Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
File: H2fPHKLeoy_NlwLdJRDra_K2hhA.mft (raw, json)
Hash identifier: AW7D7PYEK+R6+3k1oBattYnCdfZxsPSz3wn5U0eFtls=
Subject key identifier: 3B:62:BD:BC:11:11:5E:40:DD:AB:07:E6:E4:38:74:A6:D8:91:CA:97
Authority key identifier: 1F:67:CF:1C:A2:DE:A3:2F:CD:97:02:DD:25:10:EB:6B:F2:B6:86:10
Certificate issuer: /CN=1f67cf1ca2dea32fcd9702dd2510eb6bf2b68610
Certificate serial: 019676434B1DD8DACE10BF68245D2A6980DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
Manifest number: 04B1
Signing time: Sun 27 Apr 2025 08:00:43 +0000
Manifest this update: Sun 27 Apr 2025 08:00:43 +0000
Manifest next update: Mon 28 Apr 2025 08:00:43 +0000
Files and hashes: 1: 39yFNcs_aiMECPSY8yer3c7rqfs.roa (hash: kt8DxoHHJV7b65racNqYI0+ZGEt7nNXcd8uoIQ2X++s=)
2: H2fPHKLeoy_NlwLdJRDra_K2hhA.crl (hash: B83BHgVqwnOMyVlf3U+5zstQBYGDGI31RkpIctCB33Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:43:4b:1d:d8:da:ce:10:bf:68:24:5d:2a:69:80:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f67cf1ca2dea32fcd9702dd2510eb6bf2b68610
Validity
Not Before: Apr 27 08:00:43 2025 GMT
Not After : Apr 28 08:00:43 2025 GMT
Subject: CN=3b62bdbc11115e40ddab07e6e43874a6d891ca97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d5:a1:9e:85:05:10:06:c7:a4:b2:eb:cb:fb:
99:ab:88:73:95:46:0d:ad:9c:97:e8:95:3f:e3:3b:
db:18:0c:49:f7:97:ad:b8:d5:97:2e:fd:10:dc:a3:
76:f2:f0:56:e8:9a:2e:aa:35:4e:37:1e:5c:61:52:
de:ee:1d:ba:ce:f4:a1:25:0c:64:59:25:c9:46:c1:
95:ae:98:7e:6f:1b:7f:a2:c7:a3:90:87:67:c4:c2:
50:60:3b:5c:86:2f:49:2d:ff:28:23:a4:67:66:f1:
ff:b3:6f:99:ec:d2:f3:bb:0e:6e:a9:aa:e4:83:b6:
ec:f7:40:e9:ad:49:a2:d8:dd:b6:51:f3:14:88:d0:
74:7d:e8:9f:50:c8:64:e3:52:2a:0d:dc:63:2f:b0:
e3:5e:84:07:1e:77:33:34:7a:8f:54:4a:ed:e9:2b:
fa:bf:0f:bd:75:ff:40:be:d3:dc:50:e9:59:f3:a9:
48:62:02:fd:4d:ed:80:cb:51:e6:25:91:e6:1d:dc:
5c:a2:70:76:92:3f:9d:fb:bf:9e:34:26:ab:17:1d:
84:3e:68:55:de:4a:e8:1c:42:78:17:f1:a4:cb:59:
8a:5d:f3:c0:52:d5:f8:6c:31:f5:6b:15:99:5a:ce:
2a:52:2f:e0:61:c4:d5:e3:68:8d:33:69:de:98:ad:
42:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:62:BD:BC:11:11:5E:40:DD:AB:07:E6:E4:38:74:A6:D8:91:CA:97
X509v3 Authority Key Identifier:
keyid:1F:67:CF:1C:A2:DE:A3:2F:CD:97:02:DD:25:10:EB:6B:F2:B6:86:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:2c:3e:bc:08:6e:d8:4d:14:00:0f:21:ac:50:95:11:22:c2:
