Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft
File: RhU-isRttc5XS6fjnoforwlsGok.mft (raw, json)
Hash identifier: K5c86iv7CpqymzVE8uGYwxBjkVzA8KWGsyfsDHAMc/8=
Subject key identifier: 43:21:5F:B8:98:F6:00:D4:3F:05:95:F3:5C:FB:B8:74:4B:D6:0D:87
Authority key identifier: 46:15:3E:8A:C4:6D:B5:CE:57:4B:A7:E3:9E:87:E8:AF:09:6C:1A:89
Certificate issuer: /CN=46153e8ac46db5ce574ba7e39e87e8af096c1a89
Certificate serial: 0196767A521D6F9F60D89AE92E1C79BFEB30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft
Manifest number: 03E7
Signing time: Sun 27 Apr 2025 09:00:49 +0000
Manifest this update: Sun 27 Apr 2025 09:00:49 +0000
Manifest next update: Mon 28 Apr 2025 09:00:49 +0000
Files and hashes: 1: RhU-isRttc5XS6fjnoforwlsGok.crl (hash: YIdJJYQ/y//O9mwnVJZv/pllEXQ3nc/WmAO8WKdHcnA=)
2: yOFjl_Pxx0Rc441XIFCRbQAh0C8.roa (hash: xKAfXgoPQJ/4slkyXjKOtsYsgtyUmgpiHM6n61mT42s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft
rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:52:1d:6f:9f:60:d8:9a:e9:2e:1c:79:bf:eb:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46153e8ac46db5ce574ba7e39e87e8af096c1a89
Validity
Not Before: Apr 27 09:00:49 2025 GMT
Not After : Apr 28 09:00:49 2025 GMT
Subject: CN=43215fb898f600d43f0595f35cfbb8744bd60d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1f:d7:b5:ef:c5:ce:94:5e:5e:ac:30:84:c6:
d5:fb:e2:bd:5a:e0:4f:60:2b:b8:fa:ed:f3:a0:93:
0b:79:05:3e:f1:8f:d7:2b:49:6e:58:45:d3:1a:71:
56:20:86:de:81:f0:e1:66:37:ca:5c:6b:24:c3:7d:
76:2a:89:a9:eb:2d:4e:ed:47:45:6e:33:06:d8:3f:
94:14:7f:82:d8:ec:aa:e9:ac:14:88:42:15:c7:46:
82:ce:dd:b1:4c:4f:45:b1:c5:87:5e:fd:1c:1f:c3:
2a:b9:8f:31:23:ee:fb:08:d7:a2:99:b0:13:65:07:
2c:48:ef:02:46:7a:0c:20:8c:0b:ab:b2:e0:f6:70:
f0:8c:50:b3:f6:b3:f7:00:93:f1:e5:8f:71:1f:df:
80:f4:f6:98:06:84:e0:10:10:25:5f:41:57:02:3d:
73:7c:8c:6e:6b:9d:48:35:92:8c:16:50:c4:05:92:
d7:e1:25:96:5f:97:7c:ba:fe:0e:1b:fd:6f:aa:3d:
b8:67:de:53:5a:8a:70:1f:8d:6e:89:62:0c:59:89:
53:64:58:3a:18:a6:b0:a5:2c:56:09:0a:f6:d0:f0:
62:a4:86:10:98:23:a7:0a:e0:a7:47:77:07:a1:50:
4f:ce:9c:21:53:51:d5:e3:51:3c:53:78:c3:ab:67:
72:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:21:5F:B8:98:F6:00:D4:3F:05:95:F3:5C:FB:B8:74:4B:D6:0D:87
X509v3 Authority Key Identifier:
keyid:46:15:3E:8A:C4:6D:B5:CE:57:4B:A7:E3:9E:87:E8:AF:09:6C:1A:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:02:59:fa:6d:70:8c:df:2f:ae:48:d3:2d:0b:24:94:61:6f:
81:ec:f8:72:85:bf:9f:34:97:c0:ca:38:13:01:83:37:ea:26:
fe:50:04:60:a0:fe:56:41:e1:55:ad:1c:b7:20:1d:86:f4:e0:
63:cf:45:3b:ce:2d:c1:05:97:04:ab:28:21:87:bb:8f:bd:7a:
61:05:11:92:9b:3b:6c:66:ae:a5:82:9f:89:fe:ee:b4:52:87:
e1:2e:90:0a:a6:4e:04:ce:4c:ad:d7:43:a3:ed:4f:57:5e:ff:
2d:a6:22:27:68:87:60:f9:cf:e5:6d:fb:3c:45:a5:bf:0d:d4:
52:bf:22:b2:1c:e6:1b:3d:25:65:07:2d:69:e6:67:b3:48:f9:
2a:e7:0c:ce:80:25:cd:f2:9e:d7:c3:58:87:ab:7d:b9:2b:f3:
d5:03:1d:bd:7a:b6:9d:5f:71:9b:32:c0:45:b3:a3:5b:43:3b:
55:f6:9e:e3:81:04:04:01:28:ca:41:f8:4a:00:7f:dd:0d:72:
35:2b:f4:71:f2:b0:e8:b3:a9:78:28:63:8f:aa:3b:5d:87:e8:
44:fb:93:75:94:3b:d9:02:38:ea:b8:f0:64:b2:18:75:a2:6a:
7e:13:12:19:69:24:70:5c:fc:24:97:a2:33:fe:76:0c:c5:0b:
34:6c:8c:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2elIdb59g2JrpLhx5v+swMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2MTUzZThhYzQ2ZGI1Y2U1NzRiYTdlMzllODdlOGFmMDk2
YzFhODkwHhcNMjUwNDI3MDkwMDQ5WhcNMjUwNDI4MDkwMDQ5WjAzMTEwLwYDVQQD
Eyg0MzIxNWZiODk4ZjYwMGQ0M2YwNTk1ZjM1Y2ZiYjg3NDRiZDYwZDg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2R/Xte/FzpReXqwwhMbV++K9WuBP
YCu4+u3zoJMLeQU+8Y/XK0luWEXTGnFWIIbegfDhZjfKXGskw312Komp6y1O7UdF
bjMG2D+UFH+C2Oyq6awUiEIVx0aCzt2xTE9FscWHXv0cH8MquY8xI+77CNeimbAT
ZQcsSO8CRnoMIIwLq7Lg9nDwjFCz9rP3AJPx5Y9xH9+A9PaYBoTgEBAlX0FXAj1z
fIxua51INZKMFlDEBZLX4SWWX5d8uv4OG/1vqj24Z95TWopwH41uiWIMWYlTZFg6
GKawpSxWCQr20PBipIYQmCOnCuCnR3cHoVBPzpwhU1HV41E8U3jDq2dy2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEMhX7iY9gDUPwWV81z7uHRL1g2HMB8GA1UdIwQY
MBaAFEYVPorEbbXOV0un456H6K8JbBqJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmhVLWlzUnR0YzVYUzZmam5vZm9yd2xzR29rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8wZDExNzItNGJiMi00OTJjLWI1MTEt
NzhkYzdiMmMzZTg4LzEvUmhVLWlzUnR0YzVYUzZmam5vZm9yd2xzR29rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS8wZDExNzItNGJiMi00OTJjLWI1MTEtNzhkYzdiMmMzZTg4
LzEvUmhVLWlzUnR0YzVYUzZmam5vZm9yd2xzR29rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOAJZ+m1w
jN8vrkjTLQsklGFvgez4coW/nzSXwMo4EwGDN+om/lAEYKD+VkHhVa0ctyAdhvTg
Y89FO84twQWXBKsoIYe7j716YQURkps7bGaupYKfif7utFKH4S6QCqZOBM5MrddD
o+1PV17/LaYiJ2iHYPnP5W37PEWlvw3UUr8ishzmGz0lZQctaeZns0j5KucMzoAl
zfKe18NYh6t9uSvz1QMdvXq2nV9xmzLARbOjW0M7Vfae44EEBAEoykH4SgB/3Q1y
NSv0cfKw6LOpeChjj6o7XYfoRPuTdZQ72QI46rjwZLIYdaJqfhMSGWkkcFz8JJei
M/52DMULNGyM7Q==
-----END CERTIFICATE-----
Generated at Sun Apr 27 16:34:41 2025 by rpki-client