Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
File: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft (raw, json)
Hash identifier: eCWL7YC0kegWl88OOEI1qq/jkC+OyK90KX1Hl3C2+Eg=
Subject key identifier: 94:AB:28:83:58:B2:96:FE:7E:7B:07:97:A5:22:92:27:A9:64:DB:CF
Authority key identifier: D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
Certificate issuer: /CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Certificate serial: 01964D0FF469F57E1C54734BA14A4B6E01C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
Manifest number: 0A41
Signing time: Sat 19 Apr 2025 08:00:13 +0000
Manifest this update: Sat 19 Apr 2025 08:00:13 +0000
Manifest next update: Sun 20 Apr 2025 08:00:13 +0000
Files and hashes: 1: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl (hash: TDM0eSc200ZbmsYT4yAL166wYfDJMvDfM0/qBq3U3og=)
2: It-Yns2Nwvw18OgbQ81pWbtQZ7M.roa (hash: 7H+X0erT0owXhcTltBjLEsiIIl6BxhT41pVVMePz04w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 08:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:0f:f4:69:f5:7e:1c:54:73:4b:a1:4a:4b:6e:01:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Validity
Not Before: Apr 19 08:00:13 2025 GMT
Not After : Apr 20 08:00:13 2025 GMT
Subject: CN=94ab288358b296fe7e7b0797a5229227a964dbcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d0:69:4c:89:d6:a7:c2:6f:52:a5:38:aa:92:
01:de:00:b8:6b:5c:47:85:39:58:bd:91:88:25:16:
d0:81:0f:c2:4b:46:05:ac:b1:e4:09:e8:e5:6e:90:
da:83:83:8b:6d:c4:25:b9:03:9a:20:71:eb:cd:2e:
25:f2:a6:7b:c1:af:db:a9:a8:2b:9e:3d:d5:c0:34:
35:7a:ef:5a:80:0a:f4:f1:fd:6b:58:b8:66:a8:07:
21:dd:76:28:28:15:d9:85:f7:1c:21:ca:53:f9:a3:
31:55:ef:20:ec:bc:f2:2b:86:48:e5:7a:2f:0e:16:
f8:46:74:3b:3b:26:75:90:90:8f:b4:ac:69:c8:30:
ec:8a:39:0c:81:3e:6f:6c:45:3a:b2:2d:c4:e4:a8:
49:f8:5a:16:88:52:d1:d6:cd:1b:42:64:c8:fa:35:
2e:53:d0:8c:29:4d:8a:c0:4f:20:51:08:74:ab:c7:
b5:b5:95:9d:0e:a0:af:e0:e7:eb:0e:64:5a:50:a2:
9e:5b:c7:fe:42:45:a7:e3:e5:af:aa:6a:f7:5f:1f:
0b:4e:0f:35:2f:fa:b5:b8:07:03:7d:6e:a7:c4:59:
38:ba:a6:c8:46:54:27:59:d6:fb:61:7e:f4:08:f8:
1b:e0:5e:a0:34:11:58:1b:08:7c:f7:02:3e:1b:bb:
ee:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:AB:28:83:58:B2:96:FE:7E:7B:07:97:A5:22:92:27:A9:64:DB:CF
X509v3 Authority Key Identifier:
keyid:D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:18:71:c0:36:9a:f5:98:e3:18:0e:86:5f:35:cb:1f:84:1e:
6d:d3:3a:30:71:aa:64:b4:17:65:10:22:3f:11:2f:6f:f8:e4:
24:d9:9f:87:d3:9f:45:25:30:ea:7a:d0:1a:2b:48:88:04:46:
d6:9c:ea:27:b7:67:33:86:f0:04:d0:85:d0:02:45:a2:20:46:
e2:38:66:61:ac:b3:95:20:fc:fb:0e:74:55:26:25:54:1c:56:
d8:ff:31:c4:a8:e3:03:39:1f:65:bc:e8:79:1c:a1:4c:17:2e:
a0:a1:ab:45:16:54:a2:c7:db:2a:b8:3b:0f:b6:eb:ca:fc:ce:
48:62:6b:2f:e4:19:b7:46:52:80:2a:51:28:c7:11:6b:70:cc:
f5:cc:d0:45:f8:86:35:05:c3:ca:e3:94:f1:b4:f2:03:e9:64:
99:8f:bc:88:3d:8c:26:a5:98:14:38:cc:3d:cb:30:f0:b6:38:
db:57:af:7b:cd:32:b4:d8:ce:d9:64:36:59:b8:b0:72:4b:81:
45:62:1c:e5:b6:d4:e9:90:5c:f7:ce:16:a9:e3:d7:7d:cf:1e:
63:94:8b:40:40:5e:63:01:11:bc:ed:f8:aa:95:df:d3:8f:07:
f4:1b:ec:39:67:d9:13:a1:21:d5:9b:8d:1d:a0:15:22:ec:fa:
27:c6:84:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZND/Rp9X4cVHNLoUpLbgHFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0YzBkNjk0ZDU5ZDdkMzZiYTQyMWEzMDUwZjRlYzdkZDM3
ODFlZmQwHhcNMjUwNDE5MDgwMDEzWhcNMjUwNDIwMDgwMDEzWjAzMTEwLwYDVQQD
Eyg5NGFiMjg4MzU4YjI5NmZlN2U3YjA3OTdhNTIyOTIyN2E5NjRkYmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9BpTInWp8JvUqU4qpIB3gC4a1xH
hTlYvZGIJRbQgQ/CS0YFrLHkCejlbpDag4OLbcQluQOaIHHrzS4l8qZ7wa/bqagr
nj3VwDQ1eu9agAr08f1rWLhmqAch3XYoKBXZhfccIcpT+aMxVe8g7LzyK4ZI5Xov
Dhb4RnQ7OyZ1kJCPtKxpyDDsijkMgT5vbEU6si3E5KhJ+FoWiFLR1s0bQmTI+jUu
U9CMKU2KwE8gUQh0q8e1tZWdDqCv4OfrDmRaUKKeW8f+QkWn4+Wvqmr3Xx8LTg81
L/q1uAcDfW6nxFk4uqbIRlQnWdb7YX70CPgb4F6gNBFYGwh89wI+G7vueQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJSrKINYspb+fnsHl6UikiepZNvPMB8GA1UdIwQY
MBaAFNTA1pTVnX02ukIaMFD07H3TeB79MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMU1EV2xOV2RmVGE2UWhvd1VQVHNmZE40SHYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS80MWNjY2UtYWNkOC00ZmI4LWIxNDgt
YTc5NTEwZTYxM2U4LzEvMU1EV2xOV2RmVGE2UWhvd1VQVHNmZE40SHYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS80MWNjY2UtYWNkOC00ZmI4LWIxNDgtYTc5NTEwZTYxM2U4
LzEvMU1EV2xOV2RmVGE2UWhvd1VQVHNmZE40SHYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApBhxwDaa
9ZjjGA6GXzXLH4QebdM6MHGqZLQXZRAiPxEvb/jkJNmfh9OfRSUw6nrQGitIiARG
1pzqJ7dnM4bwBNCF0AJFoiBG4jhmYayzlSD8+w50VSYlVBxW2P8xxKjjAzkfZbzo
eRyhTBcuoKGrRRZUosfbKrg7D7bryvzOSGJrL+QZt0ZSgCpRKMcRa3DM9czQRfiG
NQXDyuOU8bTyA+lkmY+8iD2MJqWYFDjMPcsw8LY421eve80ytNjO2WQ2WbiwckuB
RWIc5bbU6ZBc984WqePXfc8eY5SLQEBeYwERvO34qpXf048H9BvsOWfZE6Eh1ZuN
HaAVIuz6J8aECQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 17:12:04 2025 by rpki-client