Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
File: _H1Kt3YauiTzPVtt-8J8q3OLte4.mft (raw, json)
Hash identifier: RZxySqNUN2wbZrrQfKg/PC3KPS17DF/jbUogAAfT41I=
Subject key identifier: 54:53:EF:5C:99:16:90:9B:F5:66:94:6A:03:13:E3:57:77:91:8C:3D
Authority key identifier: FC:7D:4A:B7:76:1A:BA:24:F3:3D:5B:6D:FB:C2:7C:AB:73:8B:B5:EE
Certificate issuer: /CN=fc7d4ab7761aba24f33d5b6dfbc27cab738bb5ee
Certificate serial: 01961132F662A6A8909997882985C301FD49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
Manifest number: 1179
Signing time: Mon 07 Apr 2025 17:01:14 +0000
Manifest this update: Mon 07 Apr 2025 17:01:14 +0000
Manifest next update: Tue 08 Apr 2025 17:01:14 +0000
Files and hashes: 1: _H1Kt3YauiTzPVtt-8J8q3OLte4.crl (hash: lJodNFwDW/zMToGH6Sh20+JNWfbDJo1f+d1J9rn0C+Q=)
2: m1aho7A62fK7s2UNnicExFjE6us.roa (hash: ADQVW+bl8YrIssIav1fCxE/xWNAztKLL5kf78n8W9UA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:32:f6:62:a6:a8:90:99:97:88:29:85:c3:01:fd:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc7d4ab7761aba24f33d5b6dfbc27cab738bb5ee
Validity
Not Before: Apr 7 17:01:14 2025 GMT
Not After : Apr 8 17:01:14 2025 GMT
Subject: CN=5453ef5c9916909bf566946a0313e35777918c3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:86:2e:b6:78:87:fd:65:28:ef:7f:ed:19:47:
96:d7:40:62:3b:72:1d:e0:ff:79:fd:e4:9a:b1:41:
da:2b:2b:17:65:01:9a:d2:47:6d:ea:06:7c:6c:91:
c9:16:7e:ca:c3:e2:53:d8:e3:66:a6:2e:d0:30:4b:
c2:97:b6:0f:0e:59:39:2b:63:bf:62:08:a8:52:8e:
d2:fa:50:97:a3:a8:7b:fc:e0:44:be:86:7c:17:75:
65:c5:11:c0:50:0e:d3:9d:8a:a4:ea:a7:f2:89:46:
42:dc:1e:9f:4b:a3:a2:ff:87:82:b5:0b:d8:43:97:
b2:ea:22:2a:24:39:aa:08:6d:f9:56:7e:33:9a:fe:
50:53:dd:b4:bd:5d:d1:b2:63:61:7d:99:0f:fd:5e:
5e:26:f1:b3:70:5a:17:f3:a2:b0:5b:27:8d:b7:35:
b8:5a:11:38:de:f5:dc:9d:d3:82:e2:04:0d:1f:e1:
e1:d3:cc:ed:14:75:91:f9:ea:2f:5f:51:f4:eb:78:
9d:41:48:b1:d9:b9:f5:3c:84:84:08:8c:60:ed:9c:
42:ff:d9:64:eb:d5:0c:6e:a3:78:2d:16:f6:d7:a7:
2e:ea:2b:7f:cb:e2:25:8f:b6:44:49:36:a1:d7:97:
70:30:6c:ac:cd:3e:9a:27:f4:2d:9c:77:eb:de:a2:
8e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:53:EF:5C:99:16:90:9B:F5:66:94:6A:03:13:E3:57:77:91:8C:3D
X509v3 Authority Key Identifier:
keyid:FC:7D:4A:B7:76:1A:BA:24:F3:3D:5B:6D:FB:C2:7C:AB:73:8B:B5:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:fa:a5:fe:ae:cb:f4:1f:98:8f:8d:76:ef:ed:9b:3c:e9:b2:
62:33:f4:ea:6b:ba:8b:99:4b:4b:f0:12:22:c4:bb:f9:ee:64:
42:fc:03:23:1a:e0:06:49:37:4b:bd:96:bb:aa:b4:d0:1e:d6:
dc:ad:6d:6f:5e:8a:ae:ba:8b:5f:9b:0f:a0:83:20:9d:31:ec:
b6:b4:d2:84:63:db:e4:87:00:ad:d6:b5:62:7a:a6:33:8c:ad:
79:80:33:13:70:f0:5a:8f:43:c9:b8:7f:81:22:72:95:fc:22:
bd:4b:83:a7:ba:43:54:11:c8:d5:32:cb:e1:05:f2:e8:ce:9a:
a7:21:77:b4:05:f0:92:67:2d:54:08:46:e7:68:15:36:0a:a9:
87:d7:d8:25:80:4d:84:e6:d5:6d:ba:45:88:f1:5e:a6:a6:c0:
4a:1f:01:d9:3f:2f:83:a2:f0:4c:0a:41:fe:15:17:98:b7:50:
96:42:16:3e:60:6d:77:9f:11:af:84:7a:de:1e:8a:1f:cb:4d:
bc:3b:9f:fd:1c:0b:00:ed:cd:df:0c:ec:e1:2b:4f:ac:9d:d0:
63:0d:b8:b9:88:4d:1c:bb:e4:ed:7b:e3:f6:c1:73:3d:6b:26:
f0:40:ba:c5:b0:f3:78:51:66:4a:20:39:11:7a:aa:d7:18:29:
cb:cc:56:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYRMvZipqiQmZeIKYXDAf1JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjN2Q0YWI3NzYxYWJhMjRmMzNkNWI2ZGZiYzI3Y2FiNzM4
YmI1ZWUwHhcNMjUwNDA3MTcwMTE0WhcNMjUwNDA4MTcwMTE0WjAzMTEwLwYDVQQD
Eyg1NDUzZWY1Yzk5MTY5MDliZjU2Njk0NmEwMzEzZTM1Nzc3OTE4YzNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA64YutniH/WUo73/tGUeW10BiO3Id
4P95/eSasUHaKysXZQGa0kdt6gZ8bJHJFn7Kw+JT2ONmpi7QMEvCl7YPDlk5K2O/
YgioUo7S+lCXo6h7/OBEvoZ8F3VlxRHAUA7TnYqk6qfyiUZC3B6fS6Oi/4eCtQvY
Q5ey6iIqJDmqCG35Vn4zmv5QU920vV3RsmNhfZkP/V5eJvGzcFoX86KwWyeNtzW4
WhE43vXcndOC4gQNH+Hh08ztFHWR+eovX1H063idQUix2bn1PISECIxg7ZxC/9lk
69UMbqN4LRb216cu6it/y+Ilj7ZESTah15dwMGyszT6aJ/QtnHfr3qKOxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFRT71yZFpCb9WaUagMT41d3kYw9MB8GA1UdIwQY
MBaAFPx9Srd2Grok8z1bbfvCfKtzi7XuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX0gxS3QzWWF1aVR6UFZ0dC04SjhxM09MdGU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8wMjg3Y2YtODUzYi00NTE2LTlmMDYt
NDUyZWMzYTk1ODhiLzEvX0gxS3QzWWF1aVR6UFZ0dC04SjhxM09MdGU0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy8wMjg3Y2YtODUzYi00NTE2LTlmMDYtNDUyZWMzYTk1ODhi
LzEvX0gxS3QzWWF1aVR6UFZ0dC04SjhxM09MdGU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJvql/q7L
9B+Yj4127+2bPOmyYjP06mu6i5lLS/ASIsS7+e5kQvwDIxrgBkk3S72Wu6q00B7W
3K1tb16KrrqLX5sPoIMgnTHstrTShGPb5IcArda1YnqmM4yteYAzE3DwWo9Dybh/
gSJylfwivUuDp7pDVBHI1TLL4QXy6M6apyF3tAXwkmctVAhG52gVNgqph9fYJYBN
hObVbbpFiPFepqbASh8B2T8vg6LwTApB/hUXmLdQlkIWPmBtd58Rr4R63h6KH8tN
vDuf/RwLAO3N3wzs4StPrJ3QYw24uYhNHLvk7Xvj9sFzPWsm8EC6xbDzeFFmSiA5
EXqq1xgpy8xWTw==
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:15:12 2025 by rpki-client