Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
File: hXosdK9aRNmq5HoLiUJfpPf8fBk.mft (raw, json)
Hash identifier: tGvM03GZt78kyn7DWNc51fHjC2rFjq+ri/NBMHaxSlY=
Subject key identifier: 3A:AC:61:35:7A:5A:27:D2:4C:E1:4A:0E:41:33:CE:90:81:E9:B9:70
Authority key identifier: 85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19
Certificate issuer: /CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19
Certificate serial: 01964D470B70F09EC84AB703223ED9FCB5FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 09:00:23 +0000
Manifest this update: Sat 19 Apr 2025 09:00:23 +0000
Manifest next update: Sun 20 Apr 2025 09:00:23 +0000
Files and hashes: 1: 2ocBNxmBQmUkoRPjhlhWgOYgiMs.roa (hash: vHBT5RZYwMgp/JaFcd7djyz4ta6PJ5W0BzdunzoRb3k=)
2: GLrf-4476lN-mWAGatfWehKzDpo.roa (hash: UBhmVRo+40lzdmL/jOTwvI0uo4yogaRRq+nqy+WHQ4s=)
3: bAf4pYlPQH01VJAbtj0tnC5SXTs.roa (hash: Is6byuQI/ji+q5pWZ94ZQraf9joydkFIunAau5zwEaA=)
4: hXosdK9aRNmq5HoLiUJfpPf8fBk.crl (hash: NNwp2/bduzTWr9f4dR+TmbWigiYPBPSvJBhXI9T7ens=)
5: t7q0gRp_Rjm1TKofQQJGVXRxiQ4.roa (hash: 8i0M18hNbssP3r3dcfAr+F0zW7Rf4keL31Nq8c6T/TQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:47:0b:70:f0:9e:c8:4a:b7:03:22:3e:d9:fc:b5:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19
Validity
Not Before: Apr 19 09:00:23 2025 GMT
Not After : Apr 20 09:00:23 2025 GMT
Subject: CN=3aac61357a5a27d24ce14a0e4133ce9081e9b970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:22:ab:0b:48:c6:1a:bf:6d:64:2c:77:4f:50:
2b:c2:79:71:dc:83:63:91:dc:a9:a0:09:ef:1a:df:
7e:4a:00:f7:1a:59:18:d2:95:ba:05:c0:b4:16:8d:
0c:c7:ba:1e:12:d8:3d:fe:71:50:0c:51:08:d9:af:
6d:18:1c:7c:ad:08:24:5e:36:f1:50:d2:ee:87:26:
52:f6:1e:44:60:2c:13:8b:da:1c:2f:23:49:f6:f8:
3c:0f:41:f1:2e:7c:ae:24:12:7b:9b:2b:22:64:65:
83:03:da:ec:ad:d3:ba:3f:80:1a:96:eb:dd:6f:d1:
81:bc:8a:bd:76:e8:f6:db:58:ca:e7:33:fc:a8:6e:
8a:86:c2:67:86:b5:b2:cc:db:25:9f:83:80:46:52:
6c:64:bd:4e:a3:45:f9:86:81:6a:40:da:46:e8:f3:
53:59:9d:86:42:be:87:91:d3:c2:5a:af:15:b7:f8:
10:09:65:43:17:5f:99:1b:52:c1:12:d1:9b:db:65:
2b:d7:ba:e4:67:64:e3:d0:8a:93:df:a3:a1:b0:cf:
c4:83:a0:85:f1:35:1a:3e:16:67:eb:aa:32:13:1f:
52:5d:24:43:1c:e1:5e:44:db:ef:95:81:bd:ac:7a:
b0:62:c5:65:59:3f:2b:d4:17:87:15:ea:b9:21:46:
21:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:AC:61:35:7A:5A:27:D2:4C:E1:4A:0E:41:33:CE:90:81:E9:B9:70
X509v3 Authority Key Identifier:
keyid:85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:c1:f3:ff:bc:54:d6:46:45:80:ad:dc:cf:91:6a:20:e0:84:
