Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
File: H9e7sd5oCd9_blc_mrtk5gNhPKE.mft (raw, json)
Hash identifier: xZkTodjwhjCetbkXFbddu4YvH0jxaaH5leURv1BBWbQ=
Subject key identifier: 42:8C:E0:4A:B3:33:3A:11:C8:90:49:5A:D7:EF:95:2C:98:AD:F4:83
Authority key identifier: 1F:D7:BB:B1:DE:68:09:DF:7F:6E:57:3F:9A:BB:64:E6:03:61:3C:A1
Certificate issuer: /CN=1fd7bbb1de6809df7f6e573f9abb64e603613ca1
Certificate serial: 01965191A289FDA92CE254FDCF6CF66E5C00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
Manifest number: 14FF
Signing time: Sun 20 Apr 2025 05:00:20 +0000
Manifest this update: Sun 20 Apr 2025 05:00:20 +0000
Manifest next update: Mon 21 Apr 2025 05:00:20 +0000
Files and hashes: 1: H9e7sd5oCd9_blc_mrtk5gNhPKE.crl (hash: kjmblGHty9VWboONVFUWhf9vp1gKsKblVJYuHupeLEU=)
2: hOjqFzmwDn3h8aF0jh7_FXo9ReI.roa (hash: CNoH2a1MzUmjFlMi/+aHXlooSM/YD9l7gB33O/u52sU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 05:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:91:a2:89:fd:a9:2c:e2:54:fd:cf:6c:f6:6e:5c:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd7bbb1de6809df7f6e573f9abb64e603613ca1
Validity
Not Before: Apr 20 05:00:20 2025 GMT
Not After : Apr 21 05:00:20 2025 GMT
Subject: CN=428ce04ab3333a11c890495ad7ef952c98adf483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c6:a3:32:3f:8a:1d:93:93:88:05:17:08:17:
e2:b1:ae:03:9b:2f:66:ed:c9:db:19:88:f0:29:38:
5f:f2:60:be:86:42:46:a1:0a:70:8b:b4:bf:bd:c1:
ce:b3:5a:28:a8:03:00:03:19:f2:4d:b2:d1:65:a4:
a5:4d:a1:52:a1:74:df:78:f3:62:0a:f9:23:3c:d8:
6f:c4:dd:8e:da:fe:0a:29:59:d5:fd:ac:9b:4a:56:
4f:4e:67:ef:92:47:13:2f:38:13:d6:35:2e:cd:08:
6c:89:a8:74:76:1b:5a:c6:dd:fc:d7:f7:fa:ae:dc:
b4:55:8e:25:be:96:ed:37:cd:20:6c:21:b9:b9:62:
28:ce:96:71:03:6d:77:44:fa:76:88:44:a5:36:b0:
cb:b0:07:7a:08:7e:66:87:0e:34:51:f2:aa:bc:65:
9e:78:4f:05:53:3e:c5:05:e0:f3:61:a0:38:1f:64:
fb:02:fc:09:87:51:16:15:bc:c4:41:87:56:11:ca:
63:e2:9f:92:28:03:da:dc:56:08:6b:d4:43:01:f6:
10:43:fc:b1:9a:1c:53:88:6f:40:05:3f:5d:2d:7f:
69:1b:c8:d1:4b:64:59:14:24:6d:ba:cd:a7:74:db:
f1:01:e5:bf:75:f3:41:d3:23:f0:eb:40:53:49:11:
f0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:8C:E0:4A:B3:33:3A:11:C8:90:49:5A:D7:EF:95:2C:98:AD:F4:83
X509v3 Authority Key Identifier:
keyid:1F:D7:BB:B1:DE:68:09:DF:7F:6E:57:3F:9A:BB:64:E6:03:61:3C:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:6b:ac:ff:49:a7:6c:b5:d9:8f:5e:55:dd:75:5a:f2:78:c4:
