Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
File: r2A0bQgbHFyBCzlMZuEFErv02Mk.mft (raw, json)
Hash identifier: mV4V7ZC4qxxFVbonZPfNdOMklWo8k4mfkI8Rt1O/i/s=
Subject key identifier: F9:D4:4F:1B:82:A0:E6:C9:CD:B0:45:0C:6C:83:C3:DA:90:F9:AB:B5
Authority key identifier: AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
Certificate issuer: /CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Certificate serial: 019652DB2B88ADE089FD31D72C4D54FBFDF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
Manifest number: 0216
Signing time: Sun 20 Apr 2025 11:00:17 +0000
Manifest this update: Sun 20 Apr 2025 11:00:17 +0000
Manifest next update: Mon 21 Apr 2025 11:00:17 +0000
Files and hashes: 1: j5QtHlhxEZZOM5CvXJMLssoxGGc.roa (hash: 8L3ZEU7bcEWssZWSFVojRb4D5wALELFNA26f5J8ZxnI=)
2: r2A0bQgbHFyBCzlMZuEFErv02Mk.crl (hash: Nw7rpkaHrG1JSE2TQchsmh2sUEmWad+5VjCfOHMaCmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:2b:88:ad:e0:89:fd:31:d7:2c:4d:54:fb:fd:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af60346d081b1c5c810b394c66e10512bbf4d8c9
Validity
Not Before: Apr 20 11:00:17 2025 GMT
Not After : Apr 21 11:00:17 2025 GMT
Subject: CN=f9d44f1b82a0e6c9cdb0450c6c83c3da90f9abb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:aa:f6:35:a4:a1:d5:e3:3c:f6:bf:55:5b:09:
47:08:8e:52:7a:a3:a2:03:fd:e5:62:70:d1:72:e4:
91:90:37:8a:bb:e2:37:4a:75:4f:6f:8c:1f:23:a9:
c6:0c:d8:9c:24:bd:1e:35:5c:97:ab:c0:5e:45:0b:
29:58:f0:2e:77:fe:5a:dc:86:2a:c1:6f:80:49:56:
30:c3:f9:4b:9f:21:1c:bf:59:78:93:ec:17:00:29:
e0:5c:33:8f:51:ff:5d:98:fb:13:83:0a:ab:99:19:
ba:15:91:0c:46:fe:61:f3:da:fa:66:4b:1e:c7:a8:
6d:1d:64:d0:46:87:10:fd:ec:96:f9:60:92:41:3c:
fc:18:44:bb:d9:77:de:3c:4c:e2:b8:a6:9d:e0:79:
f3:35:52:1e:ce:7c:20:f5:f0:10:4b:1d:b1:3d:12:
89:a5:81:8a:be:2b:43:01:a5:9b:2a:2d:36:01:00:
fa:5c:f5:34:97:9b:01:04:f5:5b:85:f2:bd:ce:22:
6d:84:e8:68:13:61:94:d7:49:38:99:bc:47:f6:74:
18:57:8d:20:11:c9:57:3a:2b:e0:6e:d1:60:bf:c2:
79:b4:ea:ce:ec:16:9e:a3:75:44:8c:a9:43:28:87:
53:48:92:cf:0e:cd:f4:af:0a:dc:4a:73:80:f1:10:
b2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D4:4F:1B:82:A0:E6:C9:CD:B0:45:0C:6C:83:C3:DA:90:F9:AB:B5
X509v3 Authority Key Identifier:
keyid:AF:60:34:6D:08:1B:1C:5C:81:0B:39:4C:66:E1:05:12:BB:F4:D8:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2A0bQgbHFyBCzlMZuEFErv02Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b660f4-88cb-45f3-a71a-2639839f828d/1/r2A0bQgbHFyBCzlMZuEFErv02Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:e4:b5:2a:45:d3:3c:30:6d:c7:80:f7:45:60:7b:d1:25:2b:
