Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
File: 8gLwqonAZ9ZjOLTVnSBSujmplEs.mft (raw, json)
Hash identifier: AcHrVQubpvnCtBiOsFAXRiy5N78ISLVgu8Ov3VWD+6E=
Subject key identifier: 55:52:A1:FC:06:13:78:FB:36:2B:E9:3B:1C:10:B5:BD:38:5D:36:5E
Authority key identifier: F2:02:F0:AA:89:C0:67:D6:63:38:B4:D5:9D:20:52:BA:39:A9:94:4B
Certificate issuer: /CN=f202f0aa89c067d66338b4d59d2052ba39a9944b
Certificate serial: 019688B76EF9FFF93E2EB5CC21A1F1AA6489
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8gLwqonAZ9ZjOLTVnSBSujmplEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
Manifest number: 047B
Signing time: Wed 30 Apr 2025 22:00:44 +0000
Manifest this update: Wed 30 Apr 2025 22:00:44 +0000
Manifest next update: Thu 01 May 2025 22:00:44 +0000
Files and hashes: 1: 8gLwqonAZ9ZjOLTVnSBSujmplEs.crl (hash: NKP4oduJov7KdAhmGMRGSadEMiX3846pLu9MT/MxVDo=)
2: gxY3cqQ9AtbDjrB_-otpHb6Irb0.roa (hash: LD3l5OVkY9IZSD+ZJZMYqJis4oBCr+KMHwZEJzzuk0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8gLwqonAZ9ZjOLTVnSBSujmplEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:b7:6e:f9:ff:f9:3e:2e:b5:cc:21:a1:f1:aa:64:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f202f0aa89c067d66338b4d59d2052ba39a9944b
Validity
Not Before: Apr 30 22:00:44 2025 GMT
Not After : May 1 22:00:44 2025 GMT
Subject: CN=5552a1fc061378fb362be93b1c10b5bd385d365e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:44:ec:08:7b:04:60:e5:42:1d:70:d4:6a:ac:
5b:52:f7:31:bb:f2:6e:35:60:e5:dd:4c:ed:73:bc:
2a:18:ca:95:7f:a9:33:43:a0:03:2d:9f:44:17:fd:
12:60:1b:0a:39:e8:b1:30:8a:47:a4:ca:f1:72:70:
7c:8b:62:1f:96:dd:10:69:0b:f0:5f:38:56:9c:f4:
10:03:9d:dc:1b:14:63:79:7a:3e:58:9f:6e:7c:09:
2c:8a:00:20:1a:ad:39:98:43:40:39:0d:57:08:5a:
41:ed:36:c8:67:3d:41:46:ee:a5:9b:05:a1:91:20:
81:50:bc:03:4a:18:96:f8:0c:44:13:b4:be:8d:cb:
78:db:a8:af:35:db:86:22:f0:29:56:a6:f5:49:c2:
bf:e0:2b:b3:30:8a:93:9b:ad:39:b5:1d:76:02:f1:
a5:16:9c:d4:67:77:8f:79:5f:2c:28:5e:85:42:d6:
96:31:db:ef:eb:a2:56:ab:40:26:49:4c:b8:5c:ad:
86:4a:a5:d4:aa:32:fd:4b:2e:7d:9a:e9:81:13:97:
2d:d5:45:a5:f5:0f:ec:d1:c4:12:80:76:a6:72:3b:
0b:47:93:02:15:62:da:89:b9:22:93:3c:94:8b:51:
f9:76:fc:51:65:18:c3:c7:0c:c8:2c:79:cd:69:07:
eb:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:52:A1:FC:06:13:78:FB:36:2B:E9:3B:1C:10:B5:BD:38:5D:36:5E
X509v3 Authority Key Identifier:
keyid:F2:02:F0:AA:89:C0:67:D6:63:38:B4:D5:9D:20:52:BA:39:A9:94:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8gLwqonAZ9ZjOLTVnSBSujmplEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8769f1-b80b-4886-bb0b-f625700e8a90/1/8gLwqonAZ9ZjOLTVnSBSujmplEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:22:a2:bc:18:77:17:c9:30:e7:b5:f7:4d:77:29:d1:87:10:
24:02:88:d9:a2:fd:43:23:00:2e:5b:55:53:52:1b:59:46:e3:
97:e2:07:c6:a0:cb:46:ac:62:9d:f5:ae:d7:81:ae:e5:4e:95:
9c:1d:e4:29:5a:42:f3:1d:cc:15:a6:ed:36:5e:4f:64:99:43:
28:d9:0a:00:73:eb:95:5a:92:70:3d:64:44:b9:c4:6a:94:7a:
3b:0f:a2:3e:77:7e:0d:28:a5:27:7b:8f:d2:e8:04:d9:44:85:
d7:70:73:4c:b7:f0:1c:3d:a3:80:4d:f8:df:c5:c2:9e:15:28:
8b:6b:14:a1:08:98:82:80:75:14:7c:d1:f9:5b:ef:1c:c5:62:
35:ab:f6:1c:f1:85:93:e8:d5:dd:83:37:c8:ed:a4:ed:33:6b:
0f:7d:1e:2f:b2:99:57:cc:06:26:b4:b5:84:73:26:62:e8:90:
a7:77:5c:ea:3e:0b:87:f8:89:38:31:ad:24:3c:06:5a:0f:13:
15:75:ca:dd:30:8c:89:85:2c:61:03:76:a1:02:14:2a:9f:e4:
b2:50:03:73:0c:c6:bb:dd:75:3e:98:6f:44:3e:ba:32:ec:f6:
e8:3a:eb:49:20:68:93:6e:d0:57:66:9e:7c:17:46:65:52:e3:
12:91:9a:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaIt275//k+LrXMIaHxqmSJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyMDJmMGFhODljMDY3ZDY2MzM4YjRkNTlkMjA1MmJhMzlh
OTk0NGIwHhcNMjUwNDMwMjIwMDQ0WhcNMjUwNTAxMjIwMDQ0WjAzMTEwLwYDVQQD
Eyg1NTUyYTFmYzA2MTM3OGZiMzYyYmU5M2IxYzEwYjViZDM4NWQzNjVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0TsCHsEYOVCHXDUaqxbUvcxu/Ju
NWDl3Uztc7wqGMqVf6kzQ6ADLZ9EF/0SYBsKOeixMIpHpMrxcnB8i2Iflt0QaQvw
XzhWnPQQA53cGxRjeXo+WJ9ufAksigAgGq05mENAOQ1XCFpB7TbIZz1BRu6lmwWh
kSCBULwDShiW+AxEE7S+jct426ivNduGIvApVqb1ScK/4CuzMIqTm605tR12AvGl
FpzUZ3ePeV8sKF6FQtaWMdvv66JWq0AmSUy4XK2GSqXUqjL9Sy59mumBE5ct1UWl
9Q/s0cQSgHamcjsLR5MCFWLaibkikzyUi1H5dvxRZRjDxwzILHnNaQfrewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFVSofwGE3j7NivpOxwQtb04XTZeMB8GA1UdIwQY
MBaAFPIC8KqJwGfWYzi01Z0gUro5qZRLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGdMd3FvbkFaOVpqT0xUVm5TQlN1am1wbEVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi84NzY5ZjEtYjgwYi00ODg2LWJiMGIt
ZjYyNTcwMGU4YTkwLzEvOGdMd3FvbkFaOVpqT0xUVm5TQlN1am1wbEVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi84NzY5ZjEtYjgwYi00ODg2LWJiMGItZjYyNTcwMGU4YTkw
LzEvOGdMd3FvbkFaOVpqT0xUVm5TQlN1am1wbEVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALyKivBh3
F8kw57X3TXcp0YcQJAKI2aL9QyMALltVU1IbWUbjl+IHxqDLRqxinfWu14Gu5U6V
nB3kKVpC8x3MFabtNl5PZJlDKNkKAHPrlVqScD1kRLnEapR6Ow+iPnd+DSilJ3uP
0ugE2USF13BzTLfwHD2jgE3438XCnhUoi2sUoQiYgoB1FHzR+VvvHMViNav2HPGF
k+jV3YM3yO2k7TNrD30eL7KZV8wGJrS1hHMmYuiQp3dc6j4Lh/iJODGtJDwGWg8T
FXXK3TCMiYUsYQN2oQIUKp/kslADcwzGu911PphvRD66Muz26DrrSSBok27QV2ae
fBdGZVLjEpGakQ==
-----END CERTIFICATE-----
Generated at Thu May 1 07:21:53 2025 by rpki-client