Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.mft
File: dfGnY3RcJdrSj0qBFmiOgs4SAos.mft (raw, json)
Hash identifier: ynO9CyX/FN3ThEd22jG8aVNxN7qkYzBVVPm+6gJhKqw=
Subject key identifier: 61:41:85:7E:AC:94:40:E8:9D:A8:C5:9B:BE:C3:15:21:38:51:D1:E7
Authority key identifier: 75:F1:A7:63:74:5C:25:DA:D2:8F:4A:81:16:68:8E:82:CE:12:02:8B
Certificate issuer: /CN=75f1a763745c25dad28f4a8116688e82ce12028b
Certificate serial: 019609B047FFF4DD5F5A0A68DFA516448542
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.mft
Manifest number: 12FC
Signing time: Sun 06 Apr 2025 06:01:09 +0000
Manifest this update: Sun 06 Apr 2025 06:01:09 +0000
Manifest next update: Mon 07 Apr 2025 06:01:09 +0000
Files and hashes: 1: dfGnY3RcJdrSj0qBFmiOgs4SAos.crl (hash: ekIlhX0bZDIVQ4ooDeCZTu39b7JlMuY2zLZh2JSER14=)
2: ecFLrFSYazGNpMwtdUC2GTyB7Ls.roa (hash: 9V1D5AZ/eHVRt4YDKcmTOE8v9iNuXaOV/i0Ye/mdU9E=)
3: zeZfDF6FQVXfyXUfk9yRfeoJZIA.roa (hash: DtxqGawsrFVZx4HNzS+S5CsdD6flwYPGqAxKv36rkJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.mft
rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 23:34:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:09:b0:47:ff:f4:dd:5f:5a:0a:68:df:a5:16:44:85:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75f1a763745c25dad28f4a8116688e82ce12028b
Validity
Not Before: Apr 6 06:01:09 2025 GMT
Not After : Apr 7 06:01:09 2025 GMT
Subject: CN=6141857eac9440e89da8c59bbec315213851d1e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ef:af:77:c0:9b:13:eb:7c:4d:2b:44:75:7b:
f7:d8:91:75:3d:c1:dc:78:71:8d:14:96:ef:dc:5a:
3f:3f:fd:06:e9:9e:77:b5:d5:a1:78:d5:e9:c6:e4:
46:b3:d3:0d:78:d5:6d:56:57:2f:62:24:bf:66:e1:
86:72:b6:20:6f:50:82:3a:b4:e2:19:33:9e:0b:ca:
1c:93:bb:e9:3c:f0:27:10:b6:71:b0:4e:45:b1:96:
ae:69:58:9d:5f:48:f8:ab:60:5b:b7:d5:4e:67:5c:
df:d2:05:e6:39:7e:6f:7c:99:49:92:c3:7e:74:07:
75:c1:5f:2c:28:45:ed:cf:42:a9:e2:42:15:0f:9c:
08:c4:74:01:9e:5d:29:a5:3b:ad:16:cd:2b:bf:f3:
d2:ce:d2:2c:bf:fc:a4:f4:2c:53:b2:2e:bb:e6:e1:
ca:ca:75:c0:79:69:03:e7:33:d6:a4:f0:f1:09:37:
70:a5:54:6b:61:ab:8e:5a:e5:af:d3:8b:45:e8:c0:
71:da:91:07:79:17:e1:8a:29:f4:1e:bf:35:3d:4e:
98:3e:05:da:00:0e:f5:ae:a5:81:80:69:37:4c:9e:
35:e1:0e:8a:24:b2:be:3f:91:fc:19:5b:35:04:bf:
c8:f3:d8:32:e3:fe:c9:dd:4f:fb:61:0a:26:8d:c8:
d6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:41:85:7E:AC:94:40:E8:9D:A8:C5:9B:BE:C3:15:21:38:51:D1:E7
X509v3 Authority Key Identifier:
keyid:75:F1:A7:63:74:5C:25:DA:D2:8F:4A:81:16:68:8E:82:CE:12:02:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:51:c1:85:b8:45:12:03:7b:2d:85:70:78:b0:7a:82:d5:56:
17:c5:cc:7d:e6:77:33:0f:55:5d:a2:7a:90:97:c0:0a:57:e7:
7b:d4:34:bb:84:b1:e8:a8:97:4a:88:e0:29:dd:67:f9:37:52:
91:77:11:86:b3:f1:f1:f2:28:6f:a8:21:14:79:fb:3c:6f:fb:
88:43:4c:50:33:f3:b0:e2:62:79:e4:13:89:5b:0b:ad:43:79:
48:82:79:33:c5:af:4e:cc:9b:c4:e8:45:26:00:43:9c:f7:0a:
9b:53:7b:11:64:92:80:66:cf:2a:e8:40:50:1a:a7:8c:73:9a:
d5:6e:40:8b:87:20:ce:16:f9:a8:ae:f2:a1:cd:5c:c7:01:ef:
5d:d5:b4:03:10:e6:7a:76:a3:69:8d:f8:76:e0:75:f2:41:df:
da:a9:2c:59:9e:68:9a:8a:20:89:02:f0:ff:a8:ce:6d:59:e6:
3d:7b:0b:a7:fc:e2:42:f2:cb:35:06:e9:62:7c:04:d5:73:76:
88:e1:04:96:fd:f1:6a:60:40:49:12:cc:23:bf:3b:52:7c:ba:
ea:1d:a9:cd:bc:61:b6:18:15:da:b3:c5:db:9f:1c:ea:54:bc:
25:03:7a:fc:89:fd:a7:4d:f0:d4:1e:64:8d:2b:a8:ba:56:5b:
ae:84:18:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYJsEf/9N1fWgpo36UWRIVCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1ZjFhNzYzNzQ1YzI1ZGFkMjhmNGE4MTE2Njg4ZTgyY2Ux
MjAyOGIwHhcNMjUwNDA2MDYwMTA5WhcNMjUwNDA3MDYwMTA5WjAzMTEwLwYDVQQD
Eyg2MTQxODU3ZWFjOTQ0MGU4OWRhOGM1OWJiZWMzMTUyMTM4NTFkMWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6O+vd8CbE+t8TStEdXv32JF1PcHc
eHGNFJbv3Fo/P/0G6Z53tdWheNXpxuRGs9MNeNVtVlcvYiS/ZuGGcrYgb1CCOrTi
GTOeC8ock7vpPPAnELZxsE5FsZauaVidX0j4q2Bbt9VOZ1zf0gXmOX5vfJlJksN+
dAd1wV8sKEXtz0Kp4kIVD5wIxHQBnl0ppTutFs0rv/PSztIsv/yk9CxTsi675uHK
ynXAeWkD5zPWpPDxCTdwpVRrYauOWuWv04tF6MBx2pEHeRfhiin0Hr81PU6YPgXa
AA71rqWBgGk3TJ414Q6KJLK+P5H8GVs1BL/I89gy4/7J3U/7YQomjcjWZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGFBhX6slEDonajFm77DFSE4UdHnMB8GA1UdIwQY
MBaAFHXxp2N0XCXa0o9KgRZojoLOEgKLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGZHblkzUmNKZHJTajBxQkZtaU9nczRTQW9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi85ODBlNjYtMzYzMS00ZmRlLThlMmQt
Yzg0OWJjMGYzNTliLzEvZGZHblkzUmNKZHJTajBxQkZtaU9nczRTQW9zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi85ODBlNjYtMzYzMS00ZmRlLThlMmQtYzg0OWJjMGYzNTli
LzEvZGZHblkzUmNKZHJTajBxQkZtaU9nczRTQW9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQFHBhbhF
EgN7LYVweLB6gtVWF8XMfeZ3Mw9VXaJ6kJfAClfne9Q0u4Sx6KiXSojgKd1n+TdS
kXcRhrPx8fIob6ghFHn7PG/7iENMUDPzsOJieeQTiVsLrUN5SIJ5M8WvTsybxOhF
JgBDnPcKm1N7EWSSgGbPKuhAUBqnjHOa1W5Ai4cgzhb5qK7yoc1cxwHvXdW0AxDm
enajaY34duB18kHf2qksWZ5omoogiQLw/6jObVnmPXsLp/ziQvLLNQbpYnwE1XN2
iOEElv3xamBASRLMI787Uny66h2pzbxhthgV2rPF258c6lS8JQN6/In9p03w1B5k
jSuoulZbroQY9w==
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:33:07 2025 by rpki-client