Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
File: _RHEZUr3AuWW61DRP6SG202bzgo.mft (raw, json)
Hash identifier: HKgqz3QO1Rp/OPdTkZdiEZEvV6JmynscDoOiks4PYzg=
Subject key identifier: BF:81:92:39:E7:1F:6B:9D:4F:6F:6A:1F:F8:35:C8:58:7F:1B:73:79
Authority key identifier: FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
Certificate issuer: /CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Certificate serial: 0196538074BB67A1AE30A46B09817A17EC61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 14:00:49 +0000
Manifest this update: Sun 20 Apr 2025 14:00:49 +0000
Manifest next update: Mon 21 Apr 2025 14:00:49 +0000
Files and hashes: 1: W3jKuxB_RcgliKc6SOrb-E9lQW4.roa (hash: flRFJj0cuA1GRJx+AJmEhdqQRbsG/XKga+ETKIMZCEI=)
2: _RHEZUr3AuWW61DRP6SG202bzgo.crl (hash: yjUW2RD6w+lbI93QNNerEbiGRLL0ehiHkumvmeixMSY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:80:74:bb:67:a1:ae:30:a4:6b:09:81:7a:17:ec:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Validity
Not Before: Apr 20 14:00:49 2025 GMT
Not After : Apr 21 14:00:49 2025 GMT
Subject: CN=bf819239e71f6b9d4f6f6a1ff835c8587f1b7379
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bc:fe:2a:a8:6c:7d:96:51:51:79:62:f4:62:
e8:79:0f:97:39:41:18:ca:bf:97:f6:eb:71:bc:93:
de:76:e1:dd:3e:d3:17:ca:51:72:b1:98:5e:ec:9b:
30:f9:58:86:93:26:66:05:81:6e:b7:04:72:b6:3a:
61:da:eb:b0:3d:03:0e:59:9a:a5:3f:03:68:95:d6:
de:51:e6:a2:0c:88:cc:aa:9d:c0:5a:87:64:89:1f:
19:7d:d9:36:71:89:31:a9:4e:c6:a7:75:7a:21:6a:
1a:25:2e:09:b3:8b:05:32:dd:95:21:24:e7:d1:83:
b1:d4:27:c1:06:fd:90:b9:37:87:32:7c:46:f2:8e:
c0:2b:e0:e8:2d:7f:e5:f8:d2:a8:d1:00:3f:f4:fd:
64:c3:4e:59:5d:7c:d1:7a:b2:09:0b:de:a7:47:d8:
9e:43:7f:dd:25:de:12:d5:c0:b4:53:03:d4:27:2e:
c1:c8:51:6b:f9:6f:b6:34:e5:d3:f1:3b:7f:53:c1:
0c:4b:db:6a:3d:df:1e:3b:46:18:a3:1f:06:62:0d:
0e:33:89:2d:c8:89:dd:6d:95:76:96:d7:46:0c:74:
99:97:8b:9b:f9:6f:74:1d:68:60:46:37:d2:dd:8b:
16:f1:f9:77:f7:14:cb:ea:70:89:57:12:4d:fe:c8:
04:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:81:92:39:E7:1F:6B:9D:4F:6F:6A:1F:F8:35:C8:58:7F:1B:73:79
X509v3 Authority Key Identifier:
keyid:FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:1e:28:95:df:03:09:ee:c4:f2:24:f4:5c:86:48:61:3e:5f:
0e:32:9e:c3:2a:4b:b6:c9:4a:ed:34:c2:b9:0f:3b:26:39:cd:
1c:ff:6e:4b:d5:e9:60:6c:b8:01:2f:44:7e:21:fe:ec:1c:97:
