Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: 2QxfwcAo1IpAyR93Om5YmejrwCA6czLcaPLoRngJ8SA=
Subject key identifier: 26:D3:20:44:CB:AA:AF:5B:93:9F:54:26:46:C1:45:8B:F2:B6:45:BE
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 01964F356E63DA42E70ABB756940DA13EC31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 14F7
Signing time: Sat 19 Apr 2025 18:00:23 +0000
Manifest this update: Sat 19 Apr 2025 18:00:23 +0000
Manifest next update: Sun 20 Apr 2025 18:00:23 +0000
Files and hashes: 1: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: 22rP93mlDjf7vQviFBg433CoSF6xpYSc+bB4wZJKjtk=)
2: luaqw9G-VvVeUOUerH8hYnJDYmk.roa (hash: cGv6tVYRF/4yXJn3TxE1a8gXuaOG4Us7R7XWbyYOP1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:35:6e:63:da:42:e7:0a:bb:75:69:40:da:13:ec:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: Apr 19 18:00:23 2025 GMT
Not After : Apr 20 18:00:23 2025 GMT
Subject: CN=26d32044cbaaaf5b939f542646c1458bf2b645be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:7b:db:e9:62:c6:ef:2f:07:c6:83:20:c1:84:
1a:4a:c6:0b:4d:b7:7e:38:9c:2d:f7:dc:81:76:c7:
67:6d:59:e9:98:bb:3b:20:f6:68:87:aa:f1:99:75:
3a:b7:6e:c2:0e:e4:17:0e:74:09:96:0b:ea:c1:9a:
cd:e8:f6:ec:b5:2c:1c:ab:3c:0c:f6:8b:fc:db:84:
36:ac:5c:c1:98:97:31:0e:3e:d6:dc:4c:f9:a0:96:
9c:8b:b4:67:6b:89:74:2b:1f:ee:dc:0b:85:20:54:
d9:c6:c9:57:2e:3c:e0:23:62:17:5e:2e:81:cd:d4:
a9:e9:77:36:38:90:b8:8f:59:8e:c8:48:05:81:6c:
f4:30:75:28:e4:c4:da:a3:50:20:04:1b:ee:11:da:
90:3d:c0:4a:4e:f0:57:56:87:27:02:7a:76:b4:ee:
08:f5:6c:cf:b7:1a:bd:22:e9:27:ab:bc:7f:98:77:
90:4a:f9:c7:de:0d:14:aa:82:33:ad:26:6d:d9:bb:
ce:bb:af:40:62:c7:d9:03:4e:a0:5d:06:87:d0:bc:
11:db:3f:7c:2d:fa:f7:3f:60:9e:45:35:ac:42:12:
0b:d6:70:24:a7:9c:6e:9b:bf:f2:a3:25:81:a6:74:
f6:5a:71:d6:64:0a:a9:99:ea:92:31:e5:34:68:d3:
d1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:D3:20:44:CB:AA:AF:5B:93:9F:54:26:46:C1:45:8B:F2:B6:45:BE
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:f6:8d:a8:fb:39:a0:a4:2b:06:c5:1d:17:ac:d2:ed:bf:b8:
4d:3d:13:e5:08:7b:76:70:c7:48:06:2f:21:c3:2e:f6:94:f1:
1f:cc:84:60:d4:00:d3:21:a6:eb:47:5b:52:1a:b8:51:5d:4a:
af:dc:ce:9d:b8:6d:31:29:c6:5e:bc:d1:6c:23:67:18:90:40:
34:a8:09:3d:a8:f9:56:0f:81:12:f8:15:4f:32:df:50:29:5f:
9a:fd:d6:4e:15:fe:c7:bf:82:6b:02:80:5a:23:39:33:12:33:
74:03:92:4a:31:14:07:e4:62:47:e5:b3:91:be:ea:02:e4:67:
fb:fe:af:4d:61:6d:c2:f7:39:ff:0c:b9:14:31:86:7a:61:e5:
b8:c2:ab:3d:68:02:fa:d0:db:22:ae:77:fa:68:c2:9c:f2:53:
52:e1:4b:ef:cb:26:87:86:a9:0e:bd:3e:29:da:aa:53:3b:20:
91:3f:77:a5:1e:e4:63:78:34:e6:4b:5c:77:c5:40:ed:59:8f:
95:6c:a8:d6:e1:3b:95:b9:45:78:3e:dd:d5:5c:ad:fe:a9:2d:
ec:64:d3:ea:8a:7f:23:76:8c:f4:f1:39:cb:ca:2e:76:b7:19:
5c:a5:a2:4a:e9:6e:0a:e6:9b:c2:59:a4:88:bc:98:49:7a:33:
28:4a:5c:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZPNW5j2kLnCrt1aUDaE+wxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNzQ4ODczZDgzMjAyMjg2NGZhYzkwMDY1ZDUxZDhlMjdi
NDNlNWQwHhcNMjUwNDE5MTgwMDIzWhcNMjUwNDIwMTgwMDIzWjAzMTEwLwYDVQQD
EygyNmQzMjA0NGNiYWFhZjViOTM5ZjU0MjY0NmMxNDU4YmYyYjY0NWJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+Xvb6WLG7y8HxoMgwYQaSsYLTbd+
OJwt99yBdsdnbVnpmLs7IPZoh6rxmXU6t27CDuQXDnQJlgvqwZrN6PbstSwcqzwM
9ov824Q2rFzBmJcxDj7W3Ez5oJaci7Rna4l0Kx/u3AuFIFTZxslXLjzgI2IXXi6B
zdSp6Xc2OJC4j1mOyEgFgWz0MHUo5MTao1AgBBvuEdqQPcBKTvBXVocnAnp2tO4I
9WzPtxq9Iuknq7x/mHeQSvnH3g0UqoIzrSZt2bvOu69AYsfZA06gXQaH0LwR2z98
Lfr3P2CeRTWsQhIL1nAkp5xum7/yoyWBpnT2WnHWZAqpmeqSMeU0aNPRRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCbTIETLqq9bk59UJkbBRYvytkW+MB8GA1UdIwQY
MBaAFHB0iHPYMgIoZPrJAGXVHY4ntD5dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0hTSWM5Z3lBaWhrLXNrQVpkVWRqaWUwUGwwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hYTMzNTAtYWEyYS00NDc3LTlmY2Qt
YTYwYjJjYzhkMDgwLzEvY0hTSWM5Z3lBaWhrLXNrQVpkVWRqaWUwUGwwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hYTMzNTAtYWEyYS00NDc3LTlmY2QtYTYwYjJjYzhkMDgw
LzEvY0hTSWM5Z3lBaWhrLXNrQVpkVWRqaWUwUGwwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp/aNqPs5
oKQrBsUdF6zS7b+4TT0T5Qh7dnDHSAYvIcMu9pTxH8yEYNQA0yGm60dbUhq4UV1K
r9zOnbhtMSnGXrzRbCNnGJBANKgJPaj5Vg+BEvgVTzLfUClfmv3WThX+x7+CawKA
WiM5MxIzdAOSSjEUB+RiR+Wzkb7qAuRn+/6vTWFtwvc5/wy5FDGGemHluMKrPWgC
+tDbIq53+mjCnPJTUuFL78smh4apDr0+KdqqUzsgkT93pR7kY3g05ktcd8VA7VmP
lWyo1uE7lblFeD7d1Vyt/qkt7GTT6op/I3aM9PE5y8oudrcZXKWiSuluCuabwlmk
iLyYSXozKEpcgw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:13:14 2025 by rpki-client