Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
File: h4R32LYtCfmui_29gSpT-X7UxXY.mft (raw, json)
Hash identifier: /e+zPsjZSd7LrmEfoSQYYh2DfJAcXsf/ImxgK5+7dPg=
Subject key identifier: 59:4A:8C:13:40:95:DA:A7:D9:3B:4F:EC:7D:90:15:2B:A7:DF:5D:67
Authority key identifier: 87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
Certificate issuer: /CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Certificate serial: 01965793D2FDB9973471A2F28D8F45B6CF92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
Manifest number: 0327
Signing time: Mon 21 Apr 2025 09:00:27 +0000
Manifest this update: Mon 21 Apr 2025 09:00:27 +0000
Manifest next update: Tue 22 Apr 2025 09:00:27 +0000
Files and hashes: 1: 1-chTvEPLKpclBFunFsZudwhteCw.roa (hash: Mk7QbJ14tNyeCXu9wD1n7MpPtkSCXANni+lDYxJDiAk=)
2: h4R32LYtCfmui_29gSpT-X7UxXY.crl (hash: vyoSTAzjrskCPx3w9WIc04ooaF8lYUKksCMcSMksby4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 09:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:93:d2:fd:b9:97:34:71:a2:f2:8d:8f:45:b6:cf:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Validity
Not Before: Apr 21 09:00:27 2025 GMT
Not After : Apr 22 09:00:27 2025 GMT
Subject: CN=594a8c134095daa7d93b4fec7d90152ba7df5d67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:12:d9:79:8c:fe:3f:cf:b6:41:1c:5c:9c:ac:
74:0f:7c:d5:64:87:2d:8d:5e:b4:8c:88:f2:f8:15:
f9:91:ec:f1:56:7e:6a:d0:01:b4:52:19:9f:76:05:
bd:4a:61:80:5e:10:c8:49:e7:a6:29:09:e7:61:23:
27:8e:71:e5:b9:bd:ee:df:e8:08:cc:87:32:04:37:
ce:ab:68:e7:23:84:fd:24:c8:2e:0c:8a:f9:03:fd:
cf:75:52:8c:d2:d5:02:15:be:ed:52:15:9b:41:6d:
99:9f:df:05:dd:42:ee:a3:97:3c:e6:92:8e:5e:92:
31:9c:9a:d4:bf:80:ec:65:8f:b4:1b:9c:d2:54:b9:
60:32:5b:24:22:9d:1d:74:de:dc:5b:3f:ba:02:a0:
84:22:fe:84:23:b4:d4:09:01:16:e4:18:c0:2b:83:
32:0a:c7:3a:b1:21:83:08:86:6c:4b:69:76:6f:64:
fa:cb:c5:34:ad:85:47:62:fd:b8:ef:b6:b2:22:a4:
a9:b8:27:b9:f9:23:35:93:ce:e3:c9:84:09:76:92:
05:77:87:08:63:e6:10:fa:36:9d:9d:65:8b:11:f7:
59:76:ed:26:55:87:ad:e1:de:ff:51:6f:f5:f7:7a:
90:88:9f:93:73:30:07:4c:70:93:cb:b2:51:aa:d8:
3b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:4A:8C:13:40:95:DA:A7:D9:3B:4F:EC:7D:90:15:2B:A7:DF:5D:67
X509v3 Authority Key Identifier:
keyid:87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:07:7e:f3:bd:ea:c5:58:a0:2c:96:7f:a9:69:f8:4a:52:37:
77:ac:b3:cb:5f:94:16:82:cd:5e:4a:c5:2e:1d:60:fe:fb:c8:
27:ab:85:ca:cd:c3:56:81:ff:d4:46:93:c4:8c:60:59:cf:7a:
e4:e5:d5:72:71:c9:f5:08:76:45:34:39:f6:0c:8d:ca:1b:69:
57:56:2e:b0:41:1d:b2:2b:bb:68:df:c4:cc:29:b1:1f:32:68:
b5:44:9c:af:04:d7:64:a3:2e:ae:fb:21:78:58:54:58:e1:b6:
46:5d:e9:28:71:3b:3e:72:62:61:37:60:a8:f6:62:ac:43:8a:
bf:c8:ba:5b:33:22:11:f4:f1:6a:f5:7d:ca:76:0f:32:cb:23:
2c:c5:a6:e4:e3:d1:b6:e3:62:6c:21:e0:f0:d8:2c:e7:42:2f:
e8:b7:52:2f:46:66:64:a3:26:fc:cd:61:2d:6a:ee:48:7f:40:
d8:ff:9e:78:e2:85:f6:66:cf:08:ba:8f:f8:eb:90:12:7e:80:
c5:ff:94:05:35:ce:27:08:db:40:2f:62:96:e2:aa:82:9f:0d:
5f:2e:b2:4c:13:f2:db:56:0c:59:86:01:2b:0d:28:15:0e:de:
09:d7:db:29:da:a3:97:af:67:4e:af:2a:82:88:29:d8:23:bf:
1b:16:0c:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZXk9L9uZc0caLyjY9Fts+SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ODQ3N2Q4YjYyZDA5ZjlhZThiZmRiZDgxMmE1M2Y5N2Vk
NGM1NzYwHhcNMjUwNDIxMDkwMDI3WhcNMjUwNDIyMDkwMDI3WjAzMTEwLwYDVQQD
Eyg1OTRhOGMxMzQwOTVkYWE3ZDkzYjRmZWM3ZDkwMTUyYmE3ZGY1ZDY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBLZeYz+P8+2QRxcnKx0D3zVZIct
jV60jIjy+BX5kezxVn5q0AG0UhmfdgW9SmGAXhDISeemKQnnYSMnjnHlub3u3+gI
zIcyBDfOq2jnI4T9JMguDIr5A/3PdVKM0tUCFb7tUhWbQW2Zn98F3ULuo5c85pKO
XpIxnJrUv4DsZY+0G5zSVLlgMlskIp0ddN7cWz+6AqCEIv6EI7TUCQEW5BjAK4My
Csc6sSGDCIZsS2l2b2T6y8U0rYVHYv2477ayIqSpuCe5+SM1k87jyYQJdpIFd4cI
Y+YQ+jadnWWLEfdZdu0mVYet4d7/UW/193qQiJ+TczAHTHCTy7JRqtg7WwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFlKjBNAldqn2TtP7H2QFSun311nMB8GA1UdIwQY
MBaAFIeEd9i2LQn5rov9vYEqU/l+1MV2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9lODNhYzUtNDQ4Yi00ZTQ5LThlYmYt
ODg0MmU1ZWRjZTAyLzEvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9lODNhYzUtNDQ4Yi00ZTQ5LThlYmYtODg0MmU1ZWRjZTAy
LzEvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOQd+873q
xVigLJZ/qWn4SlI3d6yzy1+UFoLNXkrFLh1g/vvIJ6uFys3DVoH/1EaTxIxgWc96
5OXVcnHJ9Qh2RTQ59gyNyhtpV1YusEEdsiu7aN/EzCmxHzJotUScrwTXZKMurvsh
eFhUWOG2Rl3pKHE7PnJiYTdgqPZirEOKv8i6WzMiEfTxavV9ynYPMssjLMWm5OPR
tuNibCHg8Ngs50Iv6LdSL0ZmZKMm/M1hLWruSH9A2P+eeOKF9mbPCLqP+OuQEn6A
xf+UBTXOJwjbQC9iluKqgp8NXy6yTBPy21YMWYYBKw0oFQ7eCdfbKdqjl69nTq8q
gogp2CO/GxYM0Q==
-----END CERTIFICATE-----
Generated at Mon Apr 21 16:15:05 2025 by rpki-client