Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
File: MHoDlQLUamuZCREM4qsTlod70I4.mft (raw, json)
Hash identifier: uv7NF5kEFe6kDKvhfBDj2sMfTeEk5sIk8qTkA/05Ha8=
Subject key identifier: 3C:D7:AF:BB:A9:17:54:B4:18:6F:3C:3C:87:38:0F:FE:45:45:97:28
Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e
Certificate serial: 019590AB29226F99B54945CC07893E3D4128
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
Manifest number: 08F7
Signing time: Thu 13 Mar 2025 18:01:30 +0000
Manifest this update: Thu 13 Mar 2025 18:01:30 +0000
Manifest next update: Fri 14 Mar 2025 18:01:30 +0000
Files and hashes: 1: Ly1MWymIvXOCybb36lr4yOkjsU8.roa (hash: VpBFbk8tqcALSJaD09pM7y3kJlzVLbs+HEbBlDB9T94=)
2: MHoDlQLUamuZCREM4qsTlod70I4.crl (hash: Ruv/7hYelIdvmuK7nqBe3GBlSPDF/kj2bE89IcNU1Kc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:ab:29:22:6f:99:b5:49:45:cc:07:89:3e:3d:41:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e
Validity
Not Before: Mar 13 18:01:30 2025 GMT
Not After : Mar 14 18:01:30 2025 GMT
Subject: CN=3cd7afbba91754b4186f3c3c87380ffe45459728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ca:40:ff:d1:05:3a:74:28:17:53:9a:06:48:
e3:00:c7:f6:8f:c9:3e:3f:0e:9d:79:d1:57:07:f9:
ca:2c:ab:b1:70:96:95:cd:18:82:c4:e4:e7:b2:90:
6f:e2:4a:e4:8f:32:3b:18:dc:f9:2a:1b:3e:04:b9:
6d:8d:fd:96:3c:ce:c4:ae:a7:43:45:4e:71:93:ce:
af:13:f4:48:b6:fe:8e:1c:a2:e7:0c:2e:ea:35:3d:
93:a7:9f:b7:81:c1:a2:86:e7:70:1c:8b:c3:4b:fc:
5b:8b:b3:a4:b2:2a:94:7a:65:3b:02:78:7d:5a:8e:
a4:4d:32:be:5d:b5:5e:5b:f6:1b:54:fb:59:73:7f:
80:da:5d:d2:4f:98:8f:88:25:0d:a0:a0:61:a4:c6:
1f:a4:a0:ba:c8:e3:be:6e:e8:78:11:46:9b:27:db:
72:2d:c3:64:c7:2a:7b:30:9c:a4:75:6a:5a:f0:36:
a6:86:7d:eb:ed:dd:0e:b9:92:d6:2f:78:89:36:eb:
f6:34:49:43:f6:8e:11:7d:0a:21:e5:6e:65:d1:48:
ba:7e:98:0b:f1:e7:19:c1:7d:c1:87:68:81:b3:cf:
50:cc:6c:6e:80:cf:95:71:12:26:78:04:44:35:0a:
5c:a4:e8:a0:68:bd:78:78:e5:f3:d0:39:e5:68:4c:
88:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D7:AF:BB:A9:17:54:B4:18:6F:3C:3C:87:38:0F:FE:45:45:97:28
X509v3 Authority Key Identifier:
keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:bc:da:8c:1d:49:4e:6b:38:f4:9a:1e:7a:ef:04:e6:8c:03:
4c:f0:6b:cf:13:37:80:69:bf:5b:29:71:09:2f:ab:f1:b0:f4:
1f:05:b3:5c:f3:eb:ca:fc:06:66:98:4d:73:24:63:ef:ca:2f:
9f:47:3a:60:1e:2b:6b:ee:18:f9:a4:7d:e5:70:a5:4b:21:7b:
a3:10:68:23:aa:52:22:cf:34:28:9f:89:8b:76:74:4b:a0:99:
85:1f:2b:80:18:cb:fc:c2:7a:25:72:f3:72:c5:54:ac:72:ae:
55:58:4f:f3:25:b8:24:12:ab:d3:15:e9:82:07:b6:e6:c4:73:
ea:eb:3c:a4:35:84:b7:50:4f:7b:3e:a9:8a:74:a5:c7:de:80:
00:c3:e8:b8:c3:73:0e:c4:d6:57:26:33:84:72:1c:c5:e7:b5:
cf:31:6a:e9:4c:b1:5d:4f:7b:b8:12:d3:19:22:c3:57:ba:61:
da:6d:76:51:62:9a:39:c1:46:ec:4c:57:bc:33:db:d0:82:ce:
16:d8:28:0a:ef:00:43:24:ce:d5:aa:8e:ef:4b:5b:b3:d0:77:
76:f0:03:9d:32:6c:75:48:fd:93:0e:77:0b:23:e6:5b:a3:2d:
2e:83:6b:b2:e2:b4:99:b7:bc:6f:5f:f5:51:cc:a0:35:be:86:
48:bf:dc:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWQqykib5m1SUXMB4k+PUEoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2EwMzk1MDJkNDZhNmI5OTA5MTEwY2UyYWIxMzk2ODc3
YmQwOGUwHhcNMjUwMzEzMTgwMTMwWhcNMjUwMzE0MTgwMTMwWjAzMTEwLwYDVQQD
EygzY2Q3YWZiYmE5MTc1NGI0MTg2ZjNjM2M4NzM4MGZmZTQ1NDU5NzI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8pA/9EFOnQoF1OaBkjjAMf2j8k+
Pw6dedFXB/nKLKuxcJaVzRiCxOTnspBv4krkjzI7GNz5Khs+BLltjf2WPM7ErqdD
RU5xk86vE/RItv6OHKLnDC7qNT2Tp5+3gcGihudwHIvDS/xbi7OksiqUemU7Anh9
Wo6kTTK+XbVeW/YbVPtZc3+A2l3ST5iPiCUNoKBhpMYfpKC6yOO+buh4EUabJ9ty
LcNkxyp7MJykdWpa8Damhn3r7d0OuZLWL3iJNuv2NElD9o4RfQoh5W5l0Ui6fpgL
8ecZwX3Bh2iBs89QzGxugM+VcRImeARENQpcpOigaL14eOXz0DnlaEyIsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDzXr7upF1S0GG88PIc4D/5FRZcoMB8GA1UdIwQY
MBaAFDB6A5UC1GprmQkRDOKrE5aHe9COMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9kNTEyMTEtZDBiYi00YTU3LTkzOTAt
Y2UyYTQ5NmZlZTg2LzEvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC9kNTEyMTEtZDBiYi00YTU3LTkzOTAtY2UyYTQ5NmZlZTg2
LzEvTUhvRGxRTFVhbXVaQ1JFTTRxc1Rsb2Q3MEk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAobzajB1J
Tms49Joeeu8E5owDTPBrzxM3gGm/WylxCS+r8bD0HwWzXPPryvwGZphNcyRj78ov
n0c6YB4ra+4Y+aR95XClSyF7oxBoI6pSIs80KJ+Ji3Z0S6CZhR8rgBjL/MJ6JXLz
csVUrHKuVVhP8yW4JBKr0xXpgge25sRz6us8pDWEt1BPez6pinSlx96AAMPouMNz
DsTWVyYzhHIcxee1zzFq6UyxXU97uBLTGSLDV7ph2m12UWKaOcFG7ExXvDPb0ILO
FtgoCu8AQyTO1aqO70tbs9B3dvADnTJsdUj9kw53CyPmW6MtLoNrsuK0mbe8b1/1
UcygNb6GSL/cxw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 21:06:34 2025 by rpki-client