Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
File: a4QIvvwC39bmGQhUh4WgCKS3TWc.mft (raw, json)
Hash identifier: /dFrbgeodzK5lM3f2n5v1/9Ho7Pp3MGxk1pqqxYO4U8=
Subject key identifier: 86:75:F6:97:E6:FD:A4:D2:1D:38:29:A4:42:45:A3:A8:CB:6A:97:F9
Authority key identifier: 6B:84:08:BE:FC:02:DF:D6:E6:19:08:54:87:85:A0:08:A4:B7:4D:67
Certificate issuer: /CN=6b8408befc02dfd6e61908548785a008a4b74d67
Certificate serial: 01958EF380D327002AA26FC8CB85D098F2DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
Manifest number: 08EA
Signing time: Thu 13 Mar 2025 10:01:17 +0000
Manifest this update: Thu 13 Mar 2025 10:01:17 +0000
Manifest next update: Fri 14 Mar 2025 10:01:17 +0000
Files and hashes: 1: XG_GoCIjsfzx85ZAfU48cGk_g2A.roa (hash: O4zvtPOigYM3HdyO+PNnJwZMHPFxCAa0+qt7cBa9RoM=)
2: a4QIvvwC39bmGQhUh4WgCKS3TWc.crl (hash: ZaknW/b8iA8Ekgn2hp+u62+lYwb0BRq3d99flJ5pyXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:80:d3:27:00:2a:a2:6f:c8:cb:85:d0:98:f2:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b8408befc02dfd6e61908548785a008a4b74d67
Validity
Not Before: Mar 13 10:01:17 2025 GMT
Not After : Mar 14 10:01:17 2025 GMT
Subject: CN=8675f697e6fda4d21d3829a44245a3a8cb6a97f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:93:6c:b3:5e:9b:2a:fe:2d:c0:89:6d:d4:fb:
b6:a0:91:d5:c6:f1:a4:8f:38:ae:60:9f:1b:a5:1a:
46:32:51:bc:87:50:df:85:68:12:e8:e9:75:b5:e9:
fc:b3:b5:29:08:f6:ba:5f:bf:f9:9b:44:ea:6e:68:
71:46:b4:01:96:dd:13:e3:aa:cd:54:ae:db:e2:54:
02:19:9a:a0:d7:53:ee:14:e4:0a:0e:44:c3:21:84:
93:15:92:cb:33:2c:2e:60:bc:81:99:f5:13:04:f9:
f8:f6:5a:a6:6b:e8:1a:fa:f0:7d:be:d1:c1:08:b8:
2c:b7:87:a5:da:3c:ae:9b:b2:84:25:b8:4e:57:e4:
b4:d1:25:fc:97:30:9a:25:ed:ea:cf:0f:c5:4b:a4:
6a:61:19:e0:ea:31:62:61:f8:01:3b:fe:91:b9:5e:
aa:cb:f7:1c:38:0e:4b:51:bf:40:d9:a6:a2:3a:ae:
d1:80:3d:ec:87:d9:79:b6:d2:02:20:42:f1:97:a6:
ee:0a:d9:70:94:1c:ec:70:ef:a1:07:3b:81:cc:83:
a0:cb:4a:14:14:4f:4e:5c:1d:44:3d:40:5e:59:d9:
52:be:64:c7:18:0c:35:34:2c:e9:3b:a1:a9:aa:5e:
08:70:e1:1a:e5:55:27:96:bb:24:51:07:50:5b:6f:
3a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:75:F6:97:E6:FD:A4:D2:1D:38:29:A4:42:45:A3:A8:CB:6A:97:F9
X509v3 Authority Key Identifier:
keyid:6B:84:08:BE:FC:02:DF:D6:E6:19:08:54:87:85:A0:08:A4:B7:4D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:31:6e:27:21:f0:6c:4e:6a:ca:31:53:35:ee:6b:ca:e4:d2:
56:53:db:e6:0f:36:d9:f7:e2:d4:48:e2:26:34:58:0e:cb:90:
a4:df:62:5c:9d:d1:55:73:d9:d4:80:2a:49:1e:7d:82:d3:a0:
6e:32:49:c0:dd:04:c4:46:14:3e:fa:66:c9:10:cb:39:e2:71:
f2:6d:84:ed:2a:56:7d:f0:42:97:d6:4c:f8:26:51:00:65:e0:
70:35:ff:d5:37:89:cf:43:94:96:af:31:9c:07:6b:8d:59:df:
9c:8f:cc:2d:dd:9a:f3:22:24:85:2f:3a:21:bb:05:0a:c1:98:
87:a0:e3:a6:a2:5d:32:bb:2d:be:20:7b:c6:c8:ea:61:62:d2:
ab:2a:f7:8f:1c:55:16:85:e6:cc:e5:82:ae:06:c3:b5:1f:d3:
7e:42:a9:a7:b5:3a:7b:8c:40:da:6d:a0:d9:da:4c:ca:0f:30:
0a:a4:90:53:85:25:30:9d:54:da:37:53:7b:5d:a7:d5:e5:67:
b1:0f:ba:3a:a6:ad:82:d5:af:cf:2c:17:d0:fb:6d:9c:65:82:
d9:80:a8:05:ed:a5:a7:f0:e8:74:a0:b3:6a:aa:b8:96:c7:71:
54:73:e9:44:d3:5b:b0:95:ec:6a:ae:ee:f6:0d:a7:10:9a:15:
69:86:b6:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWO84DTJwAqom/Iy4XQmPLbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiODQwOGJlZmMwMmRmZDZlNjE5MDg1NDg3ODVhMDA4YTRi
NzRkNjcwHhcNMjUwMzEzMTAwMTE3WhcNMjUwMzE0MTAwMTE3WjAzMTEwLwYDVQQD
Eyg4Njc1ZjY5N2U2ZmRhNGQyMWQzODI5YTQ0MjQ1YTNhOGNiNmE5N2Y5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJNss16bKv4twIlt1Pu2oJHVxvGk
jziuYJ8bpRpGMlG8h1DfhWgS6Ol1ten8s7UpCPa6X7/5m0TqbmhxRrQBlt0T46rN
VK7b4lQCGZqg11PuFOQKDkTDIYSTFZLLMywuYLyBmfUTBPn49lqma+ga+vB9vtHB
CLgst4el2jyum7KEJbhOV+S00SX8lzCaJe3qzw/FS6RqYRng6jFiYfgBO/6RuV6q
y/ccOA5LUb9A2aaiOq7RgD3sh9l5ttICIELxl6buCtlwlBzscO+hBzuBzIOgy0oU
FE9OXB1EPUBeWdlSvmTHGAw1NCzpO6Gpql4IcOEa5VUnlrskUQdQW286PQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIZ19pfm/aTSHTgppEJFo6jLapf5MB8GA1UdIwQY
MBaAFGuECL78At/W5hkIVIeFoAikt01nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTRRSXZ2d0MzOWJtR1FoVWg0V2dDS1MzVFdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS85ZTYxNWUtMzYxMC00NTIwLTk0ODQt
N2E4YmFlZWY1ZWU0LzEvYTRRSXZ2d0MzOWJtR1FoVWg0V2dDS1MzVFdjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS85ZTYxNWUtMzYxMC00NTIwLTk0ODQtN2E4YmFlZWY1ZWU0
LzEvYTRRSXZ2d0MzOWJtR1FoVWg0V2dDS1MzVFdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeDFuJyHw
bE5qyjFTNe5ryuTSVlPb5g822ffi1EjiJjRYDsuQpN9iXJ3RVXPZ1IAqSR59gtOg
bjJJwN0ExEYUPvpmyRDLOeJx8m2E7SpWffBCl9ZM+CZRAGXgcDX/1TeJz0OUlq8x
nAdrjVnfnI/MLd2a8yIkhS86IbsFCsGYh6DjpqJdMrstviB7xsjqYWLSqyr3jxxV
FoXmzOWCrgbDtR/TfkKpp7U6e4xA2m2g2dpMyg8wCqSQU4UlMJ1U2jdTe12n1eVn
sQ+6OqatgtWvzywX0PttnGWC2YCoBe2lp/DodKCzaqq4lsdxVHPpRNNbsJXsaq7u
9g2nEJoVaYa2/w==
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:49:59 2025 by rpki-client