Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
File: REIuqj2u32uQIVnu2-lMqbfSKE8.mft (raw, json)
Hash identifier: z6q1XxOSeOjjLo5leQzCOyZfD+6PXhqygdn8yuGfi1I=
Subject key identifier: F7:CD:8E:37:17:37:4D:0D:B8:0C:F8:6A:F2:3D:F7:55:B7:D3:6D:F3
Authority key identifier: 44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
Certificate issuer: /CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Certificate serial: 01960D1F1AB0098BAD532E940D3E46E63BFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
Manifest number: 0B0C
Signing time: Sun 06 Apr 2025 22:01:04 +0000
Manifest this update: Sun 06 Apr 2025 22:01:04 +0000
Manifest next update: Mon 07 Apr 2025 22:01:04 +0000
Files and hashes: 1: REIuqj2u32uQIVnu2-lMqbfSKE8.crl (hash: sbWeUfIs83dkbJgApvKBlEnUxBvbS1hf5nFdPGtsMLo=)
2: pkwPVsxSdYAUrwekUiCsSfEtBsc.roa (hash: VAoyCYorOSAEGcSFlO8mKuQLxbXXAWAO6ekhAMd8Fps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0d:1f:1a:b0:09:8b:ad:53:2e:94:0d:3e:46:e6:3b:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Validity
Not Before: Apr 6 22:01:04 2025 GMT
Not After : Apr 7 22:01:04 2025 GMT
Subject: CN=f7cd8e3717374d0db80cf86af23df755b7d36df3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:03:df:6f:3f:0d:3e:5a:bd:6d:5d:eb:dc:fa:
85:b2:07:f2:2b:70:28:68:2e:b1:3d:56:ff:27:6a:
fb:e3:c3:76:47:89:b4:cc:6a:10:2e:c6:84:30:58:
21:83:68:a4:e4:c2:c0:ad:c0:1b:b0:4e:4e:70:7e:
cf:d9:bf:41:67:2d:25:cf:9f:ce:97:7b:58:cb:b3:
ba:d7:43:1e:cc:bd:c3:01:ee:33:b3:8a:f8:8b:14:
44:6f:ac:92:e2:86:62:f6:0d:3e:d2:d0:8f:66:61:
41:49:35:cc:02:b8:6c:e6:02:05:ec:a7:92:c7:de:
8f:ff:fb:ad:c0:e4:1d:38:76:86:b6:6e:73:08:ad:
e1:99:a8:df:09:0e:5d:f1:cc:35:4a:a7:a0:4a:af:
a8:81:f7:6b:16:56:05:c3:cb:a3:82:46:6c:c5:f0:
97:42:c2:78:b1:2f:e5:8b:28:5f:ec:3b:c5:c6:6a:
b1:d9:7c:3f:ca:bb:1a:7f:1e:c6:28:ce:f9:9f:db:
cb:38:70:0e:d5:21:96:ae:cc:ea:f7:ee:59:7a:bb:
f6:1b:3a:f9:c3:86:44:71:c6:e1:8b:cf:2f:47:6c:
99:2c:dc:1a:6d:0d:a1:f5:5a:06:1d:76:d6:68:b5:
67:99:40:4c:28:f7:32:d1:a2:ed:e5:9c:d6:9d:88:
93:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:CD:8E:37:17:37:4D:0D:B8:0C:F8:6A:F2:3D:F7:55:B7:D3:6D:F3
X509v3 Authority Key Identifier:
keyid:44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:c3:d9:e3:72:eb:d6:ca:64:03:ca:a8:04:8a:23:0c:b9:3a:
a0:92:c1:32:86:17:b0:60:d4:6a:72:36:67:22:a4:47:b7:b5:
