Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft
File: 4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft (raw, json)
Hash identifier: 8UA4YzMyCCIh8D9zxMefd/Sll+mYLctcZTmGPQBP1uE=
Subject key identifier: 41:6B:11:49:CB:98:A2:47:C6:0F:69:32:A4:33:04:7D:5E:25:18:F7
Authority key identifier: E1:90:0E:55:96:C0:83:74:97:F1:18:94:10:B1:ED:22:AC:DB:7E:13
Certificate issuer: /CN=e1900e5596c0837497f1189410b1ed22acdb7e13
Certificate serial: 01968BB8A7525A50A270E349AB76FC11B11A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ZAOVZbAg3SX8RiUELHtIqzbfhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft
Manifest number: 0A34
Signing time: Thu 01 May 2025 12:00:56 +0000
Manifest this update: Thu 01 May 2025 12:00:56 +0000
Manifest next update: Fri 02 May 2025 12:00:56 +0000
Files and hashes: 1: 4ZAOVZbAg3SX8RiUELHtIqzbfhM.crl (hash: tFOU/lYrIkacoGFD7IScEJus8pPBsIWn59Ai2CsTAlo=)
2: 8jfWRZ1NLj1bjkrxzRMG9yYupLo.roa (hash: 89HNIKxmIWfFBZvw0N2AfHWlUXDjHZG4VVH2GueEE+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4ZAOVZbAg3SX8RiUELHtIqzbfhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8b:b8:a7:52:5a:50:a2:70:e3:49:ab:76:fc:11:b1:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1900e5596c0837497f1189410b1ed22acdb7e13
Validity
Not Before: May 1 12:00:56 2025 GMT
Not After : May 2 12:00:56 2025 GMT
Subject: CN=416b1149cb98a247c60f6932a433047d5e2518f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:14:77:77:cc:a0:d6:95:fa:1d:fe:fe:01:29:
8b:1d:ed:fb:c7:2d:7e:c3:d4:f2:60:e3:00:dd:d6:
b9:25:ab:38:4d:8d:6a:27:42:ec:c2:e3:aa:31:34:
6e:02:74:91:64:fc:c0:42:f9:cc:79:73:4c:90:90:
03:f8:1c:26:f6:f9:5d:7f:61:ec:0a:d5:3e:81:bf:
25:48:17:07:88:a1:47:35:41:61:bd:3a:61:e9:74:
29:29:98:ef:10:be:c9:b2:46:91:51:f6:d1:06:29:
55:26:38:79:3a:f8:c5:0e:13:94:48:ff:14:22:07:
3d:39:55:30:dd:af:5d:a1:a3:bc:1a:5e:b0:8f:fd:
5a:a9:b8:fc:bb:37:1f:62:cf:5f:0d:32:1a:a8:9d:
13:35:d9:d6:06:71:e4:07:cf:da:13:d6:98:b8:e4:
7c:c7:3d:b3:8a:36:bf:22:2e:f1:13:6f:8d:45:79:
94:30:2b:3e:ad:71:c2:fd:85:49:75:99:2b:51:43:
dd:56:42:7a:ae:fb:c7:c4:f4:54:19:80:6d:bf:f1:
e1:d6:cb:ee:33:a0:93:d3:39:6f:de:34:85:d1:72:
c0:f5:05:2c:80:39:ca:d8:8a:cd:f1:29:a3:a5:30:
2b:a0:b6:fc:d4:3d:b7:a9:07:cf:05:da:ff:5e:fa:
47:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:6B:11:49:CB:98:A2:47:C6:0F:69:32:A4:33:04:7D:5E:25:18:F7
X509v3 Authority Key Identifier:
keyid:E1:90:0E:55:96:C0:83:74:97:F1:18:94:10:B1:ED:22:AC:DB:7E:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ZAOVZbAg3SX8RiUELHtIqzbfhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/06db38-9886-4d70-8904-27cab0a60264/1/4ZAOVZbAg3SX8RiUELHtIqzbfhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:ad:32:af:a8:d6:5a:0a:54:dc:a4:95:9a:8b:db:12:67:97:
00:24:a1:f7:5c:92:ae:92:f2:59:a2:8d:dd:a5:85:15:25:76:
a1:60:40:b3:7a:ef:73:28:d4:8c:74:4a:cb:63:e1:05:9b:8f:
48:b0:af:f0:84:55:86:de:fd:e0:f2:eb:1d:18:59:a9:55:9d:
cb:af:d3:0a:2d:4d:bc:c7:89:32:8a:83:e0:98:15:81:eb:4d:
8a:29:b1:74:79:f5:83:af:83:ca:b7:7a:86:22:24:b4:7b:15:
d4:19:aa:62:54:e3:de:dc:8c:61:0e:c6:45:96:aa:03:4c:66:
70:3c:33:1a:2a:ec:ad:68:68:d6:24:e2:d5:78:cc:3c:bd:1c:
d9:3c:08:74:80:a9:41:2c:f9:9e:e7:8c:51:90:cf:c4:1e:de:
1a:8f:d9:49:6a:38:3c:54:6e:fb:b4:2f:a8:f6:02:ad:28:e0:
5d:76:62:95:86:3b:0d:ec:f9:e5:8c:b5:da:4f:b8:d6:13:bd:
12:4a:09:6d:19:04:13:f8:ff:5a:0e:69:69:b1:eb:8c:78:f5:
78:bd:00:4f:01:92:35:6c:ff:fd:8c:11:fe:1d:7d:ae:42:02:
c9:0e:0c:51:3a:07:69:03:a1:ae:ed:53:5b:48:0f:c7:7e:39:
4a:45:55:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaLuKdSWlCicONJq3b8EbEaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxOTAwZTU1OTZjMDgzNzQ5N2YxMTg5NDEwYjFlZDIyYWNk
YjdlMTMwHhcNMjUwNTAxMTIwMDU2WhcNMjUwNTAyMTIwMDU2WjAzMTEwLwYDVQQD
Eyg0MTZiMTE0OWNiOThhMjQ3YzYwZjY5MzJhNDMzMDQ3ZDVlMjUxOGY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhR3d8yg1pX6Hf7+ASmLHe37xy1+
w9TyYOMA3da5Jas4TY1qJ0LswuOqMTRuAnSRZPzAQvnMeXNMkJAD+Bwm9vldf2Hs
CtU+gb8lSBcHiKFHNUFhvTph6XQpKZjvEL7JskaRUfbRBilVJjh5OvjFDhOUSP8U
Igc9OVUw3a9doaO8Gl6wj/1aqbj8uzcfYs9fDTIaqJ0TNdnWBnHkB8/aE9aYuOR8
xz2zija/Ii7xE2+NRXmUMCs+rXHC/YVJdZkrUUPdVkJ6rvvHxPRUGYBtv/Hh1svu
M6CT0zlv3jSF0XLA9QUsgDnK2IrN8SmjpTAroLb81D23qQfPBdr/XvpHfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEFrEUnLmKJHxg9pMqQzBH1eJRj3MB8GA1UdIwQY
MBaAFOGQDlWWwIN0l/EYlBCx7SKs234TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFpBT1ZaYkFnM1NYOFJpVUVMSHRJcXpiZmhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8wNmRiMzgtOTg4Ni00ZDcwLTg5MDQt
MjdjYWIwYTYwMjY0LzEvNFpBT1ZaYkFnM1NYOFJpVUVMSHRJcXpiZmhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi8wNmRiMzgtOTg4Ni00ZDcwLTg5MDQtMjdjYWIwYTYwMjY0
LzEvNFpBT1ZaYkFnM1NYOFJpVUVMSHRJcXpiZmhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIK0yr6jW
WgpU3KSVmovbEmeXACSh91ySrpLyWaKN3aWFFSV2oWBAs3rvcyjUjHRKy2PhBZuP
SLCv8IRVht794PLrHRhZqVWdy6/TCi1NvMeJMoqD4JgVgetNiimxdHn1g6+Dyrd6
hiIktHsV1BmqYlTj3tyMYQ7GRZaqA0xmcDwzGirsrWho1iTi1XjMPL0c2TwIdICp
QSz5nueMUZDPxB7eGo/ZSWo4PFRu+7QvqPYCrSjgXXZilYY7Dez55Yy12k+41hO9
EkoJbRkEE/j/Wg5pabHrjHj1eL0ATwGSNWz//YwR/h19rkICyQ4MUToHaQOhru1T
W0gPx345SkVV6Q==
-----END CERTIFICATE-----
Generated at Thu May 1 16:05:05 2025 by rpki-client