Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
File: v42FRzQuL8ns-t_O8Azyc--dbpA.mft (raw, json)
Hash identifier: rDgxRyAEo72/mOqK+yRNXx3a7gqO6Fi5ArmcPVeAxGM=
Subject key identifier: AD:4D:43:A7:2A:5C:69:8C:4F:6C:9D:52:4D:AA:CD:01:49:8D:C0:D0
Authority key identifier: BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
Certificate issuer: /CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Certificate serial: 0196764354AABEFE6D05CF2D138BA3AAA1AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
Manifest number: 026F
Signing time: Sun 27 Apr 2025 08:00:46 +0000
Manifest this update: Sun 27 Apr 2025 08:00:46 +0000
Manifest next update: Mon 28 Apr 2025 08:00:46 +0000
Files and hashes: 1: fwI8WQwy5fbXMlIKzIdcXaYEMU0.roa (hash: bPDJhxbWV/nawvua5orm+AkfyQvA9xpKaA3uAdqYMPA=)
2: v42FRzQuL8ns-t_O8Azyc--dbpA.crl (hash: UtwiKW3FoMis1SVog6aA19xuR1BKhEttkVlaxdziqcs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:43:54:aa:be:fe:6d:05:cf:2d:13:8b:a3:aa:a1:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Validity
Not Before: Apr 27 08:00:46 2025 GMT
Not After : Apr 28 08:00:46 2025 GMT
Subject: CN=ad4d43a72a5c698c4f6c9d524daacd01498dc0d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c9:8a:03:f4:58:37:b7:ba:95:0d:7b:78:b3:
6a:4b:9d:57:c3:c2:a1:fd:b7:8d:fa:0b:6f:75:6b:
07:b6:f7:8e:e5:6d:39:6a:85:91:19:0e:df:3b:d7:
48:5a:9b:04:bf:94:30:e0:92:9d:50:98:ec:d1:3e:
bd:c8:37:69:14:48:15:76:43:ac:c9:87:a9:74:85:
95:fe:02:65:94:85:00:a4:89:05:c4:d0:d3:75:e9:
82:2d:36:de:19:1e:67:b1:70:9b:13:81:3b:f7:7b:
2f:1f:a6:28:cb:5b:84:b4:08:80:eb:46:87:5d:2c:
98:0d:8b:b4:d0:3c:ee:60:8c:79:21:fc:ba:67:b1:
39:fe:ce:c2:05:d5:ef:7b:73:65:21:6b:61:a2:fe:
b7:08:ac:46:a8:a7:da:e3:eb:a7:ab:9d:ac:39:48:
41:ba:d5:d7:39:60:ff:b8:a6:8b:7b:e7:fc:1b:be:
9e:ee:39:5a:7a:25:29:af:f1:40:8d:b5:1b:a6:fa:
30:85:7a:9e:95:b0:70:d8:cf:8b:ae:d5:8c:84:68:
60:5a:79:db:fa:d5:35:87:42:dd:27:15:cd:76:d3:
53:11:1e:d9:89:e4:82:3f:69:48:f2:5f:e3:ce:06:
ff:1f:0f:19:e0:ba:c1:50:17:e8:16:d8:7c:3b:87:
25:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:4D:43:A7:2A:5C:69:8C:4F:6C:9D:52:4D:AA:CD:01:49:8D:C0:D0
X509v3 Authority Key Identifier:
keyid:BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:da:b4:b6:01:87:f8:9a:05:81:86:48:a5:05:c1:21:1a:89:
9b:75:b1:0d:98:64:0c:f5:21:dd:a3:f5:e5:45:e8:f2:69:9c:
bd:f4:5e:51:01:fc:e5:5f:9c:db:57:04:d1:06:55:cc:c3:70:
32:0a:85:3f:99:7c:81:af:41:f0:bd:64:43:ea:65:82:85:c9:
36:5d:ed:3f:3a:7e:3c:52:02:f8:4b:df:51:9c:90:a8:8d:e5:
9f:07:ad:5f:3a:3d:4f:68:46:16:45:94:8c:7b:0a:00:41:35:
5b:d3:92:7a:47:c0:8b:63:77:4e:cf:f5:7f:ee:ac:be:7f:84:
7e:59:63:bd:8a:36:57:24:31:b2:0c:dd:c0:21:55:99:49:da:
d8:c9:56:f0:43:cc:10:3b:63:0f:0e:03:79:87:50:89:b0:3f:
bb:58:9a:15:75:a3:8e:67:83:f1:cf:2c:70:02:d1:d0:f1:46:
2c:f5:47:72:b4:aa:89:55:83:16:48:8d:ac:5a:55:63:37:b3:
38:6b:34:e0:99:05:96:6b:ce:a9:03:74:48:ea:7b:aa:d9:1b:
c4:83:46:8d:51:fc:c4:4f:45:d8:44:9c:19:98:ea:af:59:bc:
65:98:b2:2b:c8:d9:2b:80:53:36:f6:06:c3:39:49:c1:28:05:
12:ca:7e:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2Q1Sqvv5tBc8tE4ujqqGrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmOGQ4NTQ3MzQyZTJmYzllY2ZhZGZjZWYwMGNmMjczZWY5
ZDZlOTAwHhcNMjUwNDI3MDgwMDQ2WhcNMjUwNDI4MDgwMDQ2WjAzMTEwLwYDVQQD
EyhhZDRkNDNhNzJhNWM2OThjNGY2YzlkNTI0ZGFhY2QwMTQ5OGRjMGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6smKA/RYN7e6lQ17eLNqS51Xw8Kh
/beN+gtvdWsHtveO5W05aoWRGQ7fO9dIWpsEv5Qw4JKdUJjs0T69yDdpFEgVdkOs
yYepdIWV/gJllIUApIkFxNDTdemCLTbeGR5nsXCbE4E793svH6Yoy1uEtAiA60aH
XSyYDYu00DzuYIx5Ify6Z7E5/s7CBdXve3NlIWthov63CKxGqKfa4+unq52sOUhB
utXXOWD/uKaLe+f8G76e7jlaeiUpr/FAjbUbpvowhXqelbBw2M+LrtWMhGhgWnnb
+tU1h0LdJxXNdtNTER7ZieSCP2lI8l/jzgb/Hw8Z4LrBUBfoFth8O4cltwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK1NQ6cqXGmMT2ydUk2qzQFJjcDQMB8GA1UdIwQY
MBaAFL+NhUc0Li/J7PrfzvAM8nPvnW6QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjQyRlJ6UXVMOG5zLXRfTzhBenljLS1kYnBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iNmY3MzQtYzY1NS00M2ExLTk5MzQt
MWU3MTkzMGZjYzBmLzEvdjQyRlJ6UXVMOG5zLXRfTzhBenljLS1kYnBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS9iNmY3MzQtYzY1NS00M2ExLTk5MzQtMWU3MTkzMGZjYzBm
LzEvdjQyRlJ6UXVMOG5zLXRfTzhBenljLS1kYnBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEtq0tgGH
+JoFgYZIpQXBIRqJm3WxDZhkDPUh3aP15UXo8mmcvfReUQH85V+c21cE0QZVzMNw
MgqFP5l8ga9B8L1kQ+plgoXJNl3tPzp+PFIC+EvfUZyQqI3lnwetXzo9T2hGFkWU
jHsKAEE1W9OSekfAi2N3Ts/1f+6svn+EflljvYo2VyQxsgzdwCFVmUna2MlW8EPM
EDtjDw4DeYdQibA/u1iaFXWjjmeD8c8scALR0PFGLPVHcrSqiVWDFkiNrFpVYzez
OGs04JkFlmvOqQN0SOp7qtkbxINGjVH8xE9F2EScGZjqr1m8ZZiyK8jZK4BTNvYG
wzlJwSgFEsp+oA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 13:10:08 2025 by rpki-client