b5:a6:f7:7b:3e:2b:aa:92:94:3f:60:03:49:28:92:63:a0:d6:
d4:19:29:96:87:d8:bd:43:56:2f:23:2e:95:d2:b5:58:cb:9a:
c3:22:51:cb:94:05:4c:f9:e0:a8:48:36:e1:4e:3b:21:43:1b:
63:e8:90:03:c0:a0:10:63:5b:b2:1e:e8:5a:6f:13:c1:73:76:
99:ac:f0:3f:ec:61:ea:f1:e0:60:27:3a:5c:57:fa:9e:0d:5e:
2c:48:a4:48:f0:a9:d1:e6:c7:6a:84:27:07:d6:51:2f:61:4b:
d3:32:70:63:18:ab:e2:b5:7d:61:43:2a:1a:0c:c5:86:e1:6f:
77:f3:62:49:99:7c:fa:28:fd:a4:9c:a4:e5:98:f5:cc:16:f6:
1a:bb:f8:9d:cb:ea:e2:dd:66:37:f8:4b:35:22:41:b0:35:a8:
a4:1a:d9:0e:29:d5:b3:04:c0:80:12:c2:22:5c:6b:a6:7c:cc:
de:db:94:78:86:1a:2c:df:4d:3d:01:30:f1:bf:37:bc:c2:59:
79:45:14:cf:94:57:51:2c:ea:cd:7f:bf:cc:87:9d:8a:73:9f:
26:29:6f:63:d7:89:77:57:48:1a:f0:70:e5:59:1a:be:c9:eb:
56:52:0c:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNRwtw8J7ISrcDIj7Z/LX6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1N2EyYzc0YWY1YTQ0ZDlhYWU0N2EwYjg5NDI1ZmE0Zjdm
YzdjMTkwHhcNMjUwNDE5MDkwMDIzWhcNMjUwNDIwMDkwMDIzWjAzMTEwLwYDVQQD
EygzYWFjNjEzNTdhNWEyN2QyNGNlMTRhMGU0MTMzY2U5MDgxZTliOTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCKrC0jGGr9tZCx3T1Arwnlx3INj
kdypoAnvGt9+SgD3GlkY0pW6BcC0Fo0Mx7oeEtg9/nFQDFEI2a9tGBx8rQgkXjbx
UNLuhyZS9h5EYCwTi9ocLyNJ9vg8D0HxLnyuJBJ7mysiZGWDA9rsrdO6P4Aaluvd
b9GBvIq9duj221jK5zP8qG6KhsJnhrWyzNsln4OARlJsZL1Oo0X5hoFqQNpG6PNT
WZ2GQr6HkdPCWq8Vt/gQCWVDF1+ZG1LBEtGb22Ur17rkZ2Tj0IqT36OhsM/Eg6CF
8TUaPhZn66oyEx9SXSRDHOFeRNvvlYG9rHqwYsVlWT8r1BeHFeq5IUYhCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDqsYTV6WifSTOFKDkEzzpCB6blwMB8GA1UdIwQY
MBaAFIV6LHSvWkTZquR6C4lCX6T3/HwZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFhvc2RLOWFSTm1xNUhvTGlVSmZwUGY4ZkJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My8wYTlhMzMtOTlkYy00YjkyLThjZWQt
ODM2YWM5N2MwMWJiLzEvaFhvc2RLOWFSTm1xNUhvTGlVSmZwUGY4ZkJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85My8wYTlhMzMtOTlkYy00YjkyLThjZWQtODM2YWM5N2MwMWJi
LzEvaFhvc2RLOWFSTm1xNUhvTGlVSmZwUGY4ZkJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyMHz/7xU
1kZFgK3cz5FqIOCEtab3ez4rqpKUP2ADSSiSY6DW1BkplofYvUNWLyMuldK1WMua
wyJRy5QFTPngqEg24U47IUMbY+iQA8CgEGNbsh7oWm8TwXN2mazwP+xh6vHgYCc6
XFf6ng1eLEikSPCp0ebHaoQnB9ZRL2FL0zJwYxir4rV9YUMqGgzFhuFvd/NiSZl8
+ij9pJyk5Zj1zBb2Grv4ncvq4t1mN/hLNSJBsDWopBrZDinVswTAgBLCIlxrpnzM
3tuUeIYaLN9NPQEw8b83vMJZeUUUz5RXUSzqzX+/zIedinOfJilvY9eJd1dIGvBw
5VkavsnrVlIMVw==
-----END CERTIFICATE-----
Generated at Sat Apr 19 15:55:19 2025 by rpki-client