Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
File: 86GuCwfNBe4khPTuvNRWhHNHNBQ.mft (raw, json)
Hash identifier: fhol6ODnNo8OZQ0JWKZS1DAu3hmwVeKa3C6T3fVhaV8=
Subject key identifier: 38:65:4B:BF:63:49:0B:13:E8:9B:65:E1:40:D7:A3:12:E7:9F:57:CF
Authority key identifier: F3:A1:AE:0B:07:CD:05:EE:24:84:F4:EE:BC:D4:56:84:73:47:34:14
Certificate issuer: /CN=f3a1ae0b07cd05ee2484f4eebcd4568473473414
Certificate serial: 0196406713882D6B31BCF53E19E71B0DCD13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
Manifest number: 14F7
Signing time: Wed 16 Apr 2025 21:00:19 +0000
Manifest this update: Wed 16 Apr 2025 21:00:19 +0000
Manifest next update: Thu 17 Apr 2025 21:00:19 +0000
Files and hashes: 1: 0yNiuwlEmaGi-GMVCrhtb0jD684.roa (hash: 0JYmDVSwa/kA2DCdsSlQFjDnGZq4KcJ5IykJE11qOfk=)
2: 86GuCwfNBe4khPTuvNRWhHNHNBQ.crl (hash: M5I6QEXyOji6aScNdZj3n8eYdEoS6Eeq8/8XjlTglQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:67:13:88:2d:6b:31:bc:f5:3e:19:e7:1b:0d:cd:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3a1ae0b07cd05ee2484f4eebcd4568473473414
Validity
Not Before: Apr 16 21:00:19 2025 GMT
Not After : Apr 17 21:00:19 2025 GMT
Subject: CN=38654bbf63490b13e89b65e140d7a312e79f57cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:31:b6:3a:0c:b1:f1:cc:07:7c:e5:eb:d2:f4:
5f:06:74:13:40:ad:68:df:95:76:e2:36:d4:b1:f5:
55:73:3e:5d:82:e9:aa:57:68:73:d2:4a:48:fb:5f:
62:fb:21:c7:4c:0f:29:95:d7:3f:ba:ef:1b:cf:8d:
56:48:58:ca:ff:ba:18:52:f5:23:1f:4b:12:d4:9a:
eb:c4:4f:a6:04:53:12:d6:b7:49:0e:17:5a:e0:ce:
1b:d6:65:08:e6:10:51:26:73:31:c0:6b:1d:1d:9b:
46:11:2c:cf:dd:18:08:c9:63:3a:9d:6c:e9:64:81:
24:86:dc:e5:df:c4:e1:6d:55:73:69:23:1d:ac:6f:
85:02:31:dd:2e:66:30:c2:f0:68:ca:8a:f1:29:38:
cf:95:61:a7:c4:b7:d0:13:f2:b2:b2:1e:9f:bd:10:
48:c2:8a:21:99:1e:e4:45:32:67:d1:e2:d3:c0:95:
a6:1f:e0:d2:1a:e6:10:52:64:9c:f0:84:ba:eb:24:
c1:a6:6d:f1:35:44:45:86:8b:79:fb:2c:91:c8:77:
4f:5f:7a:9a:9b:3f:bb:7a:a4:83:e8:47:f5:f5:d1:
c8:80:85:7e:e2:07:3e:73:81:6a:2b:7d:53:e3:e7:
c7:60:7b:61:46:62:18:95:fc:c2:22:42:44:e4:82:
ba:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:65:4B:BF:63:49:0B:13:E8:9B:65:E1:40:D7:A3:12:E7:9F:57:CF
X509v3 Authority Key Identifier:
keyid:F3:A1:AE:0B:07:CD:05:EE:24:84:F4:EE:BC:D4:56:84:73:47:34:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:57:9d:18:86:f5:cb:af:17:6e:cb:62:d0:ff:f4:8f:0b:6a:
55:f2:6f:fa:06:a9:48:16:c7:2e:eb:86:a4:52:0b:b5:f4:91:
b8:6a:5e:f8:a9:08:fd:d3:9e:39:19:b0:2b:db:63:4b:4c:94:
af:12:56:41:0a:02:8d:d7:84:92:95:e3:73:8e:9e:99:8c:21:
11:40:a4:d1:5f:b7:0a:11:0f:35:e4:98:23:a0:32:d7:0c:39:
5f:c2:2c:7d:a9:d2:d3:52:f8:11:9d:8c:68:6e:e6:25:96:83:
e3:d5:cf:b5:b4:6a:2d:3d:31:a9:68:91:90:14:c4:13:52:bd:
08:85:fc:59:5e:9a:bc:86:a3:2b:a7:a8:6c:ba:ba:ba:44:ad:
6c:a1:37:4f:c3:ce:be:b6:00:9a:f2:1d:53:87:1b:7c:46:ac:
90:0b:1c:bd:08:29:96:4a:89:22:4f:16:0b:01:a1:a8:f2:9b:
e6:b8:42:43:0a:3b:45:ca:88:07:1a:e7:fd:a6:0a:2a:72:57:
ad:e6:e9:9c:f4:78:44:01:98:57:aa:44:1d:9d:d8:fc:12:0c:
16:c1:0b:14:0e:cc:19:1e:04:10:1c:bd:56:b2:ed:f7:76:92:
91:3f:d4:84:0d:f5:3d:87:2d:65:8a:68:7d:31:28:bd:a9:c9:
1a:37:97:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZAZxOILWsxvPU+GecbDc0TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYzYTFhZTBiMDdjZDA1ZWUyNDg0ZjRlZWJjZDQ1Njg0NzM0
NzM0MTQwHhcNMjUwNDE2MjEwMDE5WhcNMjUwNDE3MjEwMDE5WjAzMTEwLwYDVQQD
EygzODY1NGJiZjYzNDkwYjEzZTg5YjY1ZTE0MGQ3YTMxMmU3OWY1N2NmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApjG2Ogyx8cwHfOXr0vRfBnQTQK1o
35V24jbUsfVVcz5dgumqV2hz0kpI+19i+yHHTA8pldc/uu8bz41WSFjK/7oYUvUj
H0sS1JrrxE+mBFMS1rdJDhda4M4b1mUI5hBRJnMxwGsdHZtGESzP3RgIyWM6nWzp
ZIEkhtzl38ThbVVzaSMdrG+FAjHdLmYwwvBoyorxKTjPlWGnxLfQE/Kysh6fvRBI
woohmR7kRTJn0eLTwJWmH+DSGuYQUmSc8IS66yTBpm3xNURFhot5+yyRyHdPX3qa
mz+7eqSD6Ef19dHIgIV+4gc+c4FqK31T4+fHYHthRmIYlfzCIkJE5IK6EQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDhlS79jSQsT6Jtl4UDXoxLnn1fPMB8GA1UdIwQY
MBaAFPOhrgsHzQXuJIT07rzUVoRzRzQUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvODZHdUN3Zk5CZTRraFBUdXZOUldoSE5ITkJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8yMTYyZDgtZTlkZS00OTgxLWIxY2Et
Yjg0NzdmNTA3M2MxLzEvODZHdUN3Zk5CZTRraFBUdXZOUldoSE5ITkJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8yMTYyZDgtZTlkZS00OTgxLWIxY2EtYjg0NzdmNTA3M2Mx
LzEvODZHdUN3Zk5CZTRraFBUdXZOUldoSE5ITkJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZFedGIb1
y68Xbsti0P/0jwtqVfJv+gapSBbHLuuGpFILtfSRuGpe+KkI/dOeORmwK9tjS0yU
rxJWQQoCjdeEkpXjc46emYwhEUCk0V+3ChEPNeSYI6Ay1ww5X8IsfanS01L4EZ2M
aG7mJZaD49XPtbRqLT0xqWiRkBTEE1K9CIX8WV6avIajK6eobLq6ukStbKE3T8PO
vrYAmvIdU4cbfEaskAscvQgplkqJIk8WCwGhqPKb5rhCQwo7RcqIBxrn/aYKKnJX
rebpnPR4RAGYV6pEHZ3Y/BIMFsELFA7MGR4EEBy9VrLt93aSkT/UhA31PYctZYpo
fTEovanJGjeXoA==
-----END CERTIFICATE-----
Generated at Thu Apr 17 08:14:06 2025 by rpki-client