Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
File: hyj0ANg9Saqm6TIMosv6k9pb55s.mft (raw, json)
Hash identifier: Il8yesJ+qTErZrSpzS8BdiDNsdEECDaZTz8kEnwY5gs=
Subject key identifier: 41:72:F1:D2:2E:E6:D1:62:9C:34:15:02:DC:B9:F2:9C:E9:BD:B8:CB
Authority key identifier: 87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
Certificate issuer: /CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Certificate serial: 01965538B2D893AEC78AE555BDFB6CBCB9A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
Manifest number: 03C9
Signing time: Sun 20 Apr 2025 22:01:41 +0000
Manifest this update: Sun 20 Apr 2025 22:01:41 +0000
Manifest next update: Mon 21 Apr 2025 22:01:41 +0000
Files and hashes: 1: hyj0ANg9Saqm6TIMosv6k9pb55s.crl (hash: S+gHpJRlfG7nmeKeTrYqaCf6RKEDRgUUyioxXKQDVxo=)
2: iTyIEEO2sljhZiJnAx_Ko0duy2M.roa (hash: T+291sx+aTIxs6928rSAPXeV/0gq52PnDMgh9u7+DTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:b2:d8:93:ae:c7:8a:e5:55:bd:fb:6c:bc:b9:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Validity
Not Before: Apr 20 22:01:41 2025 GMT
Not After : Apr 21 22:01:41 2025 GMT
Subject: CN=4172f1d22ee6d1629c341502dcb9f29ce9bdb8cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3a:d0:c1:99:25:a2:de:dc:c5:d5:dc:f0:39:
1a:13:c9:b2:8e:6a:39:fc:64:02:a3:b0:14:f5:0f:
c1:2b:a2:1d:7e:10:0e:27:78:72:77:8f:fd:97:91:
0d:d5:b0:b5:97:b5:dc:1c:6b:cd:8a:90:27:0c:65:
a7:96:9f:19:77:ee:39:3f:3b:65:c4:62:19:dd:39:
cf:12:4a:3c:fa:74:c4:30:3b:ad:8e:f9:e7:a7:88:
26:c4:b9:20:bd:d6:81:f1:3d:02:47:31:01:19:c5:
e0:82:ea:fb:73:d7:08:19:18:46:95:4a:46:5e:f4:
2e:74:6f:ad:ac:35:71:92:21:90:ae:3f:f3:10:7e:
39:df:22:8f:b8:cc:07:16:cc:09:94:6e:51:db:5e:
46:89:d0:df:39:69:83:83:29:05:b3:eb:eb:db:a8:
6f:5a:cd:ea:2e:42:44:1e:01:f8:cd:6c:be:d3:fd:
46:f2:a4:1a:f2:21:e9:63:92:17:11:3f:31:a0:6c:
4d:d3:c9:4e:bc:31:d7:23:92:48:2d:69:2c:24:c7:
2f:17:a2:bf:45:47:df:41:ae:3d:d8:a1:bc:25:ff:
ec:89:48:6f:c2:13:78:08:bc:c7:36:78:ea:c4:47:
41:70:85:11:92:65:4a:e3:2f:46:79:2a:e6:1f:31:
28:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:72:F1:D2:2E:E6:D1:62:9C:34:15:02:DC:B9:F2:9C:E9:BD:B8:CB
X509v3 Authority Key Identifier:
keyid:87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:90:7d:51:78:39:f5:8a:2c:8c:2a:fc:cc:6e:a0:f0:1a:62:
d0:e7:95:68:48:23:d6:7e:00:b1:6d:36:15:67:13:57:88:65:
c6:1b:f3:6e:6b:6b:16:a5:c2:9e:df:11:b3:bb:0e:c0:56:56:
9e:b4:27:b9:e5:35:3e:ab:8f:67:5f:6b:29:9c:97:a3:ec:6e:
cd:d7:3d:d7:a7:02:a2:0b:fc:15:8e:21:55:ee:72:9d:07:9e:
06:8c:75:57:f7:78:33:8d:11:f5:c0:ac:18:93:9e:94:2b:5d:
f4:48:10:c9:d4:99:ff:ef:5c:9c:c2:8e:99:58:d5:75:f4:c8:
36:52:92:96:8b:67:e0:e2:ed:fb:c1:63:8d:7e:8b:f4:b7:37:
03:3b:4f:0f:59:4b:2e:05:46:e6:d6:2f:fb:23:d2:1a:95:d3:
a2:a7:0b:dc:df:3e:5c:f2:cc:ea:de:bc:6b:f2:e0:60:6d:d4:
2c:b2:f7:5e:20:b4:84:a1:2b:81:bb:70:56:b7:44:dc:3d:d2:
cd:50:ab:3e:0c:ec:83:02:d9:ce:f8:3b:8a:0e:f0:7c:71:0a:
75:ca:c0:5d:02:01:f4:96:6d:60:c9:91:74:c9:1f:96:65:73:
8e:37:22:3c:87:67:f1:b8:43:7a:ca:0f:01:84:5b:96:5f:f6:
29:4a:6b:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVOLLYk67HiuVVvftsvLmlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MjhmNDAwZDgzZDQ5YWFhNmU5MzIwY2EyY2JmYTkzZGE1
YmU3OWIwHhcNMjUwNDIwMjIwMTQxWhcNMjUwNDIxMjIwMTQxWjAzMTEwLwYDVQQD
Eyg0MTcyZjFkMjJlZTZkMTYyOWMzNDE1MDJkY2I5ZjI5Y2U5YmRiOGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjrQwZklot7cxdXc8DkaE8myjmo5
/GQCo7AU9Q/BK6IdfhAOJ3hyd4/9l5EN1bC1l7XcHGvNipAnDGWnlp8Zd+45Pztl
xGIZ3TnPEko8+nTEMDutjvnnp4gmxLkgvdaB8T0CRzEBGcXggur7c9cIGRhGlUpG
XvQudG+trDVxkiGQrj/zEH453yKPuMwHFswJlG5R215GidDfOWmDgykFs+vr26hv
Ws3qLkJEHgH4zWy+0/1G8qQa8iHpY5IXET8xoGxN08lOvDHXI5JILWksJMcvF6K/
RUffQa492KG8Jf/siUhvwhN4CLzHNnjqxEdBcIURkmVK4y9GeSrmHzEoGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEFy8dIu5tFinDQVAty58pzpvbjLMB8GA1UdIwQY
MBaAFIco9ADYPUmqpukyDKLL+pPaW+ebMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8zM2YxYWItNmEzNS00ZTYzLThiZGMt
YTI1ZTE0ZDUzOWEyLzEvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC8zM2YxYWItNmEzNS00ZTYzLThiZGMtYTI1ZTE0ZDUzOWEy
LzEvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg5B9UXg5
9YosjCr8zG6g8Bpi0OeVaEgj1n4AsW02FWcTV4hlxhvzbmtrFqXCnt8Rs7sOwFZW
nrQnueU1PquPZ19rKZyXo+xuzdc916cCogv8FY4hVe5ynQeeBox1V/d4M40R9cCs
GJOelCtd9EgQydSZ/+9cnMKOmVjVdfTINlKSlotn4OLt+8FjjX6L9Lc3AztPD1lL
LgVG5tYv+yPSGpXToqcL3N8+XPLM6t68a/LgYG3ULLL3XiC0hKErgbtwVrdE3D3S
zVCrPgzsgwLZzvg7ig7wfHEKdcrAXQIB9JZtYMmRdMkflmVzjjciPIdn8bhDesoP
AYRbll/2KUpruQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:56:06 2025 by rpki-client