72:30:0e:9e:fc:7d:de:bd:be:fb:1b:55:f8:94:f9:09:8f:c5:
f2:a2:0d:fb:16:cb:1e:14:6c:55:84:71:b8:60:db:f3:7b:2d:
d5:e2:2b:41:6d:9a:7d:f2:73:99:4d:2e:5c:e7:10:39:b1:9e:
88:7b:65:2e:7a:49:58:ec:19:dc:e2:12:af:25:a3:a1:2f:88:
79:10:06:01:24:33:50:e6:99:3f:94:4e:26:87:4b:16:e7:b1:
83:17:cf:03:ac:f4:d8:2a:c1:bf:01:b6:1e:32:da:d7:64:c3:
3e:d8:d5:68:de:c4:0d:5a:97:79:a4:4d:c7:f1:58:ce:20:56:
de:c7:4e:e0:3d:cf:a0:bf:3e:2f:48:f0:fb:f7:fd:69:f1:00:
fe:a4:e0:c5:a9:9b:db:8f:be:73:aa:1a:2a:c5:6a:e5:e4:3e:
f5:5b:0e:2d:c5:c6:93:a6:6c:8b:43:b1:ce:af:bf:8d:ee:86:
57:cd:b1:2e:05:eb:e3:1c:28:51:21:19:78:d2:d8:8c:b4:6e:
2b:a7:5a:14:0b:66:6d:a3:1b:81:93:76:c0:8d:41:1d:75:e2:
ba:00:e8:bc:17:cd:45:af:2f:41:87:e1:22:0a:14:61:29:0f:
a8:3a:29:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2Q0sd2NrOEL9oJF0qaYDcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNjdjZjFjYTJkZWEzMmZjZDk3MDJkZDI1MTBlYjZiZjJi
Njg2MTAwHhcNMjUwNDI3MDgwMDQzWhcNMjUwNDI4MDgwMDQzWjAzMTEwLwYDVQQD
EygzYjYyYmRiYzExMTE1ZTQwZGRhYjA3ZTZlNDM4NzRhNmQ4OTFjYTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNWhnoUFEAbHpLLry/uZq4hzlUYN
rZyX6JU/4zvbGAxJ95etuNWXLv0Q3KN28vBW6JouqjVONx5cYVLe7h26zvShJQxk
WSXJRsGVrph+bxt/osejkIdnxMJQYDtchi9JLf8oI6RnZvH/s2+Z7NLzuw5uqark
g7bs90DprUmi2N22UfMUiNB0feifUMhk41IqDdxjL7DjXoQHHnczNHqPVErt6Sv6
vw+9df9AvtPcUOlZ86lIYgL9Te2Ay1HmJZHmHdxconB2kj+d+7+eNCarFx2EPmhV
3kroHEJ4F/Gky1mKXfPAUtX4bDH1axWZWs4qUi/gYcTV42iNM2nemK1CnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDtivbwREV5A3asH5uQ4dKbYkcqXMB8GA1UdIwQY
MBaAFB9nzxyi3qMvzZcC3SUQ62vytoYQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDJmUEhLTGVveV9ObHdMZEpSRHJhX0syaGhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8zY2I0ZDYtZjMyYy00MTMwLWFlMGUt
YmFkYmU4NDA5NzdlLzEvSDJmUEhLTGVveV9ObHdMZEpSRHJhX0syaGhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy8zY2I0ZDYtZjMyYy00MTMwLWFlMGUtYmFkYmU4NDA5Nzdl
LzEvSDJmUEhLTGVveV9ObHdMZEpSRHJhX0syaGhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaSw+vAhu
2E0UAA8hrFCVESLCcjAOnvx93r2++xtV+JT5CY/F8qIN+xbLHhRsVYRxuGDb83st
1eIrQW2affJzmU0uXOcQObGeiHtlLnpJWOwZ3OISryWjoS+IeRAGASQzUOaZP5RO
JodLFuexgxfPA6z02CrBvwG2HjLa12TDPtjVaN7EDVqXeaRNx/FYziBW3sdO4D3P
oL8+L0jw+/f9afEA/qTgxamb24++c6oaKsVq5eQ+9VsOLcXGk6Zsi0Oxzq+/je6G
V82xLgXr4xwoUSEZeNLYjLRuK6daFAtmbaMbgZN2wI1BHXXiugDovBfNRa8vQYfh
IgoUYSkPqDopwg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 13:03:18 2025 by rpki-client