91:91:21:8f:34:6f:e2:c7:85:07:a5:29:f5:27:ce:b9:a6:3a:
d9:30:ca:6b:b7:25:d1:76:d4:ff:96:76:8b:25:7f:91:a8:3b:
90:8f:52:ae:21:4c:0b:b5:c3:f7:a1:60:11:5b:6d:fa:6f:56:
41:18:2f:61:25:5c:ce:d4:67:e3:23:aa:7f:90:d0:0a:75:28:
ff:f8:eb:bf:71:3a:c2:de:a1:8e:27:ee:ca:54:5e:44:d7:02:
6c:08:8a:6b:11:7f:17:8f:de:8a:07:4e:18:53:49:aa:48:da:
91:7a:71:83:be:49:dd:4b:4e:f4:33:88:86:c2:04:26:19:26:
0f:5e:48:c6:22:e6:8e:71:99:15:0e:15:a2:a3:e0:7e:2a:f9:
25:1e:fa:bd:97:4a:30:62:e9:85:99:83:c7:78:d6:59:44:39:
5e:ca:c7:d9:b9:e1:16:45:f9:80:9e:8b:79:08:39:a4:49:e5:
ef:e4:b8:4f:e1:c3:02:1b:88:bc:61:aa:89:27:c7:66:7b:36:
fc:c5:ec:7d:b7:ab:6e:67:0f:d2:55:db:0a:43:98:a4:12:e7:
63:de:a1:18:de:d5:0e:b6:76:d2:a5:d9:76:ff:a2:52:51:27:
99:a8:6e:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZS2yuIreCJ/THXLE1U+/33MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNjAzNDZkMDgxYjFjNWM4MTBiMzk0YzY2ZTEwNTEyYmJm
NGQ4YzkwHhcNMjUwNDIwMTEwMDE3WhcNMjUwNDIxMTEwMDE3WjAzMTEwLwYDVQQD
EyhmOWQ0NGYxYjgyYTBlNmM5Y2RiMDQ1MGM2YzgzYzNkYTkwZjlhYmI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyar2NaSh1eM89r9VWwlHCI5SeqOi
A/3lYnDRcuSRkDeKu+I3SnVPb4wfI6nGDNicJL0eNVyXq8BeRQspWPAud/5a3IYq
wW+ASVYww/lLnyEcv1l4k+wXACngXDOPUf9dmPsTgwqrmRm6FZEMRv5h89r6Zkse
x6htHWTQRocQ/eyW+WCSQTz8GES72XfePEziuKad4HnzNVIeznwg9fAQSx2xPRKJ
pYGKvitDAaWbKi02AQD6XPU0l5sBBPVbhfK9ziJthOhoE2GU10k4mbxH9nQYV40g
EclXOivgbtFgv8J5tOrO7Baeo3VEjKlDKIdTSJLPDs30rwrcSnOA8RCyKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPnUTxuCoObJzbBFDGyDw9qQ+au1MB8GA1UdIwQY
MBaAFK9gNG0IGxxcgQs5TGbhBRK79NjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iNjYwZjQtODhjYi00NWYzLWE3MWEt
MjYzOTgzOWY4MjhkLzEvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9iNjYwZjQtODhjYi00NWYzLWE3MWEtMjYzOTgzOWY4Mjhk
LzEvcjJBMGJRZ2JIRnlCQ3psTVp1RUZFcnYwMk1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdOS1KkXT
PDBtx4D3RWB70SUrkZEhjzRv4seFB6Up9SfOuaY62TDKa7cl0XbU/5Z2iyV/kag7
kI9SriFMC7XD96FgEVtt+m9WQRgvYSVcztRn4yOqf5DQCnUo//jrv3E6wt6hjifu
ylReRNcCbAiKaxF/F4/eigdOGFNJqkjakXpxg75J3UtO9DOIhsIEJhkmD15IxiLm
jnGZFQ4VoqPgfir5JR76vZdKMGLphZmDx3jWWUQ5XsrH2bnhFkX5gJ6LeQg5pEnl
7+S4T+HDAhuIvGGqiSfHZns2/MXsfberbmcP0lXbCkOYpBLnY96hGN7VDrZ20qXZ
dv+iUlEnmahufg==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:54:59 2025 by rpki-client