Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft
File: praJ3e9Y8KM4Pi71qjonxP5FMY4.mft (raw, json)
Hash identifier: doov6B8kdNhqNedX23bEdZbO6gNUqVVcWjXger/Q2iQ=
Subject key identifier: 87:6F:76:82:1D:77:20:C8:2F:1D:8B:20:E0:B1:F2:90:24:A6:B4:0A
Authority key identifier: A6:B6:89:DD:EF:58:F0:A3:38:3E:2E:F5:AA:3A:27:C4:FE:45:31:8E
Certificate issuer: /CN=a6b689ddef58f0a3383e2ef5aa3a27c4fe45318e
Certificate serial: 019654C9BA03B8774BD1435773503E4C4933
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/praJ3e9Y8KM4Pi71qjonxP5FMY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 20:00:28 +0000
Manifest this update: Sun 20 Apr 2025 20:00:28 +0000
Manifest next update: Mon 21 Apr 2025 20:00:28 +0000
Files and hashes: 1: 1-hqyEGwonCGY9K2L38Pw7_zJV_k.roa (hash: a3BoJ3dncPr176aD5ziB0Bh5202joOPjBl2mIqn/r/0=)
2: praJ3e9Y8KM4Pi71qjonxP5FMY4.crl (hash: UN116eItf7wUb6eMrQhYEf1/jdGvOM069k/cjnAbp1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft
rsync://rpki.ripe.net/repository/DEFAULT/praJ3e9Y8KM4Pi71qjonxP5FMY4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:ba:03:b8:77:4b:d1:43:57:73:50:3e:4c:49:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b689ddef58f0a3383e2ef5aa3a27c4fe45318e
Validity
Not Before: Apr 20 20:00:28 2025 GMT
Not After : Apr 21 20:00:28 2025 GMT
Subject: CN=876f76821d7720c82f1d8b20e0b1f29024a6b40a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:23:a1:a5:58:62:9b:65:21:32:14:9a:91:65:
45:db:da:4c:ae:8a:69:a6:37:40:db:80:e5:4c:ba:
82:01:3d:8c:00:c4:3f:2f:ca:f8:ba:35:a4:6a:1b:
5a:7b:ba:cc:d9:26:b2:be:40:df:13:77:4c:b1:e0:
cd:69:55:cc:1f:bc:ce:7a:05:ce:b0:54:53:0f:ae:
90:8c:4e:59:c2:9e:e5:05:06:d4:b1:07:c7:16:d0:
11:9d:60:c8:7d:50:ab:78:cf:22:a2:98:66:39:57:
16:9e:3d:d2:c6:ed:4f:e5:b7:63:c0:21:4b:37:10:
9f:a3:99:03:2f:c7:5c:ac:0d:c1:dd:f1:ea:15:9c:
ac:cd:6e:7f:d5:1d:cc:e8:4a:4a:65:aa:49:c8:37:
4c:33:d5:4e:c4:bd:7f:8f:b3:e3:66:be:06:ed:01:
9a:0c:16:52:31:0e:fb:a6:72:e1:67:74:2b:89:c9:
b2:d1:35:3c:d7:d2:ee:bf:b8:cb:2f:58:36:e2:79:
21:21:a1:86:11:70:50:4e:6a:35:fd:d0:e5:79:2b:
e1:d9:6c:13:6b:ec:f4:04:69:ce:c7:6a:e9:ff:76:
dc:22:4f:fc:b4:47:8e:f8:2e:19:6f:9f:ba:6d:12:
51:e1:68:7e:20:30:4d:43:a7:a9:56:8d:49:3d:57:
2b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:6F:76:82:1D:77:20:C8:2F:1D:8B:20:E0:B1:F2:90:24:A6:B4:0A
X509v3 Authority Key Identifier:
keyid:A6:B6:89:DD:EF:58:F0:A3:38:3E:2E:F5:AA:3A:27:C4:FE:45:31:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/praJ3e9Y8KM4Pi71qjonxP5FMY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:50:e8:04:56:ab:98:d2:e3:8a:f8:df:53:95:fb:4a:64:51:
57:9d:2a:da:2d:5d:00:87:34:46:65:a8:7c:05:d7:d5:b2:e3:
e8:5b:bd:5d:10:4e:e3:2f:83:e2:8b:7e:3f:32:f9:0a:df:1f:
39:33:b8:bb:86:da:80:5b:a1:a7:39:34:29:61:2b:21:27:4c:
38:f1:94:fd:8b:32:56:76:b5:f4:da:b0:34:d4:14:3f:fd:ba:
44:ea:c1:a5:17:3a:58:26:66:a2:aa:e6:1d:f2:02:82:42:8d:
34:9e:91:4f:45:ae:04:1d:78:96:1c:76:d6:62:3b:fe:fe:27:
83:eb:f9:d8:b3:3e:10:4c:46:df:be:c0:14:72:53:e1:e7:7c:
6d:4f:dd:c8:e7:aa:b3:1c:00:02:01:9f:0f:d8:ba:e8:12:fd:
b8:fa:04:8f:d8:a4:da:87:74:f1:29:45:2b:2e:bb:0c:75:2a:
c6:79:48:c5:cb:fe:5f:62:6a:c2:8a:bb:c7:1d:67:60:2e:59:
b9:cf:02:d7:ba:3d:fd:32:2f:16:e6:95:a3:a4:6e:63:04:c8:
2d:e0:23:f0:8b:1e:ac:8f:36:9a:ef:14:62:a3:7f:15:57:6e:
20:ef:86:90:a9:0e:6f:8c:47:fa:ec:99:90:5f:00:91:cb:c7:
89:74:fb:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZUyboDuHdL0UNXc1A+TEkzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2YjY4OWRkZWY1OGYwYTMzODNlMmVmNWFhM2EyN2M0ZmU0
NTMxOGUwHhcNMjUwNDIwMjAwMDI4WhcNMjUwNDIxMjAwMDI4WjAzMTEwLwYDVQQD
Eyg4NzZmNzY4MjFkNzcyMGM4MmYxZDhiMjBlMGIxZjI5MDI0YTZiNDBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5yOhpVhim2UhMhSakWVF29pMropp
pjdA24DlTLqCAT2MAMQ/L8r4ujWkahtae7rM2SayvkDfE3dMseDNaVXMH7zOegXO
sFRTD66QjE5Zwp7lBQbUsQfHFtARnWDIfVCreM8iophmOVcWnj3Sxu1P5bdjwCFL
NxCfo5kDL8dcrA3B3fHqFZyszW5/1R3M6EpKZapJyDdMM9VOxL1/j7PjZr4G7QGa
DBZSMQ77pnLhZ3Qricmy0TU819Luv7jLL1g24nkhIaGGEXBQTmo1/dDleSvh2WwT
a+z0BGnOx2rp/3bcIk/8tEeO+C4Zb5+6bRJR4Wh+IDBNQ6epVo1JPVcrMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIdvdoIddyDILx2LIOCx8pAkprQKMB8GA1UdIwQY
MBaAFKa2id3vWPCjOD4u9ao6J8T+RTGOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHJhSjNlOVk4S000UGk3MXFqb254UDVGTVk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC84ZmVmN2YtZDAxMS00Y2RiLWFjMGEt
MzE3MDBmMGUxYTYxLzEvcHJhSjNlOVk4S000UGk3MXFqb254UDVGTVk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC84ZmVmN2YtZDAxMS00Y2RiLWFjMGEtMzE3MDBmMGUxYTYx
LzEvcHJhSjNlOVk4S000UGk3MXFqb254UDVGTVk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAolDoBFar
mNLjivjfU5X7SmRRV50q2i1dAIc0RmWofAXX1bLj6Fu9XRBO4y+D4ot+PzL5Ct8f
OTO4u4bagFuhpzk0KWErISdMOPGU/YsyVna19NqwNNQUP/26ROrBpRc6WCZmoqrm
HfICgkKNNJ6RT0WuBB14lhx21mI7/v4ng+v52LM+EExG377AFHJT4ed8bU/dyOeq
sxwAAgGfD9i66BL9uPoEj9ik2od08SlFKy67DHUqxnlIxcv+X2Jqwoq7xx1nYC5Z
uc8C17o9/TIvFuaVo6RuYwTILeAj8IserI82mu8UYqN/FVduIO+GkKkOb4xH+uyZ
kF8AkcvHiXT7CA==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:20:59 2025 by rpki-client