Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.mft
File: Fv4NAkzduvhoIpEiFYlxRysky00.mft (raw, json)
Hash identifier: h3WtgqNMSyCrsoglubn1goL3Jbv/jDepeWS2AwTMYOM=
Subject key identifier: 8E:10:72:BD:C9:35:B4:91:2E:DD:90:DF:C9:56:E2:2C:3B:85:CE:D7
Authority key identifier: 16:FE:0D:02:4C:DD:BA:F8:68:22:91:22:15:89:71:47:2B:24:CB:4D
Certificate issuer: /CN=16fe0d024cddbaf868229122158971472b24cb4d
Certificate serial: 019674F99DCF56234D29283FFF62BD196810
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fv4NAkzduvhoIpEiFYlxRysky00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.mft
Manifest number: 150F
Signing time: Sun 27 Apr 2025 02:00:38 +0000
Manifest this update: Sun 27 Apr 2025 02:00:38 +0000
Manifest next update: Mon 28 Apr 2025 02:00:38 +0000
Files and hashes: 1: Fv4NAkzduvhoIpEiFYlxRysky00.crl (hash: 1DZBOHXF7X+MG7OKKuBlrmC808ZfpZMx1TWLolvlWrI=)
2: ThZzWFH5INkQ7ymiA_IBq-KPEM4.roa (hash: dM5mDKUs0Ppdg4qZBmK0UY+RheCcm2hY4o7VfDpWvQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.mft
rsync://rpki.ripe.net/repository/DEFAULT/Fv4NAkzduvhoIpEiFYlxRysky00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:f9:9d:cf:56:23:4d:29:28:3f:ff:62:bd:19:68:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16fe0d024cddbaf868229122158971472b24cb4d
Validity
Not Before: Apr 27 02:00:38 2025 GMT
Not After : Apr 28 02:00:38 2025 GMT
Subject: CN=8e1072bdc935b4912edd90dfc956e22c3b85ced7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:19:f9:41:35:a3:5a:57:b9:de:f8:77:f2:5e:
d2:f0:01:2d:17:84:25:91:44:8f:9c:c8:0b:0d:b5:
32:24:32:90:7d:ab:ff:28:be:a0:86:df:28:0e:90:
df:c1:3d:67:58:1f:b7:86:75:83:5b:2c:a9:04:2f:
a4:d2:c7:8e:8e:b3:c5:69:d8:b5:b3:a9:34:ca:45:
79:0a:53:c8:d1:ad:aa:b6:a5:f5:af:6f:88:d1:20:
52:e1:c2:54:34:9f:bf:ec:9d:85:3d:be:97:58:7b:
df:c5:3a:73:57:34:48:fc:8e:69:19:99:36:c8:34:
50:85:dd:c8:13:f3:32:0e:98:5d:41:8f:7d:19:98:
b6:c7:87:8a:ac:40:04:25:24:d9:b9:73:c9:82:75:
46:b2:41:21:bd:50:ba:82:f8:31:f1:90:99:40:ff:
7f:56:ef:5a:a6:c4:0b:0f:29:da:97:b3:01:bd:cd:
0b:61:0c:6d:09:6c:98:9f:d2:ae:10:e6:d3:b6:bd:
7b:fb:dd:90:0c:65:02:7e:86:fd:96:82:7f:b9:d3:
fd:f2:e6:30:82:c2:43:32:1c:a2:89:41:df:82:66:
73:ea:0a:f1:91:72:53:0a:ee:6d:ad:88:1b:f9:88:
e9:b1:53:d6:79:a5:c2:66:cd:63:ff:79:40:7f:40:
3f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:10:72:BD:C9:35:B4:91:2E:DD:90:DF:C9:56:E2:2C:3B:85:CE:D7
X509v3 Authority Key Identifier:
keyid:16:FE:0D:02:4C:DD:BA:F8:68:22:91:22:15:89:71:47:2B:24:CB:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fv4NAkzduvhoIpEiFYlxRysky00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4616d7-e808-4e47-a646-5b2f90df796d/1/Fv4NAkzduvhoIpEiFYlxRysky00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:59:04:0e:56:3d:4b:86:a3:82:0e:96:6a:53:2d:fe:68:32:
51:76:d1:2e:63:d9:bb:49:f4:f5:ed:5f:af:f1:11:3d:fe:5a:
ca:b4:19:76:83:d7:6b:7b:8f:1a:8c:46:db:e9:b2:aa:57:88:
bd:49:2b:7a:d7:12:c7:f7:98:fd:85:d5:88:9d:45:31:50:12:
a5:f7:7f:66:cd:22:8b:e6:bd:e2:62:a2:72:ed:a4:51:27:1f:
ce:62:df:4c:23:79:b4:cc:ba:eb:a4:eb:87:5f:95:ac:9d:98:
7b:a1:fb:a2:5c:dc:45:27:04:d0:75:a0:35:79:a8:7d:c1:cc:
14:f5:c6:78:fb:2a:93:db:70:50:42:bb:ff:30:f3:e8:2b:57:
a1:f3:1f:37:4f:e8:11:c0:db:25:9a:42:56:aa:5e:22:28:49:
06:5e:84:87:fd:1c:d6:34:b0:ba:a4:ea:4f:c1:e0:22:09:d8:
e5:0c:da:9a:04:9e:2b:b2:84:65:45:ee:6e:07:27:98:9f:90:
58:f8:64:12:2f:e7:13:2b:1d:64:10:a8:c4:f5:09:d9:89:6a:
f9:21:6a:1e:db:9c:ff:f7:62:84:13:e6:9e:c7:d1:93:a7:14:
ec:24:a4:e0:54:a9:e8:8c:9d:f4:91:8b:40:dc:36:dc:eb:c9:
5e:8a:39:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ0+Z3PViNNKSg//2K9GWgQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2ZmUwZDAyNGNkZGJhZjg2ODIyOTEyMjE1ODk3MTQ3MmIy
NGNiNGQwHhcNMjUwNDI3MDIwMDM4WhcNMjUwNDI4MDIwMDM4WjAzMTEwLwYDVQQD
Eyg4ZTEwNzJiZGM5MzViNDkxMmVkZDkwZGZjOTU2ZTIyYzNiODVjZWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+Rn5QTWjWle53vh38l7S8AEtF4Ql
kUSPnMgLDbUyJDKQfav/KL6ght8oDpDfwT1nWB+3hnWDWyypBC+k0seOjrPFadi1
s6k0ykV5ClPI0a2qtqX1r2+I0SBS4cJUNJ+/7J2FPb6XWHvfxTpzVzRI/I5pGZk2
yDRQhd3IE/MyDphdQY99GZi2x4eKrEAEJSTZuXPJgnVGskEhvVC6gvgx8ZCZQP9/
Vu9apsQLDynal7MBvc0LYQxtCWyYn9KuEObTtr17+92QDGUCfob9loJ/udP98uYw
gsJDMhyiiUHfgmZz6grxkXJTCu5trYgb+YjpsVPWeaXCZs1j/3lAf0A/JQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI4Qcr3JNbSRLt2Q38lW4iw7hc7XMB8GA1UdIwQY
MBaAFBb+DQJM3br4aCKRIhWJcUcrJMtNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnY0TkFremR1dmhvSXBFaUZZbHhSeXNreTAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy80NjE2ZDctZTgwOC00ZTQ3LWE2NDYt
NWIyZjkwZGY3OTZkLzEvRnY0TkFremR1dmhvSXBFaUZZbHhSeXNreTAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy80NjE2ZDctZTgwOC00ZTQ3LWE2NDYtNWIyZjkwZGY3OTZk
LzEvRnY0TkFremR1dmhvSXBFaUZZbHhSeXNreTAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALVkEDlY9
S4ajgg6WalMt/mgyUXbRLmPZu0n09e1fr/ERPf5ayrQZdoPXa3uPGoxG2+myqleI
vUkretcSx/eY/YXViJ1FMVASpfd/Zs0ii+a94mKicu2kUScfzmLfTCN5tMy666Tr
h1+VrJ2Ye6H7olzcRScE0HWgNXmofcHMFPXGePsqk9twUEK7/zDz6CtXofMfN0/o
EcDbJZpCVqpeIihJBl6Eh/0c1jSwuqTqT8HgIgnY5QzamgSeK7KEZUXubgcnmJ+Q
WPhkEi/nEysdZBCoxPUJ2Ylq+SFqHtuc//dihBPmnsfRk6cU7CSk4FSp6Iyd9JGL
QNw23OvJXoo5mg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 11:32:53 2025 by rpki-client