Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json)
Hash identifier: +ExGTqpHflLT9JwQFPInzyegGf/SPjWe6rqTOT+IrbM=
Subject key identifier: 44:03:B6:D2:6D:9E:A5:16:A9:18:EE:15:F1:B1:DD:F5:C1:FC:67:BE
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 019644B1EA29ED77797879B477A8E49614E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
Manifest number: 0985
Signing time: Thu 17 Apr 2025 17:00:32 +0000
Manifest this update: Thu 17 Apr 2025 17:00:32 +0000
Manifest next update: Fri 18 Apr 2025 17:00:32 +0000
Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: 4esQe6xea8IbxuqweSMfytUQQOb8SD+I89vo5hOHUAM=)
2: ELYZJGHcWhKUiY7ABJ-PY-iSroQ.roa (hash: XKv64QH5ODk1+MXzK56Lue/Lun/NuUmKCWEmKamL9J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:b1:ea:29:ed:77:79:78:79:b4:77:a8:e4:96:14:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: Apr 17 17:00:32 2025 GMT
Not After : Apr 18 17:00:32 2025 GMT
Subject: CN=4403b6d26d9ea516a918ee15f1b1ddf5c1fc67be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3a:f6:9e:fc:bc:c2:1c:ce:6e:96:a5:20:c1:
d4:2c:5e:ad:00:f7:ab:2d:90:c3:1d:81:eb:aa:4b:
3d:a2:fa:1b:94:3f:8f:ca:e5:22:28:3c:b8:7b:19:
f2:83:69:bd:ca:d3:00:f0:17:08:b3:e7:eb:fe:41:
4c:d0:bc:4d:48:75:8e:c3:33:dd:83:80:3f:34:d5:
19:65:35:67:38:b5:19:3b:c8:44:6e:b7:64:3a:b9:
56:c6:11:bb:87:5e:50:9e:e3:c1:3d:2f:f2:8b:38:
ae:da:ae:f3:a4:c5:38:6d:69:61:ba:f2:e9:61:98:
5e:fb:66:b1:ca:df:02:af:66:2a:73:72:dd:18:cd:
44:be:e9:44:02:61:98:92:49:9e:9d:9b:74:61:99:
2b:ab:17:80:25:d0:52:78:fe:02:40:a2:75:b2:72:
2b:d0:f2:7b:39:5b:c8:ac:15:c9:28:c7:19:27:a0:
b6:33:87:4d:0a:bf:a8:b3:d8:cf:d7:4e:82:2e:c1:
9d:6a:a7:2a:2a:eb:d7:ca:92:c1:93:11:00:66:38:
c0:3e:dc:2d:d2:fe:8f:33:fd:ad:4f:24:5d:39:97:
c8:34:5f:4c:dc:b0:8a:fe:18:97:3b:bd:d7:cc:b5:
fe:27:64:9c:18:33:12:e4:56:47:f3:19:ed:c7:db:
fc:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:03:B6:D2:6D:9E:A5:16:A9:18:EE:15:F1:B1:DD:F5:C1:FC:67:BE
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:26:31:dc:d0:11:e8:1e:9d:35:d0:f0:2d:8e:bf:35:4c:f6:
04:50:76:ab:96:ee:ff:27:52:52:57:de:30:ef:5f:12:a7:f5:
4c:b4:a5:01:bd:ac:fc:db:ee:25:20:99:9c:3f:15:e9:e6:60:
4e:3d:c1:db:0b:98:ac:2b:4d:e9:b2:93:2e:77:6f:4b:56:47:
97:bb:88:48:c8:e1:dc:48:3b:c1:c1:9c:b4:d3:a7:1d:bd:d4:
