Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
File: h0HsF9wDCbE9iKZ-oi3Luyak46E.mft (raw, json)
Hash identifier: MoJSE8nquRQHqFPSwH1kQaDZHN8nbA+CHfYx6JCs88Q=
Subject key identifier: 1D:13:88:2E:3C:7E:4D:B3:87:59:86:C9:8B:F0:4A:89:81:50:78:06
Authority key identifier: 87:41:EC:17:DC:03:09:B1:3D:88:A6:7E:A2:2D:CB:BB:26:A4:E3:A1
Certificate issuer: /CN=8741ec17dc0309b13d88a67ea22dcbbb26a4e3a1
Certificate serial: 019656B849B196E16903FAF47B6A17A2797C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
Manifest number: 082B
Signing time: Mon 21 Apr 2025 05:00:40 +0000
Manifest this update: Mon 21 Apr 2025 05:00:40 +0000
Manifest next update: Tue 22 Apr 2025 05:00:40 +0000
Files and hashes: 1: cASyfuH0abUwpn-V7hmuZSIQ09c.roa (hash: U2HpSDc4zJjb5yR4FxelHkJvS6rW6HvOOx+N/+WSuMk=)
2: h0HsF9wDCbE9iKZ-oi3Luyak46E.crl (hash: M+9f3KiShQZP8NW9ST4UD3d+9SQ5P7QFIVxZZR2YSHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:b8:49:b1:96:e1:69:03:fa:f4:7b:6a:17:a2:79:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8741ec17dc0309b13d88a67ea22dcbbb26a4e3a1
Validity
Not Before: Apr 21 05:00:40 2025 GMT
Not After : Apr 22 05:00:40 2025 GMT
Subject: CN=1d13882e3c7e4db3875986c98bf04a8981507806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4c:6c:45:cd:19:53:00:f1:96:de:53:ac:c3:
a2:29:ee:66:74:0f:ec:21:a7:ab:2e:76:63:20:73:
b6:01:16:fa:1a:99:e2:66:b1:24:c5:a3:6f:42:52:
be:a2:b4:9c:05:b8:c0:cc:a3:46:4f:cc:54:3c:7e:
e9:06:18:7e:85:6d:9a:ca:58:51:e4:bd:5c:e9:60:
0f:b4:67:9d:68:fe:d1:26:66:7c:af:83:5d:4c:b1:
24:4a:4c:58:31:49:ce:74:95:a0:b5:b5:c4:d2:70:
74:cc:ff:c8:14:ec:06:68:94:8e:3d:b8:cc:03:70:
ea:17:97:75:fc:48:a4:05:d8:0b:8b:fe:f8:e3:57:
fb:2f:55:f9:8a:c2:9a:73:21:2e:44:ce:fb:bd:48:
51:5d:ab:38:76:97:dc:94:a9:d3:8f:48:de:08:a0:
4d:73:5a:e5:9b:8a:d1:1c:0b:74:b8:03:73:ac:93:
30:4f:dc:ac:1a:cd:d6:aa:3a:08:c1:96:fa:d4:1b:
6d:cd:a2:57:e0:67:e7:a2:55:d1:ff:c0:5c:80:53:
10:44:cf:57:bd:1c:fd:16:a7:90:1d:14:46:99:22:
7e:34:a4:d8:fe:c4:75:ed:0b:80:22:bc:3c:ea:82:
2e:01:8f:45:07:17:3b:15:30:90:29:86:9e:3f:0c:
34:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:13:88:2E:3C:7E:4D:B3:87:59:86:C9:8B:F0:4A:89:81:50:78:06
X509v3 Authority Key Identifier:
keyid:87:41:EC:17:DC:03:09:B1:3D:88:A6:7E:A2:2D:CB:BB:26:A4:E3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:9a:18:98:9b:5c:a6:ae:20:63:e5:f0:80:04:57:0c:a7:1a:
78:d2:23:05:c6:05:0a:e6:d6:0e:35:b1:35:0b:3a:24:ac:92:
6d:f0:88:23:aa:fb:92:66:5f:5e:fa:2f:9d:f7:df:40:c3:dd:
12:de:29:f9:32:73:57:e2:53:f1:cd:46:45:b3:33:99:10:01:
fa:f6:08:a6:05:25:11:f3:59:61:1c:7b:c2:23:c6:32:21:e4:
ba:19:55:93:b2:cd:6c:02:28:7e:9a:4b:73:7e:07:df:91:ca:
c0:08:b3:d3:c1:da:47:be:96:b6:26:40:64:a1:77:e4:aa:9f:
6d:75:04:f9:2c:b4:32:4a:63:a4:7b:6d:00:10:9b:26:8d:0c:
28:ce:26:57:5f:20:57:0f:39:e2:1d:2d:70:c6:6c:84:82:c3:
04:bd:d8:49:2e:48:97:db:93:9d:d1:b8:bf:25:47:20:f7:50:
db:b4:20:f8:4e:c7:8a:c6:51:02:80:f6:86:c2:43:98:a1:13:
0a:7c:08:79:2c:3b:a4:fd:63:2d:45:74:37:dd:2a:81:32:bb:
61:8d:2e:23:7b:c6:a4:02:71:43:ec:d5:c5:f1:cc:60:0e:25:
04:50:6f:21:c3:f1:d1:c3:32:8c:3d:8c:71:5a:6d:fc:77:0e:
9c:19:de:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZWuEmxluFpA/r0e2oXonl8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3NDFlYzE3ZGMwMzA5YjEzZDg4YTY3ZWEyMmRjYmJiMjZh
NGUzYTEwHhcNMjUwNDIxMDUwMDQwWhcNMjUwNDIyMDUwMDQwWjAzMTEwLwYDVQQD
EygxZDEzODgyZTNjN2U0ZGIzODc1OTg2Yzk4YmYwNGE4OTgxNTA3ODA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0xsRc0ZUwDxlt5TrMOiKe5mdA/s
IaerLnZjIHO2ARb6GpniZrEkxaNvQlK+orScBbjAzKNGT8xUPH7pBhh+hW2aylhR
5L1c6WAPtGedaP7RJmZ8r4NdTLEkSkxYMUnOdJWgtbXE0nB0zP/IFOwGaJSOPbjM
A3DqF5d1/EikBdgLi/7441f7L1X5isKacyEuRM77vUhRXas4dpfclKnTj0jeCKBN
c1rlm4rRHAt0uANzrJMwT9ysGs3WqjoIwZb61BttzaJX4GfnolXR/8BcgFMQRM9X
vRz9FqeQHRRGmSJ+NKTY/sR17QuAIrw86oIuAY9FBxc7FTCQKYaePww0XwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB0TiC48fk2zh1mGyYvwSomBUHgGMB8GA1UdIwQY
MBaAFIdB7BfcAwmxPYimfqIty7smpOOhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDBIc0Y5d0RDYkU5aUtaLW9pM0x1eWFrNDZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8zMjY2ZjEtN2M4OC00ZjU5LWI1NjYt
MWFjNGE0MDA3ZGI0LzEvaDBIc0Y5d0RDYkU5aUtaLW9pM0x1eWFrNDZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8zMjY2ZjEtN2M4OC00ZjU5LWI1NjYtMWFjNGE0MDA3ZGI0
LzEvaDBIc0Y5d0RDYkU5aUtaLW9pM0x1eWFrNDZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiJoYmJtc
pq4gY+XwgARXDKcaeNIjBcYFCubWDjWxNQs6JKySbfCII6r7kmZfXvovnfffQMPd
Et4p+TJzV+JT8c1GRbMzmRAB+vYIpgUlEfNZYRx7wiPGMiHkuhlVk7LNbAIofppL
c34H35HKwAiz08HaR76WtiZAZKF35KqfbXUE+Sy0MkpjpHttABCbJo0MKM4mV18g
Vw854h0tcMZshILDBL3YSS5Il9uTndG4vyVHIPdQ27Qg+E7HisZRAoD2hsJDmKET
CnwIeSw7pP1jLUV0N90qgTK7YY0uI3vGpAJxQ+zVxfHMYA4lBFBvIcPx0cMyjD2M
cVpt/HcOnBneig==
-----END CERTIFICATE-----
Generated at Mon Apr 21 10:41:26 2025 by rpki-client