Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
File: 670ir7gN-togA9QOVG2v03_4af0.mft (raw, json)
Hash identifier: dPPGYvIxzGfyXXIXII3KdEaK5KRZ1LnlbhyID3orfiw=
Subject key identifier: FD:F6:9A:77:89:87:0C:31:2B:60:56:2B:45:49:D0:01:66:CA:0F:A6
Authority key identifier: EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
Certificate issuer: /CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Certificate serial: 019682B566D4FEA89F48D470A4FD0A651B29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
Manifest number: 040A
Signing time: Tue 29 Apr 2025 18:00:48 +0000
Manifest this update: Tue 29 Apr 2025 18:00:48 +0000
Manifest next update: Wed 30 Apr 2025 18:00:48 +0000
Files and hashes: 1: 670ir7gN-togA9QOVG2v03_4af0.crl (hash: voyKdYmDlOBDOclepIryK8qf6z/abbsYl4Teg5Zli2E=)
2: Lg69_8_Hwhk8sLJu5EjPC6QyXmo.roa (hash: KXCYGeobuTRdhwIdNvFIRapr7Co2MUanxSVUEVx8L70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 18:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:b5:66:d4:fe:a8:9f:48:d4:70:a4:fd:0a:65:1b:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Validity
Not Before: Apr 29 18:00:48 2025 GMT
Not After : Apr 30 18:00:48 2025 GMT
Subject: CN=fdf69a7789870c312b60562b4549d00166ca0fa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:40:88:2e:1c:f5:a0:72:d4:b4:a5:c3:cb:47:
a1:e1:6e:c3:4a:75:da:ec:01:b2:8f:f2:f1:bd:f5:
e7:48:cf:52:5f:8a:0c:cc:73:2a:d7:4d:d7:e7:ca:
b7:0b:cb:6b:ac:46:a2:df:d5:37:f4:a2:b0:c3:8c:
f2:1a:bc:12:10:9a:12:97:4f:63:5f:b8:d4:c0:aa:
84:4d:c3:9d:da:de:15:c9:36:72:19:f7:c3:68:fd:
c5:f2:79:cd:98:70:06:de:84:40:90:fb:92:6b:8d:
f5:72:ca:07:68:32:69:31:8d:f4:4e:9c:55:ba:37:
64:fd:8a:a5:8e:fb:25:59:2a:ea:41:b4:77:22:9c:
49:9c:0e:7d:d4:6e:c2:b6:65:88:40:48:4f:d1:15:
4e:39:bc:a1:b9:af:37:6e:ae:37:0f:1b:37:76:88:
5e:72:e4:c6:2b:05:94:e1:de:02:48:bf:70:5b:09:
10:f0:75:2e:23:09:9f:04:e8:8c:be:81:9b:1f:3d:
27:2d:f0:16:6a:f0:f8:ef:94:70:77:b7:8c:e1:fe:
e4:cb:3d:66:19:a2:bb:03:ac:f2:b4:0c:d7:51:1a:
1d:69:67:e3:a7:45:83:3f:1b:80:1b:d8:b9:06:6f:
f0:cb:27:d2:99:e7:e6:1c:e1:ac:7b:65:68:cd:b9:
09:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:F6:9A:77:89:87:0C:31:2B:60:56:2B:45:49:D0:01:66:CA:0F:A6
X509v3 Authority Key Identifier:
keyid:EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:c0:33:e3:f8:6d:1e:99:67:41:29:bb:17:c2:db:d8:cc:70:
d5:67:f7:c8:41:f9:5c:19:8b:f3:37:aa:95:7f:b1:5f:db:3b:
46:dd:d6:a0:4e:f5:1d:45:e7:de:d3:4f:4d:1b:18:56:60:f0:
ad:32:ea:13:cb:9f:ee:49:da:05:c7:40:b9:cc:6b:d1:35:47:
b7:f6:f4:eb:f7:9e:f8:d0:0a:9e:42:a1:32:e9:05:9b:01:ad:
93:21:56:61:56:94:03:f9:ad:b7:0a:e7:43:d0:65:e2:26:20:
c4:3a:05:f2:61:10:bc:4d:f6:2e:8a:33:e8:db:27:63:f2:a1:
79:93:2c:0f:13:b0:c6:d6:30:5f:0e:5c:1d:1c:30:01:00:d8:
8f:72:e8:5f:8d:9f:ed:0d:eb:0d:7a:08:29:52:06:7c:d3:8c:
fe:36:fb:aa:6b:54:f5:cd:40:51:c1:93:2f:81:af:25:73:38:
2a:1e:f1:70:41:55:d0:6b:13:ec:2a:04:10:d3:4a:d2:bb:34:
92:3d:f5:ac:75:df:14:f5:d9:ad:eb:36:21:6a:6d:04:b5:f5:
ea:df:04:66:37:30:de:2c:dc:aa:8d:7c:5f:41:c8:0c:70:8c:
71:a4:e3:d5:18:e3:72:74:b0:47:a3:34:f1:ff:5b:3c:5f:d8:
4a:f3:f1:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaCtWbU/qifSNRwpP0KZRspMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViYmQyMmFmYjgwZGZhZGEyMDAzZDQwZTU0NmRhZmQzN2Zm
ODY5ZmQwHhcNMjUwNDI5MTgwMDQ4WhcNMjUwNDMwMTgwMDQ4WjAzMTEwLwYDVQQD
EyhmZGY2OWE3Nzg5ODcwYzMxMmI2MDU2MmI0NTQ5ZDAwMTY2Y2EwZmE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskCILhz1oHLUtKXDy0eh4W7DSnXa
7AGyj/LxvfXnSM9SX4oMzHMq103X58q3C8trrEai39U39KKww4zyGrwSEJoSl09j
X7jUwKqETcOd2t4VyTZyGffDaP3F8nnNmHAG3oRAkPuSa431csoHaDJpMY30TpxV
ujdk/YqljvslWSrqQbR3IpxJnA591G7CtmWIQEhP0RVOObyhua83bq43Dxs3dohe
cuTGKwWU4d4CSL9wWwkQ8HUuIwmfBOiMvoGbHz0nLfAWavD475Rwd7eM4f7kyz1m
GaK7A6zytAzXURodaWfjp0WDPxuAG9i5Bm/wyyfSmefmHOGse2VozbkJ6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP32mneJhwwxK2BWK0VJ0AFmyg+mMB8GA1UdIwQY
MBaAFOu9Iq+4DfraIAPUDlRtr9N/+Gn9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNjcwaXI3Z04tdG9nQTlRT1ZHMnYwM180YWYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC83ZDM1NjUtN2IwMC00ZDgxLTlhYjMt
OTE5ZWFiYTYxYjk0LzEvNjcwaXI3Z04tdG9nQTlRT1ZHMnYwM180YWYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC83ZDM1NjUtN2IwMC00ZDgxLTlhYjMtOTE5ZWFiYTYxYjk0
LzEvNjcwaXI3Z04tdG9nQTlRT1ZHMnYwM180YWYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANsAz4/ht
HplnQSm7F8Lb2Mxw1Wf3yEH5XBmL8zeqlX+xX9s7Rt3WoE71HUXn3tNPTRsYVmDw
rTLqE8uf7knaBcdAucxr0TVHt/b06/ee+NAKnkKhMukFmwGtkyFWYVaUA/mttwrn
Q9Bl4iYgxDoF8mEQvE32Looz6NsnY/KheZMsDxOwxtYwXw5cHRwwAQDYj3LoX42f
7Q3rDXoIKVIGfNOM/jb7qmtU9c1AUcGTL4GvJXM4Kh7xcEFV0GsT7CoEENNK0rs0
kj31rHXfFPXZres2IWptBLX16t8EZjcw3izcqo18X0HIDHCMcaTj1RjjcnSwR6M0
8f9bPF/YSvPxrw==
-----END CERTIFICATE-----
Generated at Wed Apr 30 04:21:20 2025 by rpki-client