Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
File: hTodtQq3cdy1KTZ92VGmfKzEhSc.mft (raw, json)
Hash identifier: VWd1NJiLyILhfqNGDCw6yq0lU61Qw7PaXZ5BPoPsYjM=
Subject key identifier: E5:23:86:45:81:5C:88:F6:A5:30:B8:3F:1F:66:25:74:14:AF:1B:FA
Authority key identifier: 85:3A:1D:B5:0A:B7:71:DC:B5:29:36:7D:D9:51:A6:7C:AC:C4:85:27
Certificate issuer: /CN=853a1db50ab771dcb529367dd951a67cacc48527
Certificate serial: 019674F9C07961FE54F2A88F33C1E2C1B632
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
Manifest number: 150D
Signing time: Sun 27 Apr 2025 02:00:46 +0000
Manifest this update: Sun 27 Apr 2025 02:00:46 +0000
Manifest next update: Mon 28 Apr 2025 02:00:46 +0000
Files and hashes: 1: KFxs769oKYSlN9E-IJj7uVI5-Jk.roa (hash: oeJ8lNpcZ8slOJ+v6lew9m45/w6Rj6vHO1zS6reB6dA=)
2: hTodtQq3cdy1KTZ92VGmfKzEhSc.crl (hash: N0X9bARAXDL1cvnGiyQg+4zq/DwcllfxXzHEnwB/OVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:f9:c0:79:61:fe:54:f2:a8:8f:33:c1:e2:c1:b6:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=853a1db50ab771dcb529367dd951a67cacc48527
Validity
Not Before: Apr 27 02:00:46 2025 GMT
Not After : Apr 28 02:00:46 2025 GMT
Subject: CN=e5238645815c88f6a530b83f1f66257414af1bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d4:56:8a:d6:96:de:fd:4c:b4:6d:12:1b:d7:
10:13:04:2d:5a:1d:51:ff:39:dd:df:8a:01:00:2f:
87:6c:fe:8c:fa:61:e1:84:fb:07:e4:43:6f:75:c4:
db:72:09:07:64:14:a7:a8:3c:88:3e:58:25:10:35:
3b:53:73:fa:26:5e:b8:15:d6:03:c9:17:89:a7:e7:
b1:78:7b:11:ef:0d:df:8d:9e:81:bc:6a:47:bc:c4:
74:31:78:92:58:17:df:8d:be:fe:1f:b9:fe:9b:fb:
0f:3f:ce:ec:85:3d:93:bf:40:ba:57:32:81:ed:22:
96:2b:5f:5c:cb:fa:d1:43:69:4d:50:51:ec:1a:3a:
27:98:0b:4a:e2:d6:dd:aa:d2:12:ee:d9:e7:7f:b6:
d5:8e:b2:4e:4b:09:65:7d:0a:39:2c:e4:f4:42:36:
97:80:5d:a6:64:e7:b6:ba:2d:f3:56:2b:b1:50:3a:
56:db:47:28:e8:33:ee:56:26:ad:05:46:f8:8e:98:
86:d4:b5:9c:a1:92:1d:dc:3e:8b:bb:81:6c:7f:78:
0f:74:e6:4c:ac:aa:f5:81:c5:06:0c:f1:b0:b5:e2:
5d:c4:0e:8e:99:91:17:ab:9c:78:c7:43:f2:12:1d:
2f:c0:df:e7:0d:bf:77:b3:47:e3:ac:11:12:bc:98:
1f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:23:86:45:81:5C:88:F6:A5:30:B8:3F:1F:66:25:74:14:AF:1B:FA
X509v3 Authority Key Identifier:
keyid:85:3A:1D:B5:0A:B7:71:DC:B5:29:36:7D:D9:51:A6:7C:AC:C4:85:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:60:39:0e:e1:d4:5a:54:b4:63:b6:78:a0:c6:1d:f9:7f:ad:
47:64:9c:bb:02:e9:bb:d1:9e:4b:6b:29:33:fb:11:ae:9d:02:
c9:29:06:99:b0:b0:8b:aa:18:90:95:14:d3:27:df:b9:be:0d:
9f:4c:ca:9c:51:90:82:37:d2:8e:af:37:2a:fb:6c:ef:a6:4c:
17:79:72:bd:e8:58:10:b7:15:60:f5:8d:d4:4d:dc:a3:57:51:
43:d3:b1:2b:8c:21:ae:72:a9:71:8c:0f:39:6f:c0:7e:21:7c:
e5:3d:70:6d:6f:ee:c0:79:d9:07:e2:95:30:b0:a7:e8:b3:29:
ee:04:d6:39:e3:e1:2d:1f:ad:ae:97:e1:d4:6b:76:b8:a1:a9:
34:16:84:dd:1d:b6:28:95:e1:ee:43:2f:6b:30:ed:94:3b:32:
c6:19:02:49:d5:73:8b:f5:3a:92:35:b3:29:68:4c:52:3b:b5:
c6:20:43:b2:3a:bc:3c:5d:19:8e:b4:aa:48:d6:fb:00:cd:4f:
72:af:2d:b6:12:5f:c8:bc:75:76:36:74:e1:8d:ef:13:e5:b5:
f6:f8:34:a1:67:c3:25:0f:69:f4:89:26:d9:de:94:9d:43:b8:
f1:5d:c2:4d:0b:44:e6:f3:3b:bc:e0:a4:94:10:52:6b:fd:72:
52:67:ba:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ0+cB5Yf5U8qiPM8HiwbYyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1M2ExZGI1MGFiNzcxZGNiNTI5MzY3ZGQ5NTFhNjdjYWNj
NDg1MjcwHhcNMjUwNDI3MDIwMDQ2WhcNMjUwNDI4MDIwMDQ2WjAzMTEwLwYDVQQD
EyhlNTIzODY0NTgxNWM4OGY2YTUzMGI4M2YxZjY2MjU3NDE0YWYxYmZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAotRWitaW3v1MtG0SG9cQEwQtWh1R
/znd34oBAC+HbP6M+mHhhPsH5ENvdcTbcgkHZBSnqDyIPlglEDU7U3P6Jl64FdYD
yReJp+exeHsR7w3fjZ6BvGpHvMR0MXiSWBffjb7+H7n+m/sPP87shT2Tv0C6VzKB
7SKWK19cy/rRQ2lNUFHsGjonmAtK4tbdqtIS7tnnf7bVjrJOSwllfQo5LOT0QjaX
gF2mZOe2ui3zViuxUDpW20co6DPuViatBUb4jpiG1LWcoZId3D6Lu4Fsf3gPdOZM
rKr1gcUGDPGwteJdxA6OmZEXq5x4x0PyEh0vwN/nDb93s0fjrBESvJgf9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOUjhkWBXIj2pTC4Px9mJXQUrxv6MB8GA1UdIwQY
MBaAFIU6HbUKt3HctSk2fdlRpnysxIUnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFRvZHRRcTNjZHkxS1RaOTJWR21mS3pFaFNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9kYzY2ZjMtOGFjOS00MWI5LThlYjgt
NzcyOTVjOWNlODY2LzEvaFRvZHRRcTNjZHkxS1RaOTJWR21mS3pFaFNjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS9kYzY2ZjMtOGFjOS00MWI5LThlYjgtNzcyOTVjOWNlODY2
LzEvaFRvZHRRcTNjZHkxS1RaOTJWR21mS3pFaFNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiGA5DuHU
WlS0Y7Z4oMYd+X+tR2ScuwLpu9GeS2spM/sRrp0CySkGmbCwi6oYkJUU0yffub4N
n0zKnFGQgjfSjq83Kvts76ZMF3lyvehYELcVYPWN1E3co1dRQ9OxK4whrnKpcYwP
OW/AfiF85T1wbW/uwHnZB+KVMLCn6LMp7gTWOePhLR+trpfh1Gt2uKGpNBaE3R22
KJXh7kMvazDtlDsyxhkCSdVzi/U6kjWzKWhMUju1xiBDsjq8PF0ZjrSqSNb7AM1P
cq8tthJfyLx1djZ04Y3vE+W19vg0oWfDJQ9p9Ikm2d6UnUO48V3CTQtE5vM7vOCk
lBBSa/1yUme6Fw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 06:31:28 2025 by rpki-client