13:f1:86:24:d4:1f:7c:6f:ba:8b:aa:fd:94:9a:e1:1b:04:a4:
32:d8:1b:f9:5e:c9:32:08:6b:d7:77:40:2f:27:1e:c9:91:ce:
e3:c1:5c:e4:40:65:37:8e:4a:d8:44:ea:21:fa:d9:92:da:de:
6c:c2:a8:5b:05:3c:eb:a8:41:d8:34:ec:a0:2a:08:03:dc:17:
12:60:3b:78:95:b6:e0:b5:22:83:ce:5c:7b:af:13:3a:2b:c4:
3b:8c:a3:81:31:af:06:ec:91:ef:b0:30:78:19:a9:a4:5d:8d:
f7:cc:ae:7f:9e:bc:93:a2:8c:73:7e:94:53:bb:30:1f:ff:b2:
31:d8:d0:33:15:42:14:58:d5:a0:93:da:e7:1e:fc:37:98:94:
0b:55:78:5e:d6:4c:7f:c3:45:45:f5:63:42:b9:47:8c:d8:1c:
04:0a:66:24
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZZEseop7Xd5eHm0d6jklhTjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhZDdlMTRhMjYyNTYwMTkxYzY2NTc2OTk4ZTljNjliODlj
M2MxMzYwHhcNMjUwNDE3MTcwMDMyWhcNMjUwNDE4MTcwMDMyWjAzMTEwLwYDVQQD
Eyg0NDAzYjZkMjZkOWVhNTE2YTkxOGVlMTVmMWIxZGRmNWMxZmM2N2JlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Tr2nvy8whzObpalIMHULF6tAPer
LZDDHYHrqks9ovoblD+PyuUiKDy4exnyg2m9ytMA8BcIs+fr/kFM0LxNSHWOwzPd
g4A/NNUZZTVnOLUZO8hEbrdkOrlWxhG7h15QnuPBPS/yiziu2q7zpMU4bWlhuvLp
YZhe+2axyt8Cr2Yqc3LdGM1EvulEAmGYkkmenZt0YZkrqxeAJdBSeP4CQKJ1snIr
0PJ7OVvIrBXJKMcZJ6C2M4dNCr+os9jP106CLsGdaqcqKuvXypLBkxEAZjjAPtwt
0v6PM/2tTyRdOZfINF9M3LCK/hiXO73XzLX+J2ScGDMS5FZH8xntx9v8kQIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFEQDttJtnqUWqRjuFfGx3fXB/Ge+MB8GA1UdIwQY
MBaAFPrX4UomJWAZHGZXaZjpxpuJw8E2MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS10ZmhTaVlsWUJrY1psZHBtT25HbTRuRHdUWS5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWEvZTY2NTZiLTgwYzgtNDM1ZS1iYzFk
LWQ2ZTcxNTUyM2YzOS8xLzEtdGZoU2lZbFlCa2NabGRwbU9uR200bkR3VFkubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxULzlhL2U2NjU2Yi04MGM4LTQzNWUtYmMxZC1kNmU3MTU1MjNm
MzkvMS8xLXRmaFNpWWxZQmtjWmxkcG1PbkdtNG5Ed1RZLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPiYx
3NAR6B6dNdDwLY6/NUz2BFB2q5bu/ydSUlfeMO9fEqf1TLSlAb2s/NvuJSCZnD8V
6eZgTj3B2wuYrCtN6bKTLndvS1ZHl7uISMjh3Eg7wcGctNOnHb3UE/GGJNQffG+6
i6r9lJrhGwSkMtgb+V7JMghr13dALyceyZHO48Fc5EBlN45K2ETqIfrZktrebMKo
WwU866hB2DTsoCoIA9wXEmA7eJW24LUig85ce68TOivEO4yjgTGvBuyR77AweBmp
pF2N98yuf568k6KMc36UU7swH/+yMdjQMxVCFFjVoJPa5x78N5iUC1V4XtZMf8NF
RfVjQrlHjNgcBApmJA==
-----END CERTIFICATE-----
Generated at Thu Apr 17 22:21:21 2025 by rpki-client