14:92:5e:a7:57:33:7c:95:2c:b9:53:c1:f7:f6:61:4b:e8:86:
65:d0:a4:37:67:09:ee:59:74:54:63:14:56:41:56:ab:88:9e:
0b:89:33:f0:b1:9f:01:e3:32:fc:41:6f:20:e6:ce:c5:0b:2c:
39:c4:03:8c:b5:f2:85:04:ad:83:1f:14:be:81:c1:e1:54:6c:
19:68:67:09:c9:b6:2e:69:ef:71:7f:63:cd:4b:af:5e:84:c9:
20:32:57:da:cb:f5:25:10:70:5a:22:07:dc:a2:88:bd:06:af:
20:10:95:ef:02:4c:6e:b5:88:50:ba:c7:1b:f2:98:a6:58:33:
d1:49:4e:6e:8c:7f:a3:3e:73:27:d2:c1:43:5e:46:b2:5a:0f:
84:37:0b:50:be:af:d4:59:45:a7:5d:de:36:77:34:bb:00:d4:
de:30:db:c1:8d:3a:23:04:ac:7a:fb:25:a2:13:3b:06:e4:ff:
cc:17:44:c9:20:2f:ff:71:c0:db:ba:88:00:de:e9:fb:05:ca:
7a:a7:ad:d1:5c:c5:c7:61:c6:c0:96:72:a5:b3:01:1f:95:b1:
86:29:35:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYNHxqwCYutUy6UDT5G5jv8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NDIyZWFhM2RhZWRmNmI5MDIxNTllZWRiZTk0Y2E5Yjdk
MjI4NGYwHhcNMjUwNDA2MjIwMTA0WhcNMjUwNDA3MjIwMTA0WjAzMTEwLwYDVQQD
EyhmN2NkOGUzNzE3Mzc0ZDBkYjgwY2Y4NmFmMjNkZjc1NWI3ZDM2ZGYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAugPfbz8NPlq9bV3r3PqFsgfyK3Ao
aC6xPVb/J2r748N2R4m0zGoQLsaEMFghg2ik5MLArcAbsE5OcH7P2b9BZy0lz5/O
l3tYy7O610MezL3DAe4zs4r4ixREb6yS4oZi9g0+0tCPZmFBSTXMArhs5gIF7KeS
x96P//utwOQdOHaGtm5zCK3hmajfCQ5d8cw1SqegSq+ogfdrFlYFw8ujgkZsxfCX
QsJ4sS/liyhf7DvFxmqx2Xw/yrsafx7GKM75n9vLOHAO1SGWrszq9+5Zerv2Gzr5
w4ZEccbhi88vR2yZLNwabQ2h9VoGHXbWaLVnmUBMKPcy0aLt5ZzWnYiT2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPfNjjcXN00NuAz4avI991W3023zMB8GA1UdIwQY
MBaAFERCLqo9rt9rkCFZ7tvpTKm30ihPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkVJdXFqMnUzMnVRSVZudTItbE1xYmZTS0U4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9kZDk0NGQtOGZhYS00Y2NlLWFhZmUt
YzA1MGY0YzA1ZjI5LzEvUkVJdXFqMnUzMnVRSVZudTItbE1xYmZTS0U4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9kZDk0NGQtOGZhYS00Y2NlLWFhZmUtYzA1MGY0YzA1ZjI5
LzEvUkVJdXFqMnUzMnVRSVZudTItbE1xYmZTS0U4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHsPZ43Lr
1spkA8qoBIojDLk6oJLBMoYXsGDUanI2ZyKkR7e1FJJep1czfJUsuVPB9/ZhS+iG
ZdCkN2cJ7ll0VGMUVkFWq4ieC4kz8LGfAeMy/EFvIObOxQssOcQDjLXyhQStgx8U
voHB4VRsGWhnCcm2LmnvcX9jzUuvXoTJIDJX2sv1JRBwWiIH3KKIvQavIBCV7wJM
brWIULrHG/KYplgz0UlObox/oz5zJ9LBQ15GsloPhDcLUL6v1FlFp13eNnc0uwDU
3jDbwY06IwSsevslohM7BuT/zBdEySAv/3HA27qIAN7p+wXKeqet0VzFx2HGwJZy
pbMBH5Wxhik1hw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:17:58 2025 by rpki-client