Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json)
Hash identifier: kNb5nxXlKpPaT3bEc7XJ+L4BwLtrRHqV/GIw3mIE4Ow=
Subject key identifier: 08:9A:32:46:59:87:0F:8C:61:F6:98:87:07:5E:9F:5F:A0:91:A0:1F
Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea
Certificate serial: 01967755A12223ADDCDA947F7C0943E004A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
Manifest number: 0B10
Signing time: Sun 27 Apr 2025 13:00:22 +0000
Manifest this update: Sun 27 Apr 2025 13:00:22 +0000
Manifest next update: Mon 28 Apr 2025 13:00:22 +0000
Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: GecbyxuorlH6tRkC8/HFM+TzHUGnqZqZG93aTpn1vvo=)
2: DQo4EErqs46yA4QIpyLHGlOprVU.roa (hash: jpEUtUNk7NIqvU0XQCmCZgYXNkApAZ2zVdQgWdhDGWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 13:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:55:a1:22:23:ad:dc:da:94:7f:7c:09:43:e0:04:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea
Validity
Not Before: Apr 27 13:00:22 2025 GMT
Not After : Apr 28 13:00:22 2025 GMT
Subject: CN=089a324659870f8c61f69887075e9f5fa091a01f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a9:26:13:40:d6:27:b7:b6:ae:c3:9c:d6:73:
47:4b:a4:1f:10:7e:04:bb:bd:8e:24:e3:51:56:1b:
1a:5a:ca:a0:ef:f6:42:e7:9a:79:c2:7b:40:39:c6:
38:0c:a0:45:46:1c:04:11:22:b9:2a:4e:e6:5a:02:
a1:9f:15:0c:34:51:03:c4:f3:91:22:5b:1d:14:d8:
72:6a:94:58:e4:74:07:c7:49:21:ce:73:a3:ab:ae:
19:af:72:81:e7:2e:11:63:30:a2:d3:59:a2:6c:b0:
3d:ee:c5:a9:64:db:d8:9e:e9:fb:03:ba:d1:18:68:
59:29:a0:34:e7:1e:9a:ef:be:cc:5d:48:63:6e:98:
7a:26:43:fe:5e:14:b4:81:8b:41:37:12:df:b9:13:
18:85:c9:ce:8d:ce:d2:94:22:97:34:14:15:bc:87:
74:85:ac:79:17:2d:d7:04:49:57:46:34:ec:ec:53:
9a:74:a6:84:38:c0:0a:6c:ee:98:c8:37:4c:14:a6:
79:78:67:f1:e6:4a:1e:10:dd:3b:eb:50:44:53:19:
c1:7a:6d:0b:65:d3:3f:98:93:e9:91:98:c8:49:dc:
72:a5:b8:e7:4d:a3:57:f3:21:96:83:22:cd:40:cb:
99:98:56:c4:d7:84:a3:21:41:79:61:e4:82:a9:48:
a6:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:9A:32:46:59:87:0F:8C:61:F6:98:87:07:5E:9F:5F:A0:91:A0:1F
X509v3 Authority Key Identifier:
keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:e0:99:4b:9e:be:0c:0f:7f:90:5b:b7:7e:04:2d:4f:64:fb:
a8:34:0d:7c:ac:77:05:ff:1a:b0:2a:11:c5:29:3d:16:3b:ad:
50:36:08:97:a7:e6:66:88:43:6f:36:71:ce:4a:02:13:2c:74:
71:08:ea:22:58:dc:cf:34:15:d5:ed:91:37:66:58:83:17:0a:
6c:1e:51:c3:cc:7a:c2:77:74:28:84:19:f3:9a:2a:11:63:f6:
f3:5d:3c:f5:7b:d2:e2:db:0d:34:ca:fd:f0:9a:b7:90:85:d3:
24:b7:a1:ae:fd:19:67:d3:a4:9e:d8:ec:12:99:67:24:b8:20:
0e:6c:b9:dc:a6:a9:00:68:98:c7:fa:cb:7e:20:01:03:8b:a3:
de:e4:99:4c:78:1b:ce:1a:64:34:0f:79:85:48:0c:4e:8d:2f:
79:08:07:a1:fd:7f:c7:ff:a0:ab:86:97:67:d2:47:aa:a6:74:
cf:68:d8:5c:21:ed:41:63:3f:fd:4c:42:50:a8:3c:26:5b:7a:
a4:74:48:3a:e5:ed:d0:40:c4:f7:ff:a6:da:db:43:80:b8:5c:
51:28:55:23:2e:f9:4e:db:c9:bc:a0:74:84:e6:51:29:2f:5d:
7d:38:5b:b0:65:fd:bc:a7:9a:f3:e2:2f:c1:0e:f0:ab:42:58:
20:47:8a:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3VaEiI63c2pR/fAlD4ASjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwNjdhN2I5ZGU3NjdlYjk3ZGI2NGU1MTY0Nzg0OTQ2MzNi
ZDU0ZWEwHhcNMjUwNDI3MTMwMDIyWhcNMjUwNDI4MTMwMDIyWjAzMTEwLwYDVQQD
EygwODlhMzI0NjU5ODcwZjhjNjFmNjk4ODcwNzVlOWY1ZmEwOTFhMDFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKkmE0DWJ7e2rsOc1nNHS6QfEH4E
u72OJONRVhsaWsqg7/ZC55p5wntAOcY4DKBFRhwEESK5Kk7mWgKhnxUMNFEDxPOR
IlsdFNhyapRY5HQHx0khznOjq64Zr3KB5y4RYzCi01mibLA97sWpZNvYnun7A7rR
GGhZKaA05x6a777MXUhjbph6JkP+XhS0gYtBNxLfuRMYhcnOjc7SlCKXNBQVvId0
hax5Fy3XBElXRjTs7FOadKaEOMAKbO6YyDdMFKZ5eGfx5koeEN0761BEUxnBem0L
ZdM/mJPpkZjISdxypbjnTaNX8yGWgyLNQMuZmFbE14SjIUF5YeSCqUimBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAiaMkZZhw+MYfaYhwden1+gkaAfMB8GA1UdIwQY
MBaAFOBnp7nedn65fbZOUWR4SUYzvVTqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9kNTIwYzQtZGViNC00MzhiLTkzYmYt
NzY4ZjNkNmVlMTllLzEvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9kNTIwYzQtZGViNC00MzhiLTkzYmYtNzY4ZjNkNmVlMTll
LzEvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkeCZS56+
DA9/kFu3fgQtT2T7qDQNfKx3Bf8asCoRxSk9FjutUDYIl6fmZohDbzZxzkoCEyx0
cQjqIljczzQV1e2RN2ZYgxcKbB5Rw8x6wnd0KIQZ85oqEWP281089XvS4tsNNMr9
8Jq3kIXTJLehrv0ZZ9OkntjsEplnJLggDmy53KapAGiYx/rLfiABA4uj3uSZTHgb
zhpkNA95hUgMTo0veQgHof1/x/+gq4aXZ9JHqqZ0z2jYXCHtQWM//UxCUKg8Jlt6
pHRIOuXt0EDE9/+m2ttDgLhcUShVIy75TtvJvKB0hOZRKS9dfThbsGX9vKea8+Iv
wQ7wq0JYIEeK6Q==
-----END CERTIFICATE-----
Generated at Sun Apr 27 21:29:38 2025 by rpki-client