f5:53:c5:99:82:bf:27:ad:84:9c:d0:53:cd:a7:5b:36:07:f7:
fa:cd:a1:a5:36:e2:a7:56:0e:1c:dd:85:86:eb:2d:2a:8f:b9:
72:1c:c1:d6:56:1a:31:f5:20:50:27:ab:72:41:b1:ab:6e:f2:
6d:3e:e8:d6:73:cf:fe:4a:25:75:28:c1:ff:bc:3f:ff:48:c2:
c3:d9:b1:8e:b6:3d:fb:1d:18:90:31:bd:83:9f:79:4c:8c:a4:
bd:9e:85:07:2a:3e:52:3a:09:83:d1:23:fd:fc:a7:80:2a:a4:
02:7e:4c:68:fa:63:02:a7:5b:0a:38:09:16:b1:d9:a7:1a:a1:
8c:01:f1:86:0c:89:58:fb:4b:60:b0:2a:42:6e:83:d1:71:0f:
3d:32:46:ee:3f:73:29:4f:f9:81:3f:33:af:82:54:f8:86:38:
96:d1:64:1c:ae:b9:7a:f7:6e:00:5c:bb:d8:92:13:b0:4a:4e:
a4:d6:8b:16:78:65:b2:90:b6:09:df:17:c2:b9:f3:26:3e:7a:
cd:91:ef:e3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZTgHS7Z6GuMKRrCYF6F+xhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkMTFjNDY1NGFmNzAyZTU5NmViNTBkMTNmYTQ4NmRiNGQ5
YmNlMGEwHhcNMjUwNDIwMTQwMDQ5WhcNMjUwNDIxMTQwMDQ5WjAzMTEwLwYDVQQD
EyhiZjgxOTIzOWU3MWY2YjlkNGY2ZjZhMWZmODM1Yzg1ODdmMWI3Mzc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLz+KqhsfZZRUXli9GLoeQ+XOUEY
yr+X9utxvJPeduHdPtMXylFysZhe7Jsw+ViGkyZmBYFutwRytjph2uuwPQMOWZql
PwNoldbeUeaiDIjMqp3AWodkiR8Zfdk2cYkxqU7Gp3V6IWoaJS4Js4sFMt2VISTn
0YOx1CfBBv2QuTeHMnxG8o7AK+DoLX/l+NKo0QA/9P1kw05ZXXzRerIJC96nR9ie
Q3/dJd4S1cC0UwPUJy7ByFFr+W+2NOXT8Tt/U8EMS9tqPd8eO0YYox8GYg0OM4kt
yIndbZV2ltdGDHSZl4ub+W90HWhgRjfS3YsW8fl39xTL6nCJVxJN/sgEPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL+BkjnnH2udT29qH/g1yFh/G3N5MB8GA1UdIwQY
MBaAFP0RxGVK9wLllutQ0T+khttNm84KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1JIRVpVcjNBdVdXNjFEUlA2U0cyMDJiemdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC81ZTMxODUtMzhjNS00YTViLWJmMjQt
Yzk1M2UzMzk4YzYzLzEvX1JIRVpVcjNBdVdXNjFEUlA2U0cyMDJiemdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC81ZTMxODUtMzhjNS00YTViLWJmMjQtYzk1M2UzMzk4YzYz
LzEvX1JIRVpVcjNBdVdXNjFEUlA2U0cyMDJiemdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHR4old8D
Ce7E8iT0XIZIYT5fDjKewypLtslK7TTCuQ87JjnNHP9uS9XpYGy4AS9EfiH+7ByX
9VPFmYK/J62EnNBTzadbNgf3+s2hpTbip1YOHN2FhustKo+5chzB1lYaMfUgUCer
ckGxq27ybT7o1nPP/koldSjB/7w//0jCw9mxjrY9+x0YkDG9g595TIykvZ6FByo+
UjoJg9Ej/fyngCqkAn5MaPpjAqdbCjgJFrHZpxqhjAHxhgyJWPtLYLAqQm6D0XEP
PTJG7j9zKU/5gT8zr4JU+IY4ltFkHK65evduAFy72JITsEpOpNaLFnhlspC2Cd8X
wrnzJj56zZHv4w==
-----END CERTIFICATE-----
Generated at Sun Apr 20 18:11:52 2025 by rpki-client