Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.mft
File: hGhM2vJd5AvvwejkIoWo1ew4kEc.mft (raw, json)
Hash identifier: knmPIQoLf781aP93OUgIl/rRmGOkqnk8sxDXMHq++cQ=
Subject key identifier: 74:B1:71:CE:69:21:7B:E0:15:F4:05:60:C2:D8:87:65:09:4E:D5:85
Authority key identifier: 84:68:4C:DA:F2:5D:E4:0B:EF:C1:E8:E4:22:85:A8:D5:EC:38:90:47
Certificate issuer: /CN=84684cdaf25de40befc1e8e42285a8d5ec389047
Certificate serial: 01964A463D168DE5E304C25C1C21BB36EC5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGhM2vJd5AvvwejkIoWo1ew4kEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.mft
Manifest number: 0316
Signing time: Fri 18 Apr 2025 19:00:39 +0000
Manifest this update: Fri 18 Apr 2025 19:00:39 +0000
Manifest next update: Sat 19 Apr 2025 19:00:39 +0000
Files and hashes: 1: hGhM2vJd5AvvwejkIoWo1ew4kEc.crl (hash: AWstU8ArpDkE8dj2i2+QnIv8OKwcTR6k2xDrRvK+Dic=)
2: oidwYZW8G2o74OS_a_nCcJCpjCg.roa (hash: ogxgsB9YER6I/w+iNtW/Wqu1gf3XIhY2x4sxgGoaIJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGhM2vJd5AvvwejkIoWo1ew4kEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:46:3d:16:8d:e5:e3:04:c2:5c:1c:21:bb:36:ec:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84684cdaf25de40befc1e8e42285a8d5ec389047
Validity
Not Before: Apr 18 19:00:39 2025 GMT
Not After : Apr 19 19:00:39 2025 GMT
Subject: CN=74b171ce69217be015f40560c2d88765094ed585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3b:4e:4d:eb:cd:81:50:f1:4c:74:54:7f:7f:
ce:22:65:30:ab:41:74:bd:cb:fd:6e:27:2d:84:8c:
27:e4:1b:42:05:12:b9:d2:3f:51:cd:4e:19:6c:74:
ad:c3:7c:80:8d:47:df:36:76:8c:68:87:e9:f9:3a:
d6:22:98:5f:54:43:66:43:96:44:57:03:9c:21:4f:
67:e4:06:0c:19:88:24:fc:87:71:58:74:2e:0d:55:
30:e5:b8:4e:52:36:5c:f7:95:88:ea:b1:9b:4c:0a:
91:03:79:7f:57:86:d5:63:07:a3:92:3e:7e:62:a1:
8b:96:2a:aa:60:3a:d9:ea:bf:71:2e:f4:52:06:d5:
2d:43:09:4e:1b:90:fc:7c:b4:e4:ee:bd:c5:9e:1b:
b0:f7:c1:fa:b9:ab:3e:59:73:7e:5b:e6:93:7e:c9:
fb:cb:19:65:29:f7:88:b0:8f:a6:93:61:69:2c:23:
d0:a0:91:d4:1e:d2:98:c0:6a:3f:fc:83:1d:29:02:
3e:9f:21:11:f0:6f:cf:d9:7a:b9:48:f9:95:c6:9c:
8a:ac:64:b7:7d:b6:04:7e:4a:cb:7f:77:68:a5:4b:
1b:fe:e6:ef:1e:17:e7:8b:f4:d2:83:32:47:95:d8:
0b:75:4c:b2:14:be:e0:2f:b7:5b:29:70:3d:e3:d7:
c2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B1:71:CE:69:21:7B:E0:15:F4:05:60:C2:D8:87:65:09:4E:D5:85
X509v3 Authority Key Identifier:
keyid:84:68:4C:DA:F2:5D:E4:0B:EF:C1:E8:E4:22:85:A8:D5:EC:38:90:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGhM2vJd5AvvwejkIoWo1ew4kEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:6e:d5:b4:7b:2f:ee:42:85:e3:0d:c6:bf:48:16:3a:56:e1:
e3:70:64:71:0e:fe:6d:a3:ca:03:8a:17:ec:e4:e6:da:24:22:
16:14:64:05:2b:cd:13:26:48:ec:f6:ea:d6:a6:f1:99:64:74:
ea:85:50:6c:14:18:97:78:b5:41:45:b1:8e:f6:00:77:85:15:
80:ea:d3:27:70:1b:20:5f:ce:5e:a1:91:07:0c:22:95:91:ca:
75:80:a3:ae:ee:36:bc:28:52:08:3a:fd:5d:cc:12:d1:1a:d5:
8c:88:17:0c:02:23:fe:c4:4e:ba:73:e7:d9:f8:89:f2:0d:50:
75:f4:df:46:b8:98:ea:41:37:30:48:f0:1c:ab:d1:a9:5f:35:
4c:84:95:cf:4b:74:a9:55:2d:e9:34:b1:9a:45:19:42:d5:c7:
66:1c:19:5a:c6:fc:b4:56:6b:98:60:e9:a1:2a:38:08:a2:e5:
09:9b:1b:8d:18:92:dc:b9:16:c8:51:da:72:2c:82:fd:3e:0d:
2b:69:73:26:99:26:e6:47:5f:ea:d0:fd:66:b0:40:5d:df:62:
bf:40:2f:6e:29:31:8f:db:6a:e8:c8:7c:74:48:6a:a6:5b:f5:
bf:be:60:1c:1d:fb:4d:d0:8f:29:98:52:35:f0:65:2a:99:7f:
6c:b2:ea:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZKRj0WjeXjBMJcHCG7NuxaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0Njg0Y2RhZjI1ZGU0MGJlZmMxZThlNDIyODVhOGQ1ZWMz
ODkwNDcwHhcNMjUwNDE4MTkwMDM5WhcNMjUwNDE5MTkwMDM5WjAzMTEwLwYDVQQD
Eyg3NGIxNzFjZTY5MjE3YmUwMTVmNDA1NjBjMmQ4ODc2NTA5NGVkNTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjztOTevNgVDxTHRUf3/OImUwq0F0
vcv9bicthIwn5BtCBRK50j9RzU4ZbHStw3yAjUffNnaMaIfp+TrWIphfVENmQ5ZE
VwOcIU9n5AYMGYgk/IdxWHQuDVUw5bhOUjZc95WI6rGbTAqRA3l/V4bVYwejkj5+
YqGLliqqYDrZ6r9xLvRSBtUtQwlOG5D8fLTk7r3Fnhuw98H6uas+WXN+W+aTfsn7
yxllKfeIsI+mk2FpLCPQoJHUHtKYwGo//IMdKQI+nyER8G/P2Xq5SPmVxpyKrGS3
fbYEfkrLf3dopUsb/ubvHhfni/TSgzJHldgLdUyyFL7gL7dbKXA949fCYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHSxcc5pIXvgFfQFYMLYh2UJTtWFMB8GA1UdIwQY
MBaAFIRoTNryXeQL78Ho5CKFqNXsOJBHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEdoTTJ2SmQ1QXZ2d2Vqa0lvV28xZXc0a0VjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9jMDM4M2EtZjI3MS00YzFlLWI1Y2Et
ZGVjYjIyMDYyYzcwLzEvaEdoTTJ2SmQ1QXZ2d2Vqa0lvV28xZXc0a0VjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9jMDM4M2EtZjI3MS00YzFlLWI1Y2EtZGVjYjIyMDYyYzcw
LzEvaEdoTTJ2SmQ1QXZ2d2Vqa0lvV28xZXc0a0VjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD27VtHsv
7kKF4w3Gv0gWOlbh43BkcQ7+baPKA4oX7OTm2iQiFhRkBSvNEyZI7Pbq1qbxmWR0
6oVQbBQYl3i1QUWxjvYAd4UVgOrTJ3AbIF/OXqGRBwwilZHKdYCjru42vChSCDr9
XcwS0RrVjIgXDAIj/sROunPn2fiJ8g1QdfTfRriY6kE3MEjwHKvRqV81TISVz0t0
qVUt6TSxmkUZQtXHZhwZWsb8tFZrmGDpoSo4CKLlCZsbjRiS3LkWyFHaciyC/T4N
K2lzJpkm5kdf6tD9ZrBAXd9iv0Avbikxj9tq6Mh8dEhqplv1v75gHB37TdCPKZhS
NfBlKpl/bLLq9A==
-----END CERTIFICATE-----
Generated at Sat Apr 19 00:07:24 2025 by rpki-client