 Apr 2025 21:00:29 +0000
Manifest next update: Sun 20 Apr 2025 21:00:29 +0000
Files and hashes: 1: 1-a4x5OOX4iisCDf6ed1yjE-GXUQ.roa (hash: sw8ry0bOHDndmxXW/2FyYZ7exmAZ4VvNy12eeZpqa3o=)
2: RMKVym7oyucAa1d69U43ZiPfd5k.crl (hash: iq6TrCAC30Ig4s0P++cSsKoXyYk71Xc2InFDdmdHjxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 21:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:50:1c:d6:82:55:62:f9:c6:8e:06:07:49:d0:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44c295ca6ee8cae7006b577af54e376623df7799
Validity
Not Before: Apr 19 21:00:29 2025 GMT
Not After : Apr 20 21:00:29 2025 GMT
Subject: CN=cbc62a656ddf263537a54f3b8a4b6bf3d2ec87bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a8:e7:98:0f:b7:65:9c:8a:88:ab:51:06:87:
37:5b:9f:10:7d:db:6f:b4:ae:56:33:a7:6c:d9:e7:
d4:d3:53:b6:5a:b6:f2:98:14:36:e8:d6:6d:89:7a:
f2:db:6d:10:b2:ad:2d:8a:57:62:cc:43:8e:58:ae:
42:a8:ff:82:c4:6c:63:d2:ad:74:67:51:5d:90:28:
a1:d1:a2:66:c5:47:01:3a:b3:15:38:7d:c2:2c:ee:
26:31:c6:cd:31:38:48:86:65:13:98:f5:a5:74:04:
3f:26:44:a9:1f:6a:ea:16:ba:57:86:74:13:fc:14:
04:77:2f:e3:5e:39:2c:2a:05:79:19:21:bb:4d:02:
0c:25:da:14:fe:f4:bf:67:46:6c:85:f6:35:79:2d:
9f:27:94:df:b1:7b:7e:72:7c:89:0d:ac:ac:ed:ac:
21:9f:e0:f3:11:d3:77:6e:d3:00:dd:95:99:c3:ed:
d1:d0:0f:30:7b:7c:a1:8a:f9:92:37:e4:28:6d:63:
17:cf:a9:49:5e:e2:67:44:03:0c:70:0e:08:89:a0:
ba:6a:80:ae:41:e4:c2:fb:9b:4d:8f:f9:96:1b:a4:
ef:00:93:ed:07:c9:26:b3:e9:34:2a:79:9b:1d:cc:
00:ab:e3:77:9c:b3:33:5c:85:d5:a0:80:19:a9:d2:
18:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C6:2A:65:6D:DF:26:35:37:A5:4F:3B:8A:4B:6B:F3:D2:EC:87:BB
X509v3 Authority Key Identifier:
keyid:44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:c1:fa:58:ef:e7:2b:93:d3:a1:bd:e5:66:0f:36:01:b7:76:
7f:c2:41:ae:fd:cd:47:3d:46:d3:bd:95:34:2a:c7:07:b9:4c:
dd:41:5f:d7:39:ea:78:72:15:12:40:9a:7f:c5:28:46:bf:50:
27:74:ee:65:4a:e7:ba:55:f7:c4:90:5c:7c:61:c6:63:c2:6e:
49:bb:5c:b1:ad:f9:67:39:60:dc:e6:35:2b:ba:00:8e:79:e0:
71:80:80:ee:a9:fa:1d:60:0b:92:5c:09:d0:9e:f3:e6:71:6d:
e4:d2:bd:79:b1:36:40:30:b2:b4:61:31:04:5c:d6:84:3f:72:
74:43:1b:89:95:6e:7b:8c:08:0e:0b:0b:f1:30:20:90:73:77:
36:0b:31:01:41:fe:70:a7:19:45:1a:f9:c7:c8:ae:14:36:df:
4a:58:88:55:b1:c4:16:f5:9b:da:21:d2:2a:21:40:aa:fb:a5:
79:05:b8:43:ba:f6:08:cb:e5:c6:6a:a2:43:d3:c0:3b:ee:2e:
10:31:1e:b8:43:e9:e6:1b:b1:bc:e8:d1:d5:5f:f7:08:59:e2:
05:fb:fd:13:63:19:ac:a8:03:08:39:db:23:50:2f:e1:6a:88:
4d:d3:70:d0:dd:e3:07:da:25:3b:48:42:2e:bb:46:f7:29:76:
57:fc:e8:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZP2lAc1oJVYvnGjgYHSdD4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0YzI5NWNhNmVlOGNhZTcwMDZiNTc3YWY1NGUzNzY2MjNk
Zjc3OTkwHhcNMjUwNDE5MjEwMDI5WhcNMjUwNDIwMjEwMDI5WjAzMTEwLwYDVQQD
EyhjYmM2MmE2NTZkZGYyNjM1MzdhNTRmM2I4YTRiNmJmM2QyZWM4N2JiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqjnmA+3ZZyKiKtRBoc3W58Qfdtv
tK5WM6ds2efU01O2WrbymBQ26NZtiXry220Qsq0tildizEOOWK5CqP+CxGxj0q10
Z1FdkCih0aJmxUcBOrMVOH3CLO4mMcbNMThIhmUTmPWldAQ/JkSpH2rqFrpXhnQT
/BQEdy/jXjksKgV5GSG7TQIMJdoU/vS/Z0ZshfY1eS2fJ5TfsXt+cnyJDays7awh
n+DzEdN3btMA3ZWZw+3R0A8we3yhivmSN+QobWMXz6lJXuJnRAMMcA4IiaC6aoCu
QeTC+5tNj/mWG6TvAJPtB8kms+k0KnmbHcwAq+N3nLMzXIXVoIAZqdIY1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMvGKmVt3yY1N6VPO4pLa/PS7Ie7MB8GA1UdIwQY
MBaAFETClcpu6MrnAGtXevVON2Yj33eZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUk1LVnltN295dWNBYTFkNjlVNDNaaVBmZDVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8xN2E4OGQtMjM2ZC00ZmFkLTkwMzUt
NzU5OWI0NDFjZDFjLzEvUk1LVnltN295dWNBYTFkNjlVNDNaaVBmZDVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8xN2E4OGQtMjM2ZC00ZmFkLTkwMzUtNzU5OWI0NDFjZDFj
LzEvUk1LVnltN295dWNBYTFkNjlVNDNaaVBmZDVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAisH6WO/n
K5PTob3lZg82Abd2f8JBrv3NRz1G072VNCrHB7lM3UFf1znqeHIVEkCaf8UoRr9Q
J3TuZUrnulX3xJBcfGHGY8JuSbtcsa35Zzlg3OY1K7oAjnngcYCA7qn6HWALklwJ
0J7z5nFt5NK9ebE2QDCytGExBFzWhD9ydEMbiZVue4wIDgsL8TAgkHN3NgsxAUH+
cKcZRRr5x8iuFDbfSliIVbHEFvWb2iHSKiFAqvuleQW4Q7r2CMvlxmqiQ9PAO+4u
EDEeuEPp5huxvOjR1V/3CFniBfv9E2MZrKgDCDnbI1Av4WqITdNw0N3jB9olO0hC
LrtG9yl2V/zoVQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:20:58 2025 by rpki-client