Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
File: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft (raw, json)
Hash identifier: GFOFMi1GERhfXZnvTk96Xn/Lzmz0qei3351csfBIN8M=
Subject key identifier: 60:B6:8D:55:EA:D2:A1:33:03:C9:2D:73:A7:F2:88:4F:E0:86:E7:E4
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 0196767A8BD69F2F7AFAEC962E26007CAE10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
Manifest number: 151A
Signing time: Sun 27 Apr 2025 09:01:04 +0000
Manifest this update: Sun 27 Apr 2025 09:01:04 +0000
Manifest next update: Mon 28 Apr 2025 09:01:04 +0000
Files and hashes: 1: POUPcBO03DMIXVf_MFYgEgCOm2c.roa (hash: U70/4wMtnCfwgqCkp7u+PlnT2NS/US0B2K04xMH3TNI=)
2: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl (hash: VznwArjoYuJtMBHSDLAXcSA7GC1i6yvEVVV0TTjMNdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:8b:d6:9f:2f:7a:fa:ec:96:2e:26:00:7c:ae:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Apr 27 09:01:04 2025 GMT
Not After : Apr 28 09:01:04 2025 GMT
Subject: CN=60b68d55ead2a13303c92d73a7f2884fe086e7e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:49:07:00:a3:37:13:0d:45:ca:1f:b1:11:af:
94:a1:d2:84:92:35:be:17:c0:8d:00:5e:38:fa:c1:
83:91:da:0e:ab:f4:47:aa:a8:43:f7:08:0e:37:1d:
e9:2f:c2:34:de:1e:0e:4b:e3:f0:5e:a1:47:90:bc:
3c:53:48:f0:e8:8a:50:df:25:c4:6e:91:40:97:1d:
59:b0:c5:a0:b1:19:01:ef:31:82:2c:c3:fd:4a:e3:
58:55:4d:25:6c:3b:25:eb:9e:dd:21:8f:6a:6c:26:
b8:33:2a:2b:1f:7e:e3:d5:f4:ab:cc:71:ef:b9:bd:
0d:1d:54:f5:7b:32:0f:d7:a1:08:32:dc:a9:09:8b:
a2:5c:30:25:d2:2b:9f:1e:a3:30:7d:51:28:73:af:
b7:92:00:a6:a1:3d:11:4c:0e:a1:54:e4:31:2c:f8:
cc:7d:4e:60:06:f9:65:3f:7b:35:9f:14:12:8b:3f:
80:73:54:df:ba:16:58:64:4c:5a:f7:cd:e2:31:60:
03:e1:90:98:bc:74:9b:bc:bb:33:10:89:a1:74:45:
bd:c2:7f:33:cf:71:ff:25:57:b0:90:77:6e:38:6c:
89:df:25:0b:d4:23:6b:30:8d:37:8a:2b:ed:c6:bb:
ab:32:e4:54:32:c1:9d:3d:e1:9e:1d:8f:26:27:75:
75:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B6:8D:55:EA:D2:A1:33:03:C9:2D:73:A7:F2:88:4F:E0:86:E7:E4
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:53:eb:d6:6c:7e:66:81:1f:ff:d0:c1:57:1e:f2:73:aa:94:
43:f5:46:b1:11:b1:ab:60:9f:e8:05:b9:1c:78:11:fa:3e:1c:
83:31:31:3c:b2:9e:3d:0a:86:8f:b6:be:4a:00:5d:55:a0:df:
ff:8e:ab:48:e4:68:ac:a7:cf:20:65:17:01:27:69:6a:80:f7:
e7:f1:78:6f:63:f6:38:5d:e4:67:b9:08:ba:15:96:3a:13:4f:
55:b3:4c:c9:50:bb:bf:a4:82:e9:52:41:4b:d5:a0:6b:7f:4c:
06:68:66:7d:ac:90:4b:7e:df:39:85:fb:ef:77:49:93:0f:0b:
14:ca:19:00:85:4e:0a:ab:a4:90:b1:3c:a9:30:2f:5e:23:3e:
72:c8:11:b3:25:40:1f:c2:9d:98:04:93:ab:f4:e0:e1:b8:6e:
7b:ca:c7:aa:9c:eb:41:9b:05:8e:d2:fe:4d:45:42:e5:a2:f2:
0d:5d:3d:ab:c3:76:95:c2:78:fd:ff:43:7e:44:c9:e0:5c:45:
f5:0c:91:87:7d:e7:e3:af:93:f7:1e:01:06:d5:da:e6:a3:8c:
63:d0:69:ec:62:65:ec:10:39:34:bb:7d:73:90:3c:76:7a:f1:
de:63:d3:1a:f8:71:4f:f3:93:72:0e:c2:51:f8:22:2b:3b:79:
11:2b:1f:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2eovWny96+uyWLiYAfK4QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MmVjZTljOWEzMjRkNDVjMzVmOTU1OWYzMjlkODg2OWRh
YjUzYmEwHhcNMjUwNDI3MDkwMTA0WhcNMjUwNDI4MDkwMTA0WjAzMTEwLwYDVQQD
Eyg2MGI2OGQ1NWVhZDJhMTMzMDNjOTJkNzNhN2YyODg0ZmUwODZlN2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUkHAKM3Ew1Fyh+xEa+UodKEkjW+
F8CNAF44+sGDkdoOq/RHqqhD9wgONx3pL8I03h4OS+PwXqFHkLw8U0jw6IpQ3yXE
bpFAlx1ZsMWgsRkB7zGCLMP9SuNYVU0lbDsl657dIY9qbCa4MyorH37j1fSrzHHv
ub0NHVT1ezIP16EIMtypCYuiXDAl0iufHqMwfVEoc6+3kgCmoT0RTA6hVOQxLPjM
fU5gBvllP3s1nxQSiz+Ac1TfuhZYZExa983iMWAD4ZCYvHSbvLszEImhdEW9wn8z
z3H/JVewkHduOGyJ3yUL1CNrMI03iivtxrurMuRUMsGdPeGeHY8mJ3V1WwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGC2jVXq0qEzA8ktc6fyiE/ghufkMB8GA1UdIwQY
MBaAFIUuzpyaMk1Fw1+VWfMp2Iadq1O6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFM3T25Kb3lUVVhEWDVWWjh5bllocDJyVTdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9kM2NjZTYtYjQ3Yi00ZDA2LWEzMGYt
ZWIyNDExZDIxMmFiLzEvaFM3T25Kb3lUVVhEWDVWWjh5bllocDJyVTdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC9kM2NjZTYtYjQ3Yi00ZDA2LWEzMGYtZWIyNDExZDIxMmFi
LzEvaFM3T25Kb3lUVVhEWDVWWjh5bllocDJyVTdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAplPr1mx+
ZoEf/9DBVx7yc6qUQ/VGsRGxq2Cf6AW5HHgR+j4cgzExPLKePQqGj7a+SgBdVaDf
/46rSORorKfPIGUXASdpaoD35/F4b2P2OF3kZ7kIuhWWOhNPVbNMyVC7v6SC6VJB
S9Wga39MBmhmfayQS37fOYX773dJkw8LFMoZAIVOCqukkLE8qTAvXiM+csgRsyVA
H8KdmASTq/Tg4bhue8rHqpzrQZsFjtL+TUVC5aLyDV09q8N2lcJ4/f9DfkTJ4FxF
9QyRh33n46+T9x4BBtXa5qOMY9Bp7GJl7BA5NLt9c5A8dnrx3mPTGvhxT/OTcg7C
UfgiKzt5ESsfUw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 17:13:37 2025 by rpki-client