Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
File: S2HMijZcxAOCox2tVPbLcj9YdYo.mft (raw, json)
Hash identifier: E87/Z294dUH68r1hYhrFze51jB36ldDZRzsAgPtEFA0=
Subject key identifier: 86:6E:A1:C7:0C:4E:6A:73:33:6F:FB:E2:B8:22:5B:E8:70:4E:A0:9F
Authority key identifier: 4B:61:CC:8A:36:5C:C4:03:82:A3:1D:AD:54:F6:CB:72:3F:58:75:8A
Certificate issuer: /CN=4b61cc8a365cc40382a31dad54f6cb723f58758a
Certificate serial: 019683FF9E5DD9F8AA4DEDDBD165EAF8C321
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
Manifest number: 1517
Signing time: Wed 30 Apr 2025 00:01:29 +0000
Manifest this update: Wed 30 Apr 2025 00:01:29 +0000
Manifest next update: Thu 01 May 2025 00:01:29 +0000
Files and hashes: 1: 5dOeHmReGHpglp9CPLficnPxbRA.roa (hash: u/adm8/lzLOzXE337fHeCi8QttPIgGUNVZ/GPwCUh0o=)
2: S2HMijZcxAOCox2tVPbLcj9YdYo.crl (hash: fNS8N6Z8IexNMsRLOiUdbeLCe/8imcGqo1yVFpbKS60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:ff:9e:5d:d9:f8:aa:4d:ed:db:d1:65:ea:f8:c3:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b61cc8a365cc40382a31dad54f6cb723f58758a
Validity
Not Before: Apr 30 00:01:29 2025 GMT
Not After : May 1 00:01:29 2025 GMT
Subject: CN=866ea1c70c4e6a73336ffbe2b8225be8704ea09f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0f:12:d1:2e:48:13:11:31:7c:81:84:7d:cf:
2a:65:57:c3:69:92:14:a6:76:eb:20:be:0e:65:18:
35:f6:4d:8a:2e:2a:c7:ed:42:65:6c:a9:14:c4:5b:
e1:12:47:d5:9c:94:eb:2e:01:f7:b5:86:ed:95:be:
eb:d8:29:a0:fa:9d:91:97:cf:4c:d5:0e:f5:35:ff:
b8:22:60:0e:60:bb:a1:66:52:ce:cc:fd:b8:88:0c:
11:98:72:64:b2:dd:c4:47:f7:1f:66:0f:13:1f:d9:
95:ec:d9:05:76:7c:23:43:bf:de:ff:81:21:a2:28:
6b:8f:9a:b6:b7:ef:0e:7a:20:bd:41:6e:fa:ed:7b:
56:24:34:01:ad:87:c2:de:99:9d:96:32:0b:06:4c:
5f:9d:9c:4e:b7:eb:40:20:22:ef:c4:1d:7d:80:7f:
d3:84:f5:eb:5d:37:36:a3:71:6f:71:2b:75:98:8a:
11:70:cb:08:81:02:83:6d:3f:96:50:ec:50:7b:46:
b7:8f:6f:6c:9a:b1:ab:a6:3b:a6:91:21:4a:9a:87:
89:a1:13:f0:dc:05:ff:bc:48:28:7a:23:29:ee:4a:
c7:e4:22:01:d0:1d:75:9a:47:94:21:b1:e6:b1:9b:
ca:18:f0:ee:0e:3c:87:8c:06:bd:81:7b:e8:89:bb:
3a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:6E:A1:C7:0C:4E:6A:73:33:6F:FB:E2:B8:22:5B:E8:70:4E:A0:9F
X509v3 Authority Key Identifier:
keyid:4B:61:CC:8A:36:5C:C4:03:82:A3:1D:AD:54:F6:CB:72:3F:58:75:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:d1:8b:98:5b:47:90:df:14:0c:58:82:c7:f5:13:33:aa:f2:
24:23:c2:09:df:f0:17:54:c2:f1:07:fd:eb:5d:fc:98:85:38:
12:a3:44:38:9b:a6:2f:e5:6c:bb:c7:8e:a9:99:2a:e7:7e:5d:
e1:33:59:03:e1:7e:7d:b4:65:4a:59:23:31:f8:09:ac:64:d2:
40:07:99:2d:fb:db:ef:a8:9d:38:29:03:a6:cd:c9:08:07:d9:
dd:1a:b4:b5:9c:34:97:27:23:4e:82:ca:a2:c8:86:ad:05:11:
07:62:3e:94:de:0f:4e:fa:15:14:1a:18:2c:84:13:5c:e1:66:
58:68:4b:4f:dd:64:26:52:0e:ef:4e:85:66:43:f7:89:8c:9c:
f3:c9:1b:04:2f:87:00:fe:75:91:58:95:78:fa:55:96:ea:1c:
92:18:ee:4d:1f:4c:a4:ae:04:9c:05:1e:c6:6c:66:2e:32:86:
73:cc:8a:26:2d:3e:e1:1d:b0:51:dd:45:c0:08:01:d6:61:18:
a8:45:ab:6c:bf:dd:b4:e8:78:62:55:7c:95:d5:a1:1a:8d:3c:
1e:6a:72:13:cc:d0:b1:03:56:79:da:b7:34:fe:fb:70:9a:6b:
ec:0b:1c:a1:3a:a7:d1:dd:0f:6a:f2:29:43:57:7e:9c:07:a1:
05:1c:68:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaD/55d2fiqTe3b0WXq+MMhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiNjFjYzhhMzY1Y2M0MDM4MmEzMWRhZDU0ZjZjYjcyM2Y1
ODc1OGEwHhcNMjUwNDMwMDAwMTI5WhcNMjUwNTAxMDAwMTI5WjAzMTEwLwYDVQQD
Eyg4NjZlYTFjNzBjNGU2YTczMzM2ZmZiZTJiODIyNWJlODcwNGVhMDlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvw8S0S5IExExfIGEfc8qZVfDaZIU
pnbrIL4OZRg19k2KLirH7UJlbKkUxFvhEkfVnJTrLgH3tYbtlb7r2Cmg+p2Rl89M
1Q71Nf+4ImAOYLuhZlLOzP24iAwRmHJkst3ER/cfZg8TH9mV7NkFdnwjQ7/e/4Eh
oihrj5q2t+8OeiC9QW767XtWJDQBrYfC3pmdljILBkxfnZxOt+tAICLvxB19gH/T
hPXrXTc2o3FvcSt1mIoRcMsIgQKDbT+WUOxQe0a3j29smrGrpjumkSFKmoeJoRPw
3AX/vEgoeiMp7krH5CIB0B11mkeUIbHmsZvKGPDuDjyHjAa9gXvoibs6GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIZuoccMTmpzM2/74rgiW+hwTqCfMB8GA1UdIwQY
MBaAFEthzIo2XMQDgqMdrVT2y3I/WHWKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzJITWlqWmN4QU9Db3gydFZQYkxjajlZZFlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi82YjllYzAtOWIxMC00NDQzLWI1ZTYt
YzRmZDUzZWJlYjY3LzEvUzJITWlqWmN4QU9Db3gydFZQYkxjajlZZFlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi82YjllYzAtOWIxMC00NDQzLWI1ZTYtYzRmZDUzZWJlYjY3
LzEvUzJITWlqWmN4QU9Db3gydFZQYkxjajlZZFlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYNGLmFtH
kN8UDFiCx/UTM6ryJCPCCd/wF1TC8Qf96138mIU4EqNEOJumL+Vsu8eOqZkq535d
4TNZA+F+fbRlSlkjMfgJrGTSQAeZLfvb76idOCkDps3JCAfZ3Rq0tZw0lycjToLK
osiGrQURB2I+lN4PTvoVFBoYLIQTXOFmWGhLT91kJlIO706FZkP3iYyc88kbBC+H
AP51kViVePpVluockhjuTR9MpK4EnAUexmxmLjKGc8yKJi0+4R2wUd1FwAgB1mEY
qEWrbL/dtOh4YlV8ldWhGo08HmpyE8zQsQNWedq3NP77cJpr7AscoTqn0d0PavIp
Q1d+nAehBRxoLA==
-----END CERTIFICATE-----
Generated at Wed Apr 30 02:53:14 2025 by rpki-client