Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
File: g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft (raw, json)
Hash identifier: rxRDQUt0yxICDLPyvkw6VfMCjNyRM5goVixy0k6KgT0=
Subject key identifier: C2:42:75:B5:9A:12:C0:80:F0:FC:64:01:C5:54:77:1A:23:C4:6B:86
Authority key identifier: 83:7A:73:9F:D5:08:64:CC:C2:46:84:3E:D6:80:19:59:BA:1B:A6:A5
Certificate issuer: /CN=837a739fd50864ccc246843ed6801959ba1ba6a5
Certificate serial: 01964D7DFF9054DEDA8AF0206F677CAF5A2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
Manifest number: 0463
Signing time: Sat 19 Apr 2025 10:00:25 +0000
Manifest this update: Sat 19 Apr 2025 10:00:25 +0000
Manifest next update: Sun 20 Apr 2025 10:00:25 +0000
Files and hashes: 1: g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl (hash: NS170/w8Sos3vBauF/1c/iXjGzWanO1nNMYiGQ3Uf+I=)
2: i_7sQOqEUBCfUKXhCQozAQCgyio.roa (hash: xzt+AxE4W+DPtsBUDajL0GS1rN6Mde5JKYoD1qrRxjE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7d:ff:90:54:de:da:8a:f0:20:6f:67:7c:af:5a:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=837a739fd50864ccc246843ed6801959ba1ba6a5
Validity
Not Before: Apr 19 10:00:25 2025 GMT
Not After : Apr 20 10:00:25 2025 GMT
Subject: CN=c24275b59a12c080f0fc6401c554771a23c46b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ce:64:fc:96:25:31:8f:25:6e:80:f3:b8:06:
52:cd:c8:60:bc:50:64:29:78:09:f1:6f:48:5a:b6:
50:f4:56:46:d3:39:ab:19:eb:26:5b:82:d0:f0:3d:
64:be:20:23:47:2f:f0:0f:bf:81:78:f7:a2:6c:33:
55:93:25:f0:6a:a9:e0:4c:22:ee:40:a5:f8:d6:f9:
59:f2:38:ba:4a:d5:4a:2a:db:b6:33:72:bb:a5:9f:
28:60:aa:f0:d7:46:18:8e:00:0f:77:a2:da:ed:5e:
4d:99:48:07:43:45:75:9f:1d:0c:00:8a:f6:a6:28:
47:c2:65:a8:7a:98:e6:a4:2a:67:32:33:20:ad:a2:
20:50:8f:d6:6d:7d:1e:50:25:cc:9a:a9:de:09:27:
cc:e5:2f:f9:e9:30:b9:bf:1d:42:29:b1:91:7c:03:
66:bf:5a:69:84:89:14:6a:fd:9a:b6:d9:ba:7f:19:
1f:4d:8f:06:48:53:eb:b5:69:ba:92:35:8e:a1:0b:
ff:20:92:8f:e6:f7:50:1d:86:91:30:60:cb:cb:a1:
d9:bc:ea:13:6c:9a:14:20:bd:1f:b5:bf:18:1b:11:
4e:7e:29:8a:55:b6:db:4d:ad:c7:ba:7c:0a:fe:8f:
92:1c:3b:86:f1:f6:bf:37:4d:2a:4b:d6:21:b8:9e:
e7:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:42:75:B5:9A:12:C0:80:F0:FC:64:01:C5:54:77:1A:23:C4:6B:86
X509v3 Authority Key Identifier:
keyid:83:7A:73:9F:D5:08:64:CC:C2:46:84:3E:D6:80:19:59:BA:1B:A6:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:63:49:92:18:55:18:37:9b:04:09:ed:2b:91:82:a1:9b:01:
46:b3:57:21:c0:f4:db:7c:7d:dc:15:3c:ab:8b:6e:d4:10:fd:
81:5f:21:06:bf:bf:4e:11:1c:97:c3:bc:20:1e:63:11:86:f4:
00:76:a1:22:01:25:6e:03:08:83:96:1c:46:2a:6d:af:99:0a:
53:8c:8a:e3:30:9d:a6:aa:6d:62:80:97:1f:fd:c3:be:5c:02:
24:0d:1f:36:43:28:30:6a:5b:fa:fe:9d:15:76:d8:33:e8:45:
62:a1:02:09:ab:68:87:ca:3d:9b:cc:46:3f:3b:69:02:b0:33:
b7:fd:2d:92:14:97:5e:de:1f:ea:5c:11:c5:68:92:87:2d:10:
f3:19:af:2e:7e:b4:a1:b9:d3:b1:78:b7:a1:ec:ad:93:be:99:
b5:0a:ea:3d:ca:8c:93:1b:35:6b:c1:4d:d9:71:16:f3:b0:f5:
5b:50:8d:a6:86:6f:45:49:ae:11:2c:f1:45:c5:ee:4d:ee:8e:
30:40:55:68:2d:0e:5c:9b:64:e8:e9:54:c2:3d:b8:75:46:86:
30:ab:58:a0:60:4e:36:6e:55:3d:b7:16:87:bb:08:10:0e:d8:
51:92:82:2a:b0:98:95:82:d7:da:ca:b2:c8:4f:fc:74:30:fd:
16:e3:79:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNff+QVN7aivAgb2d8r1ouMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzN2E3MzlmZDUwODY0Y2NjMjQ2ODQzZWQ2ODAxOTU5YmEx
YmE2YTUwHhcNMjUwNDE5MTAwMDI1WhcNMjUwNDIwMTAwMDI1WjAzMTEwLwYDVQQD
EyhjMjQyNzViNTlhMTJjMDgwZjBmYzY0MDFjNTU0NzcxYTIzYzQ2Yjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx85k/JYlMY8lboDzuAZSzchgvFBk
KXgJ8W9IWrZQ9FZG0zmrGesmW4LQ8D1kviAjRy/wD7+BePeibDNVkyXwaqngTCLu
QKX41vlZ8ji6StVKKtu2M3K7pZ8oYKrw10YYjgAPd6La7V5NmUgHQ0V1nx0MAIr2
pihHwmWoepjmpCpnMjMgraIgUI/WbX0eUCXMmqneCSfM5S/56TC5vx1CKbGRfANm
v1pphIkUav2attm6fxkfTY8GSFPrtWm6kjWOoQv/IJKP5vdQHYaRMGDLy6HZvOoT
bJoUIL0ftb8YGxFOfimKVbbbTa3HunwK/o+SHDuG8fa/N00qS9YhuJ7ndwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMJCdbWaEsCA8PxkAcVUdxojxGuGMB8GA1UdIwQY
MBaAFIN6c5/VCGTMwkaEPtaAGVm6G6alMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzNwem45VUlaTXpDUm9RLTFvQVpXYm9icHFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8xMWNiYjUtM2UyZS00NGQ2LTlkMWIt
YWFlMWEwYmRhMDJjLzEvZzNwem45VUlaTXpDUm9RLTFvQVpXYm9icHFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8xMWNiYjUtM2UyZS00NGQ2LTlkMWItYWFlMWEwYmRhMDJj
LzEvZzNwem45VUlaTXpDUm9RLTFvQVpXYm9icHFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF2NJkhhV
GDebBAntK5GCoZsBRrNXIcD023x93BU8q4tu1BD9gV8hBr+/ThEcl8O8IB5jEYb0
AHahIgElbgMIg5YcRiptr5kKU4yK4zCdpqptYoCXH/3DvlwCJA0fNkMoMGpb+v6d
FXbYM+hFYqECCatoh8o9m8xGPztpArAzt/0tkhSXXt4f6lwRxWiShy0Q8xmvLn60
obnTsXi3oeytk76ZtQrqPcqMkxs1a8FN2XEW87D1W1CNpoZvRUmuESzxRcXuTe6O
MEBVaC0OXJtk6OlUwj24dUaGMKtYoGBONm5VPbcWh7sIEA7YUZKCKrCYlYLX2sqy
yE/8dDD9FuN5gg==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:04:05 2025 by rpki-client