Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft
File: s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft (raw, json)
Hash identifier: s7TDOw9G9PnDZnJf3M+nOdMfRdvE0ukjglBYMRFHYw0=
Subject key identifier: 45:0E:8B:26:C4:D9:18:D2:AF:67:D1:55:A8:A8:BE:DA:48:F2:21:D2
Authority key identifier: B3:85:94:14:62:02:E2:F6:C3:45:6B:06:96:FF:18:56:2F:1B:9F:81
Certificate issuer: /CN=b38594146202e2f6c3456b0696ff18562f1b9f81
Certificate serial: 01964DB4DAF2EC3B8E80FA7BEE2A0EEFC2AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s4WUFGIC4vbDRWsGlv8YVi8bn4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft
Manifest number: 0883
Signing time: Sat 19 Apr 2025 11:00:20 +0000
Manifest this update: Sat 19 Apr 2025 11:00:20 +0000
Manifest next update: Sun 20 Apr 2025 11:00:20 +0000
Files and hashes: 1: IcIyZXTtvGCVT7kmzm3an6XI4Ds.roa (hash: 9+rlboX5YqLY2xGwqsRBQUwcIF0ZyOqFrf8SvNh+rfQ=)
2: s4WUFGIC4vbDRWsGlv8YVi8bn4E.crl (hash: IuARQych8RQhBFEcK/msagXXoiL0KVxpSn3IX83CtRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/s4WUFGIC4vbDRWsGlv8YVi8bn4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:b4:da:f2:ec:3b:8e:80:fa:7b:ee:2a:0e:ef:c2:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b38594146202e2f6c3456b0696ff18562f1b9f81
Validity
Not Before: Apr 19 11:00:20 2025 GMT
Not After : Apr 20 11:00:20 2025 GMT
Subject: CN=450e8b26c4d918d2af67d155a8a8beda48f221d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f7:d3:bf:62:a7:0e:67:e0:4e:70:c6:aa:0c:
fb:c2:eb:b1:80:7e:da:43:21:0b:49:30:a9:a7:fb:
67:c1:1c:32:7a:e2:d6:18:05:2e:0e:12:94:61:81:
ca:1a:75:41:6f:15:29:96:0e:9e:e5:18:b1:65:c3:
ea:83:9e:55:cb:e3:6f:16:25:36:4b:5f:06:4c:1a:
ef:a8:6e:3c:91:94:d8:3c:79:41:9b:ba:12:f7:0e:
11:10:32:8a:17:95:96:a0:ca:5a:50:68:9c:73:0b:
87:d3:4c:67:d6:0b:2a:90:20:c7:2b:bd:d6:86:6f:
83:3c:73:d5:25:0f:f7:cf:af:b1:0d:75:d5:9c:ee:
b7:3c:85:7a:47:fc:a3:09:c9:a3:0b:de:88:0e:1f:
83:54:71:4a:82:53:bd:90:23:4f:14:50:66:f3:79:
81:96:89:40:4c:54:76:a0:46:21:e1:00:90:8b:d6:
a8:7d:5d:dc:68:06:f6:05:90:02:a5:b2:0f:25:b4:
15:ec:b8:db:3f:58:14:03:e7:a0:3b:fe:e3:b9:d2:
62:6f:c1:02:06:bb:c1:9a:0f:bf:7b:8f:13:6a:ca:
33:5d:d0:1b:c0:44:a9:8a:76:3b:61:21:78:3e:4b:
7e:df:cd:e5:9e:81:5a:2d:35:18:a8:b2:71:3c:a1:
c7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:0E:8B:26:C4:D9:18:D2:AF:67:D1:55:A8:A8:BE:DA:48:F2:21:D2
X509v3 Authority Key Identifier:
keyid:B3:85:94:14:62:02:E2:F6:C3:45:6B:06:96:FF:18:56:2F:1B:9F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s4WUFGIC4vbDRWsGlv8YVi8bn4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/d2e826-5acb-47d6-92a4-43bb19f2e53b/1/s4WUFGIC4vbDRWsGlv8YVi8bn4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:35:21:5e:ba:9e:92:d8:53:c3:5d:8e:82:d5:41:a1:b9:65:
39:e4:9d:d4:dc:dc:07:74:f1:bd:5b:bb:b0:ae:b1:8e:5b:b6:
b3:b6:5e:be:e9:f6:73:2f:b5:f6:5d:0c:ec:47:0e:2c:ef:f9:
5d:b0:d0:ce:01:80:40:54:50:96:f0:15:b4:0b:9e:26:08:ee:
87:7a:e4:88:2e:dc:66:1c:20:3a:5c:d6:03:67:7b:b1:7f:73:
73:ee:94:6f:5a:6c:95:a1:32:e1:a8:e6:71:aa:02:a6:a9:bb:
f5:cf:55:fd:b4:7c:7b:ff:29:6c:b7:66:cf:e1:9f:25:f0:8b:
7e:95:9d:cb:2d:ad:9c:77:b4:be:5d:b7:29:a5:3d:67:9e:dc:
b0:18:9f:61:05:dc:26:5d:99:ef:e2:f5:61:bb:fa:7f:17:ce:
db:44:cf:86:00:bc:ab:38:af:4e:fb:6c:16:ac:aa:6e:db:da:
db:b9:98:f7:76:2f:1c:ca:aa:68:59:53:7e:1b:7d:45:93:9a:
de:e1:ee:94:54:50:0d:8d:42:19:95:f1:77:66:c4:3b:69:cb:
7c:01:71:fa:4a:56:47:f4:aa:e8:23:90:d3:8a:7f:91:8d:60:
04:86:b6:b6:65:ad:d6:03:ac:f5:1e:20:d5:bf:ce:b9:e7:69:
17:0e:f8:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNtNry7DuOgPp77ioO78KrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzODU5NDE0NjIwMmUyZjZjMzQ1NmIwNjk2ZmYxODU2MmYx
YjlmODEwHhcNMjUwNDE5MTEwMDIwWhcNMjUwNDIwMTEwMDIwWjAzMTEwLwYDVQQD
Eyg0NTBlOGIyNmM0ZDkxOGQyYWY2N2QxNTVhOGE4YmVkYTQ4ZjIyMWQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPfTv2KnDmfgTnDGqgz7wuuxgH7a
QyELSTCpp/tnwRwyeuLWGAUuDhKUYYHKGnVBbxUplg6e5RixZcPqg55Vy+NvFiU2
S18GTBrvqG48kZTYPHlBm7oS9w4REDKKF5WWoMpaUGiccwuH00xn1gsqkCDHK73W
hm+DPHPVJQ/3z6+xDXXVnO63PIV6R/yjCcmjC96IDh+DVHFKglO9kCNPFFBm83mB
lolATFR2oEYh4QCQi9aofV3caAb2BZACpbIPJbQV7LjbP1gUA+egO/7judJib8EC
BrvBmg+/e48TasozXdAbwESpinY7YSF4Pkt+383lnoFaLTUYqLJxPKHHZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEUOiybE2RjSr2fRVaiovtpI8iHSMB8GA1UdIwQY
MBaAFLOFlBRiAuL2w0VrBpb/GFYvG5+BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczRXVUZHSUM0dmJEUldzR2x2OFlWaThibjRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9kMmU4MjYtNWFjYi00N2Q2LTkyYTQt
NDNiYjE5ZjJlNTNiLzEvczRXVUZHSUM0dmJEUldzR2x2OFlWaThibjRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy9kMmU4MjYtNWFjYi00N2Q2LTkyYTQtNDNiYjE5ZjJlNTNi
LzEvczRXVUZHSUM0dmJEUldzR2x2OFlWaThibjRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWzUhXrqe
kthTw12OgtVBobllOeSd1NzcB3TxvVu7sK6xjlu2s7Zevun2cy+19l0M7EcOLO/5
XbDQzgGAQFRQlvAVtAueJgjuh3rkiC7cZhwgOlzWA2d7sX9zc+6Ub1pslaEy4ajm
caoCpqm79c9V/bR8e/8pbLdmz+GfJfCLfpWdyy2tnHe0vl23KaU9Z57csBifYQXc
Jl2Z7+L1Ybv6fxfO20TPhgC8qzivTvtsFqyqbtva27mY93YvHMqqaFlTfht9RZOa
3uHulFRQDY1CGZXxd2bEO2nLfAFx+kpWR/Sq6COQ04p/kY1gBIa2tmWt1gOs9R4g
1b/OuedpFw745A==
-----END CERTIFICATE-----
Generated at Sat Apr 19 17:13:51 2025 by rpki-client