Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: kg5Wo8u9Jwv3Q0C5gOsfh9OvovV0/hqnm02ugI4q4Lc=
Subject key identifier: 50:AB:40:49:CE:87:40:3B:E6:FF:A9:65:6B:73:5D:A1:AB:76:05:56
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 01967AC4923F35F092BC1694C4FDF0C04356
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 0262
Signing time: Mon 28 Apr 2025 05:00:24 +0000
Manifest this update: Mon 28 Apr 2025 05:00:24 +0000
Manifest next update: Tue 29 Apr 2025 05:00:24 +0000
Files and hashes: 1: 0nvhqw7aFiUkSIOiOEerDMnQ_ZQ.roa (hash: HMe62SGaPYEENwRxXbOtER7G/ZP8W5TpI/QjfFDw0sg=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: JX2Vm/COw/KLnR81KjZs2aYij0Mk3E2ssdEhCW3wQ/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:c4:92:3f:35:f0:92:bc:16:94:c4:fd:f0:c0:43:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Apr 28 05:00:24 2025 GMT
Not After : Apr 29 05:00:24 2025 GMT
Subject: CN=50ab4049ce87403be6ffa9656b735da1ab760556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:78:3b:e8:af:a0:c9:77:fa:6b:b8:70:f1:d0:
30:57:c1:3f:01:6b:48:a7:42:b0:3f:8e:21:f2:af:
27:70:16:40:6f:40:42:c2:69:26:73:2a:24:bd:ee:
23:ee:05:bb:f0:9f:6e:12:cc:be:a7:e0:20:e7:70:
62:c7:e5:b1:81:06:2b:bf:75:f6:42:d7:ec:59:34:
c2:a2:e6:c7:5f:3a:f7:72:2b:aa:e6:df:6d:24:2b:
2a:6b:36:ae:d1:ff:18:df:c8:49:2a:52:c8:78:54:
c6:72:f4:cf:f0:7e:d1:b1:6c:ff:45:4e:9e:59:d1:
ed:e0:7c:d0:2d:b1:b9:50:7c:b9:83:26:de:fe:2a:
a0:af:0c:3d:d1:14:82:91:b6:f1:f1:be:18:19:aa:
c0:4a:aa:28:8d:24:ec:f8:f4:81:47:91:d8:2a:46:
7b:c5:a3:0c:01:b0:47:29:c0:8d:3f:a4:72:b5:0a:
b9:60:3f:14:61:bd:98:33:d5:ef:1a:9e:94:e4:04:
3e:db:e2:ad:b1:ca:8d:ae:89:64:6f:5d:41:9a:2d:
ed:71:64:ed:cd:f5:d5:29:33:16:48:bb:af:d3:d6:
4e:c3:5c:36:37:a6:a1:3a:b4:3b:8c:da:d7:f6:53:
92:08:a4:f0:91:b2:29:2a:55:b8:0f:d3:a7:80:08:
63:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:AB:40:49:CE:87:40:3B:E6:FF:A9:65:6B:73:5D:A1:AB:76:05:56
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:5c:03:c2:ef:33:b9:3e:23:52:3e:df:26:1b:2e:ee:ae:48:
07:a7:9c:7e:f7:88:0b:7b:a4:11:85:49:5b:fd:83:c3:5e:23:
71:2e:97:a8:26:88:73:dc:ff:16:54:f8:ad:dc:00:83:bd:31:
e8:dc:d7:3a:98:1b:13:be:e3:fd:6d:c4:2c:40:23:7a:8c:ce:
01:21:86:a4:2c:58:a4:5d:8b:d1:24:36:9c:80:b3:a6:84:9d:
a2:b9:6f:ed:c1:f9:ed:d1:1a:d3:77:6c:80:a9:65:0d:fb:07:
10:5e:25:1d:cd:f7:d5:7f:98:24:ee:6f:e4:42:25:96:ed:69:
ae:62:23:57:44:ed:db:ac:93:16:8a:0f:94:62:e9:b1:bc:fe:
cf:bb:ba:4a:bd:7c:7a:71:36:ce:ec:64:1d:95:32:f6:a5:2e:
41:1a:0b:f7:80:ed:61:26:1f:a0:ab:cb:aa:bd:5a:d3:7b:1b:
bb:ac:67:ae:bc:f9:f8:de:fc:85:c4:85:dc:e3:05:dd:00:ad:
4b:60:3a:7f:ed:27:b2:65:af:b8:47:aa:b9:38:6c:f0:67:df:
35:f7:fd:95:88:67:f5:f3:7e:a7:9b:d1:3f:a4:75:6e:93:10:
5e:7c:8a:b9:ba:92:18:fb:ff:16:09:e5:0a:d3:ac:92:43:e0:
b2:3d:13:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ6xJI/NfCSvBaUxP3wwENWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1Njg0MDcwNDdhNjJlNjQ4MzAwYzUxODJhMjkzNTNmZjU4
ZWIwNWYwHhcNMjUwNDI4MDUwMDI0WhcNMjUwNDI5MDUwMDI0WjAzMTEwLwYDVQQD
Eyg1MGFiNDA0OWNlODc0MDNiZTZmZmE5NjU2YjczNWRhMWFiNzYwNTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkHg76K+gyXf6a7hw8dAwV8E/AWtI
p0KwP44h8q8ncBZAb0BCwmkmcyokve4j7gW78J9uEsy+p+Ag53Bix+WxgQYrv3X2
QtfsWTTCoubHXzr3ciuq5t9tJCsqazau0f8Y38hJKlLIeFTGcvTP8H7RsWz/RU6e
WdHt4HzQLbG5UHy5gybe/iqgrww90RSCkbbx8b4YGarASqoojSTs+PSBR5HYKkZ7
xaMMAbBHKcCNP6RytQq5YD8UYb2YM9XvGp6U5AQ+2+KtscqNrolkb11Bmi3tcWTt
zfXVKTMWSLuv09ZOw1w2N6ahOrQ7jNrX9lOSCKTwkbIpKlW4D9OngAhj4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFCrQEnOh0A75v+pZWtzXaGrdgVWMB8GA1UdIwQY
MBaAFIVoQHBHpi5kgwDFGCopNT/1jrBfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFdoQWNFZW1MbVNEQU1VWUtpazFQX1dPc0Y4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8zMjAzOTUtNzBjMC00MDAyLWEzNjIt
ZWQzZTk4YzY1NmUxLzEvaFdoQWNFZW1MbVNEQU1VWUtpazFQX1dPc0Y4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS8zMjAzOTUtNzBjMC00MDAyLWEzNjItZWQzZTk4YzY1NmUx
LzEvaFdoQWNFZW1MbVNEQU1VWUtpazFQX1dPc0Y4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVlwDwu8z
uT4jUj7fJhsu7q5IB6ecfveIC3ukEYVJW/2Dw14jcS6XqCaIc9z/FlT4rdwAg70x
6NzXOpgbE77j/W3ELEAjeozOASGGpCxYpF2L0SQ2nICzpoSdorlv7cH57dEa03ds
gKllDfsHEF4lHc331X+YJO5v5EIllu1prmIjV0Tt26yTFooPlGLpsbz+z7u6Sr18
enE2zuxkHZUy9qUuQRoL94DtYSYfoKvLqr1a03sbu6xnrrz5+N78hcSF3OMF3QCt
S2A6f+0nsmWvuEequThs8GffNff9lYhn9fN+p5vRP6R1bpMQXnyKubqSGPv/Fgnl
CtOskkPgsj0T2Q==
-----END CERTIFICATE-----
Generated at Mon Apr 28 07:10:29 2025 by rpki-client