bf:40:ab:14:f1:a5:a9:9d:25:c7:86:23:21:b7:71:52:70:3d:
0b:15:72:ce:f0:4f:3c:ad:97:1c:c5:a4:41:e3:9e:84:f4:ad:
d0:e8:a7:96:e6:c2:5b:2d:54:b7:1b:33:ec:5f:26:16:62:f4:
0f:2c:2d:a2:db:29:da:6f:90:c7:b8:32:3c:69:06:25:19:84:
39:ea:8e:97:55:97:48:d1:d8:a8:93:fb:af:28:1c:ae:29:c1:
61:3d:c1:2a:ab:fd:cc:c6:e3:7c:38:82:c8:70:1d:3d:8c:ea:
8c:ae:63:28:16:b2:9b:97:2a:07:c9:e0:63:ba:3e:1d:12:c6:
88:b5:59:91:7e:da:d9:cd:20:39:63:2a:64:64:d6:bc:ed:86:
10:f5:e8:a4:ef:66:e9:19:0e:dc:61:53:f8:17:9c:78:5c:23:
c1:96:11:65:86:ca:8d:d3:63:9f:39:7b:c4:60:b3:f5:12:b2:
b4:84:9f:38:68:4c:c6:8d:bf:a2:3d:e5:84:cd:c8:2d:a8:6f:
fe:ad:43:c0:8f:1f:8e:7a:5a:21:30:af:8b:1a:62:d9:01:ac:
95:e4:42:d1:d8:f1:c8:14:77:a4:39:68:b4:5f:87:15:63:df:
cf:1f:d0:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZRkaKJ/aks4lT9z2z2blwAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmZDdiYmIxZGU2ODA5ZGY3ZjZlNTczZjlhYmI2NGU2MDM2
MTNjYTEwHhcNMjUwNDIwMDUwMDIwWhcNMjUwNDIxMDUwMDIwWjAzMTEwLwYDVQQD
Eyg0MjhjZTA0YWIzMzMzYTExYzg5MDQ5NWFkN2VmOTUyYzk4YWRmNDgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjcajMj+KHZOTiAUXCBfisa4Dmy9m
7cnbGYjwKThf8mC+hkJGoQpwi7S/vcHOs1ooqAMAAxnyTbLRZaSlTaFSoXTfePNi
CvkjPNhvxN2O2v4KKVnV/aybSlZPTmfvkkcTLzgT1jUuzQhsiah0dhtaxt381/f6
rty0VY4lvpbtN80gbCG5uWIozpZxA213RPp2iESlNrDLsAd6CH5mhw40UfKqvGWe
eE8FUz7FBeDzYaA4H2T7AvwJh1EWFbzEQYdWEcpj4p+SKAPa3FYIa9RDAfYQQ/yx
mhxTiG9ABT9dLX9pG8jRS2RZFCRtus2ndNvxAeW/dfNB0yPw60BTSRHw8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEKM4EqzMzoRyJBJWtfvlSyYrfSDMB8GA1UdIwQY
MBaAFB/Xu7HeaAnff25XP5q7ZOYDYTyhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDllN3NkNW9DZDlfYmxjX21ydGs1Z05oUEtFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9mOGU4MDMtNDFmNS00NjY4LWFmYTUt
ZGIxM2FiYmU0ZTlhLzEvSDllN3NkNW9DZDlfYmxjX21ydGs1Z05oUEtFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni9mOGU4MDMtNDFmNS00NjY4LWFmYTUtZGIxM2FiYmU0ZTlh
LzEvSDllN3NkNW9DZDlfYmxjX21ydGs1Z05oUEtFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK2us/0mn
bLXZj15V3XVa8njEv0CrFPGlqZ0lx4YjIbdxUnA9CxVyzvBPPK2XHMWkQeOehPSt
0OinlubCWy1Utxsz7F8mFmL0Dywtotsp2m+Qx7gyPGkGJRmEOeqOl1WXSNHYqJP7
rygcrinBYT3BKqv9zMbjfDiCyHAdPYzqjK5jKBaym5cqB8ngY7o+HRLGiLVZkX7a
2c0gOWMqZGTWvO2GEPXopO9m6RkO3GFT+BeceFwjwZYRZYbKjdNjnzl7xGCz9RKy
tISfOGhMxo2/oj3lhM3ILahv/q1DwI8fjnpaITCvixpi2QGsleRC0djxyBR3pDlo
tF+HFWPfzx/Q9A==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:10:29 2025 by rpki-client