Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
File: hyELNM4ALjCgpU-r-ivKxG36cig.mft (raw, json)
Hash identifier: HBuIxHTA1n841M7wAP/ifiWyGVtDaibW5xHNXehM/OA=
Subject key identifier: 94:4A:91:7F:62:50:8E:83:5F:4E:44:B1:82:EE:66:35:65:98:0A:8D
Authority key identifier: 87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28
Certificate issuer: /CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228
Certificate serial: 0196759E5C7D671A5E37971F786FD9037C4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
Manifest number: 032D
Signing time: Sun 27 Apr 2025 05:00:34 +0000
Manifest this update: Sun 27 Apr 2025 05:00:34 +0000
Manifest next update: Mon 28 Apr 2025 05:00:34 +0000
Files and hashes: 1: Oi0Mexif2IU5YWgRrWRDGcE4Aw4.roa (hash: hcI8ATUfRYduE8yCuLSr8RsjKUn++KtzCI3lWbIhr1A=)
2: RNEIzNGbtOLDhiuIlbx5LtZxiHA.roa (hash: YH3jUp9Z5jmgiTgvLayfiplIuhfqDKTG69/LcYMXnX0=)
3: hyELNM4ALjCgpU-r-ivKxG36cig.crl (hash: mxmVNTLqfPzVawFpn+8W4xdebJkpa1QIuDVoDzpcAU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:5c:7d:67:1a:5e:37:97:1f:78:6f:d9:03:7c:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228
Validity
Not Before: Apr 27 05:00:34 2025 GMT
Not After : Apr 28 05:00:34 2025 GMT
Subject: CN=944a917f62508e835f4e44b182ee663565980a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9d:f2:d4:58:4a:5c:5b:b0:c2:e2:c2:04:bd:
f1:9d:f3:76:96:29:90:4d:3c:09:02:0c:d8:f4:b4:
e8:13:ba:54:da:95:bd:e1:dd:e3:39:e6:dd:a0:67:
ba:c0:78:5b:25:c7:df:66:f1:8b:0e:32:80:6c:fc:
dc:a8:9d:0d:e1:81:86:af:19:38:09:6f:af:01:4c:
c8:4b:6e:b0:a0:df:63:57:bd:cd:3c:bb:eb:93:29:
b0:1d:63:86:00:ac:d1:a3:d5:fd:02:c5:8a:79:f5:
c1:4d:6f:76:d3:93:8e:30:7f:4b:ea:83:63:be:57:
2b:c9:82:56:20:4e:fc:fe:0e:1e:43:ff:6d:fe:37:
c4:18:36:23:dd:f1:1f:47:26:8a:a7:17:ec:68:ce:
e0:fa:d9:52:1e:e1:0a:16:19:6b:72:c8:3f:97:ae:
9d:20:97:ec:63:01:d5:3e:fd:5f:80:49:6d:14:78:
2f:bc:be:f8:1f:38:bd:9d:53:fe:7d:f4:7e:46:90:
9f:45:55:78:99:5a:5d:ed:57:c6:68:c1:52:b7:02:
07:dd:ce:31:f1:b1:f5:f8:7a:be:ca:81:16:2b:d3:
28:79:b7:93:6f:04:4b:bd:bd:6e:e0:99:fc:eb:1e:
14:6f:b7:92:af:be:7c:f0:2b:ac:50:f0:8b:03:19:
44:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:4A:91:7F:62:50:8E:83:5F:4E:44:B1:82:EE:66:35:65:98:0A:8D
X509v3 Authority Key Identifier:
keyid:87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:a6:8e:f4:d5:e1:69:b8:3a:ad:ce:a2:85:08:03:90:db:63:
01:83:6b:ce:a0:be:7a:3e:0f:39:95:8f:87:f6:69:87:74:11:
22:c8:99:b2:b7:71:2c:96:06:58:3a:73:e1:a3:c7:54:98:2c:
3f:1a:3c:51:7f:e3:66:da:ff:59:ab:8d:ce:fc:49:c8:a0:74:
6a:e4:e0:d7:b8:bc:a9:73:b7:47:9b:80:c7:3c:e7:e3:59:df:
6f:5e:01:bb:dd:ec:01:78:5c:94:2f:b8:9c:af:5b:6f:dd:dd:
12:31:9f:82:15:50:d4:e8:7d:cd:d1:9a:31:52:12:56:e6:58:
25:fc:16:ce:8c:eb:48:78:2a:2b:6d:75:37:9b:d7:5f:a5:c2:
ae:b2:c7:84:97:4a:0d:b3:57:2b:81:2c:b7:44:73:70:d1:14:
36:5e:41:cc:9d:c4:8e:bc:41:3c:da:31:f3:42:11:9e:1e:b3:
54:9e:c8:9e:7b:95:8f:01:0e:a9:a0:d6:42:21:89:3b:52:7e:
55:0d:48:3f:ca:24:e2:6d:5a:87:d6:7d:ae:e5:68:d0:bc:dc:
4a:42:51:94:22:c2:5b:16:c2:df:e3:7d:24:a4:31:11:20:96:
ea:82:74:87:0c:d2:fb:b4:c5:38:e8:f0:c3:bb:20:79:59:40:
9d:7f:ec:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ1nlx9ZxpeN5cfeG/ZA3xNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MjEwYjM0Y2UwMDJlMzBhMGE1NGZhYmZhMmJjYWM0NmRm
YTcyMjgwHhcNMjUwNDI3MDUwMDM0WhcNMjUwNDI4MDUwMDM0WjAzMTEwLwYDVQQD
Eyg5NDRhOTE3ZjYyNTA4ZTgzNWY0ZTQ0YjE4MmVlNjYzNTY1OTgwYThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv53y1FhKXFuwwuLCBL3xnfN2limQ
TTwJAgzY9LToE7pU2pW94d3jOebdoGe6wHhbJcffZvGLDjKAbPzcqJ0N4YGGrxk4
CW+vAUzIS26woN9jV73NPLvrkymwHWOGAKzRo9X9AsWKefXBTW9205OOMH9L6oNj
vlcryYJWIE78/g4eQ/9t/jfEGDYj3fEfRyaKpxfsaM7g+tlSHuEKFhlrcsg/l66d
IJfsYwHVPv1fgEltFHgvvL74Hzi9nVP+ffR+RpCfRVV4mVpd7VfGaMFStwIH3c4x
8bH1+Hq+yoEWK9MoebeTbwRLvb1u4Jn86x4Ub7eSr7588CusUPCLAxlE/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJRKkX9iUI6DX05EsYLuZjVlmAqNMB8GA1UdIwQY
MBaAFIchCzTOAC4woKVPq/orysRt+nIoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHlFTE5NNEFMakNncFUtci1pdkt4RzM2Y2lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS8yOWEwZGMtMjBhZi00MzdlLTk4NzAt
MzY2OWQxYjU2OWQ2LzEvaHlFTE5NNEFMakNncFUtci1pdkt4RzM2Y2lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS8yOWEwZGMtMjBhZi00MzdlLTk4NzAtMzY2OWQxYjU2OWQ2
LzEvaHlFTE5NNEFMakNncFUtci1pdkt4RzM2Y2lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjqaO9NXh
abg6rc6ihQgDkNtjAYNrzqC+ej4POZWPh/Zph3QRIsiZsrdxLJYGWDpz4aPHVJgs
Pxo8UX/jZtr/WauNzvxJyKB0auTg17i8qXO3R5uAxzzn41nfb14Bu93sAXhclC+4
nK9bb93dEjGfghVQ1Oh9zdGaMVISVuZYJfwWzozrSHgqK211N5vXX6XCrrLHhJdK
DbNXK4Est0RzcNEUNl5BzJ3EjrxBPNox80IRnh6zVJ7InnuVjwEOqaDWQiGJO1J+
VQ1IP8ok4m1ah9Z9ruVo0LzcSkJRlCLCWxbC3+N9JKQxESCW6oJ0hwzS+7TFOOjw
w7sgeVlAnX/sMw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 12:17:29 2025 by rpki-client