Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
File: FLcYAN3cSX9g-e23gzyUlzq33Bw.mft (raw, json)
Hash identifier: nfOMKQHvIKlpiEYK1x8nm+4FtBmeG6C3R/Mp0Y/5/Zk=
Subject key identifier: F2:30:F1:78:6D:27:B4:75:17:30:31:0F:F4:EF:4F:8C:FB:E7:B5:C8
Authority key identifier: 14:B7:18:00:DD:DC:49:7F:60:F9:ED:B7:83:3C:94:97:3A:B7:DC:1C
Certificate issuer: /CN=14b71800dddc497f60f9edb7833c94973ab7dc1c
Certificate serial: 019640307C65883FCFA7818BCB98A14A98D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
Manifest number: 13DF
Signing time: Wed 16 Apr 2025 20:00:41 +0000
Manifest this update: Wed 16 Apr 2025 20:00:41 +0000
Manifest next update: Thu 17 Apr 2025 20:00:41 +0000
Files and hashes: 1: FLcYAN3cSX9g-e23gzyUlzq33Bw.crl (hash: VdO8z5xRZcpA+IA8QXIDh+tJlGoF+ZqCpS1/d378Jv4=)
2: jh-TOxpxIUBWeRHqyE_TsQ3xZPw.roa (hash: h4140lmsN13+jNtLubDuYn8kTL6T4/sAQ4MD0yMdaVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:30:7c:65:88:3f:cf:a7:81:8b:cb:98:a1:4a:98:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14b71800dddc497f60f9edb7833c94973ab7dc1c
Validity
Not Before: Apr 16 20:00:41 2025 GMT
Not After : Apr 17 20:00:41 2025 GMT
Subject: CN=f230f1786d27b4751730310ff4ef4f8cfbe7b5c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e7:53:b1:b1:6d:f6:95:38:d7:ef:f4:61:4c:
b0:56:9e:66:d5:07:43:76:a7:cd:bc:80:76:41:4a:
d9:f7:cb:51:17:73:36:ef:db:dc:c4:3e:d6:02:4f:
49:32:2b:70:7c:20:6d:11:e4:75:36:c7:d6:cf:95:
c5:71:b2:09:5b:4d:7e:5d:7b:4c:34:f7:ab:c2:3b:
2d:ad:8f:f5:76:2d:d4:fc:7f:32:35:0a:fe:e1:a0:
15:55:4b:cb:4a:fc:36:df:39:d2:54:92:94:f6:c1:
bf:4f:5c:9d:8c:19:ee:f1:03:3f:9e:55:0a:3a:7e:
02:fa:4c:5a:0d:9c:dc:e5:83:75:79:59:66:11:1e:
ba:4d:3b:5b:dd:a3:34:f6:67:f8:ee:f9:7b:be:5b:
48:d8:66:30:c0:e1:be:73:da:4b:da:21:ab:67:57:
3d:c1:d4:ed:04:53:a5:c0:e4:85:a2:12:a5:b7:fd:
ba:b7:66:f9:a5:b1:38:bf:03:1f:31:32:7c:de:8b:
2f:3b:01:eb:ef:22:0d:fc:8c:12:52:d9:81:5a:5d:
f4:c1:a6:3e:ba:aa:c4:3f:69:3c:23:c4:1d:c7:89:
5b:e2:19:a5:72:00:ea:cd:a9:a4:d6:d6:18:a3:81:
6e:35:7f:c8:24:7e:1b:4a:a3:ae:bb:b6:e4:55:72:
85:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:30:F1:78:6D:27:B4:75:17:30:31:0F:F4:EF:4F:8C:FB:E7:B5:C8
X509v3 Authority Key Identifier:
keyid:14:B7:18:00:DD:DC:49:7F:60:F9:ED:B7:83:3C:94:97:3A:B7:DC:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:3e:d5:42:63:6f:07:9e:32:4f:33:58:50:7e:e4:03:ef:e6:
5a:9f:57:d3:b6:e2:f8:8c:2d:eb:8e:30:62:a9:08:a0:9a:68:
28:b4:df:a3:d6:12:6e:eb:dd:ac:aa:40:d5:6b:1c:6d:0c:c3:
c5:b8:49:88:ca:34:38:78:7b:6a:17:7b:bd:8a:68:83:e0:36:
ea:9d:f2:4b:44:00:55:6c:5d:49:9c:1f:f5:dc:08:41:79:13:
5c:7a:50:02:62:8b:77:c2:08:13:64:2d:6d:fa:8a:1b:9b:30:
2b:36:87:38:aa:69:c9:52:b6:9e:04:9e:c8:91:11:dd:8f:b1:
e7:f2:75:ae:82:7d:93:5f:77:7a:f4:a4:19:2f:18:ac:b1:2a:
24:08:59:7f:dd:ae:c6:ef:c8:8b:a1:f6:bf:62:ff:60:65:69:
07:be:d1:ae:6d:2b:32:47:01:c8:77:76:e5:c6:f4:de:2d:65:
60:30:7d:10:68:49:d3:b7:7c:5d:c4:c3:d6:6c:58:c6:66:a5:
ca:53:3d:77:31:85:fb:cc:96:10:ee:9b:e9:f9:4c:d7:c2:da:
4a:93:eb:e8:8f:20:6b:9f:84:e1:4a:2e:0b:1a:d9:43:c5:a9:
44:f3:bb:38:14:db:9a:d6:ad:e2:7b:79:66:a0:5c:66:f6:ce:
57:19:6f:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZAMHxliD/Pp4GLy5ihSpjYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0YjcxODAwZGRkYzQ5N2Y2MGY5ZWRiNzgzM2M5NDk3M2Fi
N2RjMWMwHhcNMjUwNDE2MjAwMDQxWhcNMjUwNDE3MjAwMDQxWjAzMTEwLwYDVQQD
EyhmMjMwZjE3ODZkMjdiNDc1MTczMDMxMGZmNGVmNGY4Y2ZiZTdiNWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+dTsbFt9pU41+/0YUywVp5m1QdD
dqfNvIB2QUrZ98tRF3M279vcxD7WAk9JMitwfCBtEeR1NsfWz5XFcbIJW01+XXtM
NPerwjstrY/1di3U/H8yNQr+4aAVVUvLSvw23znSVJKU9sG/T1ydjBnu8QM/nlUK
On4C+kxaDZzc5YN1eVlmER66TTtb3aM09mf47vl7vltI2GYwwOG+c9pL2iGrZ1c9
wdTtBFOlwOSFohKlt/26t2b5pbE4vwMfMTJ83osvOwHr7yIN/IwSUtmBWl30waY+
uqrEP2k8I8Qdx4lb4hmlcgDqzamk1tYYo4FuNX/IJH4bSqOuu7bkVXKFQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPIw8XhtJ7R1FzAxD/TvT4z757XIMB8GA1UdIwQY
MBaAFBS3GADd3El/YPntt4M8lJc6t9wcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRkxjWUFOM2NTWDlnLWUyM2d6eVVsenEzM0J3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy80MTVkNGItZjdhNi00OWQ2LWE3YWQt
ZGRmMGI4YjA5NjE2LzEvRkxjWUFOM2NTWDlnLWUyM2d6eVVsenEzM0J3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy80MTVkNGItZjdhNi00OWQ2LWE3YWQtZGRmMGI4YjA5NjE2
LzEvRkxjWUFOM2NTWDlnLWUyM2d6eVVsenEzM0J3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAET7VQmNv
B54yTzNYUH7kA+/mWp9X07bi+Iwt644wYqkIoJpoKLTfo9YSbuvdrKpA1WscbQzD
xbhJiMo0OHh7ahd7vYpog+A26p3yS0QAVWxdSZwf9dwIQXkTXHpQAmKLd8IIE2Qt
bfqKG5swKzaHOKppyVK2ngSeyJER3Y+x5/J1roJ9k193evSkGS8YrLEqJAhZf92u
xu/Ii6H2v2L/YGVpB77Rrm0rMkcByHd25cb03i1lYDB9EGhJ07d8XcTD1mxYxmal
ylM9dzGF+8yWEO6b6flM18LaSpPr6I8ga5+E4UouCxrZQ8WpRPO7OBTbmtat4nt5
ZqBcZvbOVxlvDg==
-----END CERTIFICATE-----
Generated at Thu Apr 17 03:33:33 2025 by rpki-client