Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
File: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft (raw, json)
Hash identifier: NCzX+VEdseI55cPU5yeI/Awsgd0UrG1JfUj+HwiT5DE=
Subject key identifier: 3B:42:A6:72:CC:13:BC:24:52:2F:C4:28:9D:88:A4:83:E1:3D:06:09
Authority key identifier: 7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79
Certificate issuer: /CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79
Certificate serial: 0196290463E8148578E95329AA3485F5AE45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
Manifest number: 0DC0
Signing time: Sat 12 Apr 2025 08:01:15 +0000
Manifest this update: Sat 12 Apr 2025 08:01:15 +0000
Manifest next update: Sun 13 Apr 2025 08:01:15 +0000
Files and hashes: 1: 1skXawq2SahvYTA2mnEOEbVR1u8.roa (hash: nHycrkajnYAr9VibtJNGtsv2Ftb47ENenxgpTd+DfzI=)
2: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl (hash: Jx+HHSXlCo2lHpEFWYInlBnQL1uFyRghLEDcmcXswXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 08:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:29:04:63:e8:14:85:78:e9:53:29:aa:34:85:f5:ae:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79
Validity
Not Before: Apr 12 08:01:15 2025 GMT
Not After : Apr 13 08:01:15 2025 GMT
Subject: CN=3b42a672cc13bc24522fc4289d88a483e13d0609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:88:fd:30:29:3e:fd:34:73:f2:34:ea:9f:60:
cd:dd:9a:01:9f:f0:79:b7:a9:ba:33:96:03:e3:8a:
35:37:63:1d:18:ad:54:ed:66:4d:69:a6:d6:9c:a1:
00:ee:da:bb:c1:4e:0d:b2:d2:c9:1b:4e:39:96:86:
ab:98:24:c0:72:68:3c:3d:6a:3c:63:2d:f9:08:f1:
52:a1:61:86:5e:e7:eb:f2:ff:c8:79:a0:e7:00:ca:
8a:3a:a5:94:a6:8e:03:20:72:a1:5f:e6:be:b2:a3:
12:20:00:54:19:57:68:f0:94:bb:67:1e:8d:57:03:
9c:ca:43:e2:81:5e:1b:74:54:a1:e1:0f:1e:c3:35:
af:b4:bd:36:58:36:f2:ee:e9:04:e2:39:ce:04:02:
f7:f0:e7:d6:6c:98:7e:bd:d7:11:35:ff:ff:93:c8:
8d:13:6e:5c:27:68:c6:c3:eb:1d:bd:a1:8b:d0:35:
50:db:6d:e9:e2:59:d7:39:bd:56:5f:a4:cc:a3:0a:
bf:0b:5f:fc:2c:47:dd:5b:ec:ca:78:c1:f3:f5:a0:
89:4b:7e:c4:92:a5:4c:af:d2:90:4a:05:ea:5c:dd:
81:20:4d:fe:56:8b:04:3d:25:80:68:91:f1:0d:4c:
ca:b1:ad:0b:f7:f3:7f:01:0d:8d:0d:70:cf:a6:99:
b0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:42:A6:72:CC:13:BC:24:52:2F:C4:28:9D:88:A4:83:E1:3D:06:09
X509v3 Authority Key Identifier:
keyid:7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:5c:af:45:04:6d:07:30:5a:1d:05:b0:d0:b5:4d:9d:4f:40:
d5:89:2a:df:0b:90:1d:09:13:45:92:0d:54:a6:26:8f:a5:89:
8a:a6:69:8c:57:01:d6:d0:e9:a0:3f:7c:8b:e7:ff:5d:d0:3a:
41:70:27:b0:5c:3e:9d:fb:22:56:dd:6a:21:a5:ef:14:0f:00:
f2:d9:70:49:d6:6a:84:ec:7f:dd:6c:42:a5:9e:fb:ce:b4:2a:
ab:64:7e:7d:20:da:3a:39:40:52:e0:b3:88:80:f7:35:6a:28:
4c:fb:9e:6e:cb:f4:7d:55:eb:f4:ac:c3:cd:8c:c9:e6:ff:a3:
b3:18:7d:79:54:ad:0d:3e:ed:3a:9c:c1:1b:8a:18:6e:c7:f9:
09:58:64:1d:ee:11:93:29:ce:d4:7f:5f:a0:c9:ed:fb:8a:3c:
e0:f6:5b:30:69:9f:56:a3:71:29:cd:55:94:42:57:3b:6e:75:
1a:b0:68:bc:6d:08:35:b5:f5:c9:2f:f1:ba:4c:f8:4e:81:cb:
44:65:16:33:92:40:54:8e:ee:f9:bf:1c:44:31:ef:3b:33:cd:
95:17:ec:0f:23:51:57:f3:cf:78:de:bc:30:36:8b:fa:f2:fd:
e8:db:f0:4f:3a:63:9f:ca:b5:99:87:f6:03:06:94:41:1e:19:
13:1b:fd:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYpBGPoFIV46VMpqjSF9a5FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNjZkMTllNTM4OGYxMmMxZDI4YTE2YzMyOGQ4NmMzNjRl
OWNjNzkwHhcNMjUwNDEyMDgwMTE1WhcNMjUwNDEzMDgwMTE1WjAzMTEwLwYDVQQD
EygzYjQyYTY3MmNjMTNiYzI0NTIyZmM0Mjg5ZDg4YTQ4M2UxM2QwNjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA54j9MCk+/TRz8jTqn2DN3ZoBn/B5
t6m6M5YD44o1N2MdGK1U7WZNaabWnKEA7tq7wU4NstLJG045loarmCTAcmg8PWo8
Yy35CPFSoWGGXufr8v/IeaDnAMqKOqWUpo4DIHKhX+a+sqMSIABUGVdo8JS7Zx6N
VwOcykPigV4bdFSh4Q8ewzWvtL02WDby7ukE4jnOBAL38OfWbJh+vdcRNf//k8iN
E25cJ2jGw+sdvaGL0DVQ223p4lnXOb1WX6TMowq/C1/8LEfdW+zKeMHz9aCJS37E
kqVMr9KQSgXqXN2BIE3+VosEPSWAaJHxDUzKsa0L9/N/AQ2NDXDPppmwYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDtCpnLME7wkUi/EKJ2IpIPhPQYJMB8GA1UdIwQY
MBaAFH1m0Z5TiPEsHSihbDKNhsNk6cx5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9hY2U5YmQtZjMzZC00ODZlLWIzOTQt
ZjBkMDc1YTQzN2YxLzEvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9hY2U5YmQtZjMzZC00ODZlLWIzOTQtZjBkMDc1YTQzN2Yx
LzEvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArVyvRQRt
BzBaHQWw0LVNnU9A1Ykq3wuQHQkTRZINVKYmj6WJiqZpjFcB1tDpoD98i+f/XdA6
QXAnsFw+nfsiVt1qIaXvFA8A8tlwSdZqhOx/3WxCpZ77zrQqq2R+fSDaOjlAUuCz
iID3NWooTPuebsv0fVXr9KzDzYzJ5v+jsxh9eVStDT7tOpzBG4oYbsf5CVhkHe4R
kynO1H9foMnt+4o84PZbMGmfVqNxKc1VlEJXO251GrBovG0INbX1yS/xukz4ToHL
RGUWM5JAVI7u+b8cRDHvOzPNlRfsDyNRV/PPeN68MDaL+vL96NvwTzpjn8q1mYf2
AwaUQR4ZExv9uw==
-----END CERTIFICATE-----
Generated at Sat Apr 12 18:14:47 2025 by rpki-client