Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
File: c4DHWfVY-ca-iN0iakOdmcnqzww.mft (raw, json)
Hash identifier: 5gLldLJOPCPH8Dp0Za/w++S8sLq81Gv7uWj+PDey0xI=
Subject key identifier: C9:E7:70:22:5B:7D:64:A3:BB:60:0B:00:A7:89:EC:93:76:D3:0F:38
Authority key identifier: 73:80:C7:59:F5:58:F9:C6:BE:88:DD:22:6A:43:9D:99:C9:EA:CF:0C
Certificate issuer: /CN=7380c759f558f9c6be88dd226a439d99c9eacf0c
Certificate serial: 019645C5C9BC639B7656E1733F98AA5C5ACC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
Manifest number: 0C27
Signing time: Thu 17 Apr 2025 22:01:52 +0000
Manifest this update: Thu 17 Apr 2025 22:01:52 +0000
Manifest next update: Fri 18 Apr 2025 22:01:52 +0000
Files and hashes: 1: RBq_sIlJapW_qBhhOYs3cfjmb6g.roa (hash: fg25CTdh4wWfSSlLDFZZPAEIB6IEQNMofjk6UtMoVYc=)
2: c4DHWfVY-ca-iN0iakOdmcnqzww.crl (hash: E2amUXVncsxcTjlUDMiFaT+YUlkTOo3ZVzPYlFdQrsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:c5:c9:bc:63:9b:76:56:e1:73:3f:98:aa:5c:5a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7380c759f558f9c6be88dd226a439d99c9eacf0c
Validity
Not Before: Apr 17 22:01:52 2025 GMT
Not After : Apr 18 22:01:52 2025 GMT
Subject: CN=c9e770225b7d64a3bb600b00a789ec9376d30f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6a:ec:c5:c1:17:1e:5d:c6:75:0f:02:06:b8:
20:23:5d:36:31:15:5d:42:b0:64:57:4b:9e:ea:e6:
b1:ba:a6:e2:bd:f3:5d:d4:37:eb:6c:6b:96:23:51:
7c:1c:bb:8b:b0:f6:5d:d5:65:a3:13:33:83:4b:e2:
15:ac:81:ea:94:c3:32:2a:02:e8:e7:35:a6:75:ba:
a1:51:e1:ea:69:8c:74:c5:6b:15:76:0a:c5:0f:b7:
0c:19:a3:e0:22:dd:08:b0:40:24:68:f2:a2:45:03:
ad:a1:93:83:1d:45:7f:5b:33:31:26:7c:7e:3a:6f:
d4:6d:9e:36:81:22:e3:9c:71:cf:80:e3:2d:83:94:
2b:e6:24:ec:8c:ef:cf:94:45:5a:15:5a:5a:68:73:
1b:2c:3a:43:70:e0:1d:53:7a:09:47:e3:34:48:1a:
11:bd:c1:06:68:5d:54:34:82:9b:0f:e7:41:e6:0a:
ca:de:7a:e2:ca:1c:f3:6c:54:fe:ff:4a:e5:b4:d2:
ee:03:d8:7b:9d:04:01:26:e5:f5:fc:07:07:69:db:
1c:ec:f4:07:31:e9:cf:fe:c9:e6:2a:fd:5a:ca:95:
e4:2a:ee:2b:d0:0e:a8:59:93:68:dc:7f:bf:67:f9:
8c:6e:32:cb:f5:cd:f7:0e:58:0c:96:f9:b8:aa:69:
53:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E7:70:22:5B:7D:64:A3:BB:60:0B:00:A7:89:EC:93:76:D3:0F:38
X509v3 Authority Key Identifier:
keyid:73:80:C7:59:F5:58:F9:C6:BE:88:DD:22:6A:43:9D:99:C9:EA:CF:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:1c:02:f1:64:19:8b:6b:c4:20:db:ae:fd:14:28:6c:6e:da:
c0:be:75:50:09:3b:46:0a:01:1b:9e:94:d5:54:6c:a2:07:ea:
11:d3:ba:86:8b:74:ce:2c:c1:12:31:f3:13:bd:41:7e:d9:38:
1a:d6:4e:2c:82:f3:27:aa:7f:ee:bf:ef:23:03:8f:33:50:9f:
00:aa:79:78:77:bd:83:fe:45:0e:5a:ae:ec:61:0a:0e:76:cb:
e5:6f:da:d4:11:0a:67:12:4f:d5:a0:1d:f5:a6:54:39:14:b9:
08:1a:47:84:ff:fc:17:11:b5:c2:89:2d:6e:48:4a:b1:99:28:
69:bb:f3:1f:a3:3b:e8:71:30:a0:2e:f7:db:31:95:8b:72:fb:
2b:9d:6b:6d:b0:db:af:7a:d9:ca:01:26:62:b3:db:31:19:af:
fe:af:25:ba:4e:bb:fd:8b:94:f4:6e:26:a8:00:16:40:f1:68:
d6:62:e7:6a:5f:49:87:bd:08:ec:a4:8e:8e:10:b2:a7:00:c4:
c7:bb:59:f5:ed:b3:a8:d6:f0:f6:ba:c3:12:92:3a:56:03:3f:
cc:dc:3a:f9:15:a0:07:14:a8:ef:79:89:79:ab:f5:5c:ba:9c:
09:f5:b8:b3:5d:2f:bd:d7:5c:64:8d:fc:60:82:74:0a:b5:f1:
37:68:e6:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZFxcm8Y5t2VuFzP5iqXFrMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczODBjNzU5ZjU1OGY5YzZiZTg4ZGQyMjZhNDM5ZDk5Yzll
YWNmMGMwHhcNMjUwNDE3MjIwMTUyWhcNMjUwNDE4MjIwMTUyWjAzMTEwLwYDVQQD
EyhjOWU3NzAyMjViN2Q2NGEzYmI2MDBiMDBhNzg5ZWM5Mzc2ZDMwZjM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2rsxcEXHl3GdQ8CBrggI102MRVd
QrBkV0ue6uaxuqbivfNd1DfrbGuWI1F8HLuLsPZd1WWjEzODS+IVrIHqlMMyKgLo
5zWmdbqhUeHqaYx0xWsVdgrFD7cMGaPgIt0IsEAkaPKiRQOtoZODHUV/WzMxJnx+
Om/UbZ42gSLjnHHPgOMtg5Qr5iTsjO/PlEVaFVpaaHMbLDpDcOAdU3oJR+M0SBoR
vcEGaF1UNIKbD+dB5grK3nriyhzzbFT+/0rltNLuA9h7nQQBJuX1/AcHadsc7PQH
MenP/snmKv1aypXkKu4r0A6oWZNo3H+/Z/mMbjLL9c33DlgMlvm4qmlTRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMnncCJbfWSju2ALAKeJ7JN20w84MB8GA1UdIwQY
MBaAFHOAx1n1WPnGvojdImpDnZnJ6s8MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzRESFdmVlktY2EtaU4waWFrT2RtY25xend3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9iODAwMDAtMDYwOS00ODhmLWEzNGEt
MmNhNjI2Y2ZlZDQ1LzEvYzRESFdmVlktY2EtaU4waWFrT2RtY25xend3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9iODAwMDAtMDYwOS00ODhmLWEzNGEtMmNhNjI2Y2ZlZDQ1
LzEvYzRESFdmVlktY2EtaU4waWFrT2RtY25xend3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoRwC8WQZ
i2vEINuu/RQobG7awL51UAk7RgoBG56U1VRsogfqEdO6hot0zizBEjHzE71Bftk4
GtZOLILzJ6p/7r/vIwOPM1CfAKp5eHe9g/5FDlqu7GEKDnbL5W/a1BEKZxJP1aAd
9aZUORS5CBpHhP/8FxG1woktbkhKsZkoabvzH6M76HEwoC732zGVi3L7K51rbbDb
r3rZygEmYrPbMRmv/q8luk67/YuU9G4mqAAWQPFo1mLnal9Jh70I7KSOjhCypwDE
x7tZ9e2zqNbw9rrDEpI6VgM/zNw6+RWgBxSo73mJeav1XLqcCfW4s10vvddcZI38
YIJ0CrXxN2jmDw==
-----END CERTIFICATE-----
Generated at Fri Apr 18 00:40:14 2025 by rpki-client