Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: gmVVafTiQoNKLQP3WxaiQSa98xj/Lr292v7KnzPm4ug=
Subject key identifier: DF:0F:04:1A:8A:63:FA:4D:38:40:3B:74:40:9D:3A:A0:8E:E6:53:09
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 01964BFDA98D58B097E5EAE4F7A1951531B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 0896
Signing time: Sat 19 Apr 2025 03:00:37 +0000
Manifest this update: Sat 19 Apr 2025 03:00:37 +0000
Manifest next update: Sun 20 Apr 2025 03:00:37 +0000
Files and hashes: 1: H2ciew030YT_ZKL58SNBSDs0iQc.roa (hash: dr7FPAyraTf1nqxR0HjlvGsow4ZxkGibDCSpB0tZ3CU=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: 48TYPj4uG9ka4581oZvxjysiFWMLQOEEqItnsHw6NSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 03:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fd:a9:8d:58:b0:97:e5:ea:e4:f7:a1:95:15:31:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Apr 19 03:00:37 2025 GMT
Not After : Apr 20 03:00:37 2025 GMT
Subject: CN=df0f041a8a63fa4d38403b74409d3aa08ee65309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f2:99:49:6d:59:e4:20:1a:d6:85:22:62:42:
ac:10:91:08:5c:36:a9:f3:53:e2:41:95:b4:6e:c1:
d7:46:3c:9c:81:27:c5:72:24:32:fd:ef:e5:72:79:
d3:74:61:92:bb:fd:08:44:81:74:ae:50:6b:b8:bd:
56:1c:fa:3d:e4:23:96:76:4f:cd:0a:17:47:d9:54:
0c:50:bf:14:38:55:d6:df:d1:65:50:af:14:92:39:
1b:67:1a:ff:30:a6:cc:b9:a8:a6:4c:87:0e:7d:a1:
cf:e1:c2:97:85:32:d3:86:60:6a:c3:21:64:dd:c1:
d0:77:6b:8d:55:66:37:e2:dd:52:67:3f:9a:fa:fd:
34:d9:c1:32:fd:78:71:7b:75:bb:6b:16:a4:f0:e5:
7c:ec:18:6f:c8:bd:43:36:a1:7e:7c:6a:6c:4f:48:
66:23:e2:43:33:e9:ed:83:13:96:95:cc:21:7b:9d:
5e:9e:82:81:7e:2d:34:f5:63:41:97:e5:60:df:d3:
2f:b6:23:36:c4:7c:87:60:1e:3c:cc:14:1d:22:6b:
9f:d3:00:6c:ee:06:bf:9c:fc:40:2f:20:50:20:35:
0c:fd:4d:20:ca:b2:cd:ed:e0:8b:d5:69:58:5b:6c:
c2:87:d9:d1:56:9e:82:52:9d:fd:56:69:20:da:89:
b1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:0F:04:1A:8A:63:FA:4D:38:40:3B:74:40:9D:3A:A0:8E:E6:53:09
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:85:5e:be:a1:0e:aa:60:e6:fc:0d:14:60:07:5d:6b:5a:e0:
77:74:a2:e9:b4:26:bd:b1:e4:80:75:ba:e8:20:73:12:56:4c:
e3:97:87:fe:b2:12:ff:ab:5e:2e:d7:92:b4:f3:25:31:cd:16:
e0:a9:3c:1a:76:d2:c9:85:fc:9f:d1:dc:1b:d9:26:28:49:a4:
da:a1:0b:fb:2f:00:4b:0f:25:34:f1:58:e9:e4:5b:1d:68:a1:
83:54:e2:eb:ca:d3:ef:48:89:15:99:37:8a:85:82:7d:62:05:
b1:1f:04:65:13:60:a8:3f:cf:8f:df:7c:f2:14:db:61:bf:62:
42:62:10:3d:2f:fb:79:53:d8:66:ed:90:5b:ed:9b:b6:42:15:
e5:f6:a0:98:f7:0d:11:60:60:83:4e:18:85:00:cd:d9:05:35:
08:d9:46:2a:09:e6:4e:cb:3d:1e:3e:20:f8:5a:28:a6:84:e3:
d0:50:da:b4:58:a6:9f:0b:8a:ff:66:04:6c:63:ed:f3:e4:dd:
aa:60:aa:09:df:0d:b1:f6:ba:99:36:2d:82:17:c7:f3:54:93:
02:bc:f6:33:8f:41:bf:56:ae:c5:cc:1f:eb:8f:97:6f:82:b2:
82:bc:cc:5a:bc:91:a7:d5:55:9c:8c:37:58:af:94:f5:f7:b6:
ad:88:19:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZL/amNWLCX5erk96GVFTG4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2NDFlN2Y2NzgyM2VlZjUyYTE5ZmUxZGM4ZTBlNmE3ZjQx
Yzk0MzMwHhcNMjUwNDE5MDMwMDM3WhcNMjUwNDIwMDMwMDM3WjAzMTEwLwYDVQQD
EyhkZjBmMDQxYThhNjNmYTRkMzg0MDNiNzQ0MDlkM2FhMDhlZTY1MzA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPKZSW1Z5CAa1oUiYkKsEJEIXDap
81PiQZW0bsHXRjycgSfFciQy/e/lcnnTdGGSu/0IRIF0rlBruL1WHPo95COWdk/N
ChdH2VQMUL8UOFXW39FlUK8UkjkbZxr/MKbMuaimTIcOfaHP4cKXhTLThmBqwyFk
3cHQd2uNVWY34t1SZz+a+v002cEy/Xhxe3W7axak8OV87BhvyL1DNqF+fGpsT0hm
I+JDM+ntgxOWlcwhe51enoKBfi009WNBl+Vg39MvtiM2xHyHYB48zBQdImuf0wBs
7ga/nPxALyBQIDUM/U0gyrLN7eCL1WlYW2zCh9nRVp6CUp39Vmkg2omxIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN8PBBqKY/pNOEA7dECdOqCO5lMJMB8GA1UdIwQY
MBaAFKZB5/Z4I+71Khn+Hcjg5qf0HJQzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGtIbjluZ2o3dlVxR2Y0ZHlPRG1wX1FjbERNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8wYWMyMWMtYzcyYi00NzE5LWEwODUt
MDc4OGY3OTIxODUyLzEvcGtIbjluZ2o3dlVxR2Y0ZHlPRG1wX1FjbERNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS8wYWMyMWMtYzcyYi00NzE5LWEwODUtMDc4OGY3OTIxODUy
LzEvcGtIbjluZ2o3dlVxR2Y0ZHlPRG1wX1FjbERNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQYVevqEO
qmDm/A0UYAdda1rgd3Si6bQmvbHkgHW66CBzElZM45eH/rIS/6teLteStPMlMc0W
4Kk8GnbSyYX8n9HcG9kmKEmk2qEL+y8ASw8lNPFY6eRbHWihg1Ti68rT70iJFZk3
ioWCfWIFsR8EZRNgqD/Pj9988hTbYb9iQmIQPS/7eVPYZu2QW+2btkIV5fagmPcN
EWBgg04YhQDN2QU1CNlGKgnmTss9Hj4g+FoopoTj0FDatFimnwuK/2YEbGPt8+Td
qmCqCd8Nsfa6mTYtghfH81STArz2M49Bv1auxcwf64+Xb4KygrzMWryRp9VVnIw3
WK+U9fe2rYgZvQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:44:05 2025 by rpki-client