Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/c515bb-7e52-4475-ae25-d181d1f76128/1/2a1vSEUw5XzGDjqGWmlZSEdsQT8.mft
File: 2a1vSEUw5XzGDjqGWmlZSEdsQT8.mft (raw, json)
Hash identifier: u5yAvYNUyMb6RWvogAHQ/0Am5Q1LOTuRXdQk3CMQ9KE=
Subject key identifier: 3D:9F:3C:67:6F:C9:B1:F2:59:47:F5:88:7C:46:D8:85:0A:D3:0E:D2
Authority key identifier: D9:AD:6F:48:45:30:E5:7C:C6:0E:3A:86:5A:69:59:48:47:6C:41:3F
Certificate issuer: /CN=d9ad6f484530e57cc60e3a865a695948476c413f
Certificate serial: 019653B73A4BC2308818B2F4C10D1497772D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a1vSEUw5XzGDjqGWmlZSEdsQT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/c515bb-7e52-4475-ae25-d181d1f76128/1/2a1vSEUw5XzGDjqGWmlZSEdsQT8.mft
Manifest number: 148D
Signing time: Sun 20 Apr 2025 15:00:38 +0000
Manifest this update: Sun 20 Apr 2025 15:00:38 +0000
Manifest next update: Mon 21 Apr 2025 15:00:38 +0000
Files and hashes: 1: 2a1vSEUw5XzGDjqGWmlZSEdsQT8.crl (hash: /w8usq9G1aILX40PRpVujNeCjdJIhGpwhn6WqiykaAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/c515bb-7e52-4475-ae25-d181d1f76128/1/2a1vSEUw5XzGDjqGWmlZSEdsQT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/c515bb-7e52-4475-ae25-d181d1f76128/1/2a1vSEUw5XzGDjqGWmlZSEdsQT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2a1vSEUw5XzGDjqGWmlZSEdsQT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 15:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:b7:3a:4b:c2:30:88:18:b2:f4:c1:0d:14:97:77:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad6f484530e57cc60e3a865a695948476c413f
Validity
Not Before: Apr 20 15:00:38 2025 GMT
Not After : Apr 21 15:00:38 2025 GMT
Subject: CN=3d9f3c676fc9b1f25947f5887c46d8850ad30ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:34:15:eb:a3:e0:01:c9:e2:b2:83:74:74:8b:
26:92:61:2a:0e:b4:45:69:a1:be:8b:81:7e:14:d3:
04:0f:08:91:73:2d:07:24:35:95:41:1d:10:53:e8:
27:3b:1b:ac:b8:35:20:8d:ca:ae:51:9e:35:1b:49:
a2:cf:ea:c2:ef:4b:2d:5d:c4:b2:71:18:bf:51:31:
4d:75:16:d7:c9:5c:3e:f4:31:9b:63:6e:f2:83:80:
52:89:83:7a:9c:ee:bf:44:56:38:25:48:33:a6:40:
77:8d:37:c8:28:cf:bc:3e:58:8e:57:34:18:33:a1:
15:60:26:04:cb:54:20:ee:cc:d7:75:e5:31:49:65:
4a:1b:2b:94:0e:3a:1b:99:a4:ed:44:59:9f:d5:9a:
c1:ad:5c:c4:24:5b:c1:88:ef:7e:dd:4c:55:bd:16:
1b:12:d2:24:e9:fd:e2:b2:4f:90:98:ba:76:ce:fb:
3c:92:87:60:ca:03:19:09:4c:84:40:5d:e4:4a:ef:
74:8f:61:f7:1a:9a:6d:9b:09:38:3e:3b:56:79:07:
0b:f7:41:3c:0f:1b:b0:d6:fc:30:3b:34:eb:dc:7f:
72:95:12:a7:ec:a5:e9:89:e2:21:22:39:1a:9c:d6:
fb:e5:2d:d4:aa:37:58:0d:b1:e4:22:e9:ce:aa:61:
66:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:9F:3C:67:6F:C9:B1:F2:59:47:F5:88:7C:46:D8:85:0A:D3:0E:D2
X509v3 Authority Key Identifier:
keyid:D9:AD:6F:48:45:30:E5:7C:C6:0E:3A:86:5A:69:59:48:47:6C:41:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a1vSEUw5XzGDjqGWmlZSEdsQT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/c515bb-7e52-4475-ae25-d181d1f76128/1/2a1vSEUw5XzGDjqGWmlZSEdsQT8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/c515bb-7e52-4475-ae25-d181d1f76128/1/2a1vSEUw5XzGDjqGWmlZSEdsQT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:05:36:a5:b7:01:32:53:34:5b:e2:ef:a6:ca:d8:87:37:94:
ec:d2:ae:02:8e:41:22:ca:31:9d:50:55:83:2f:7a:96:55:92:
51:f0:d0:08:15:24:25:4d:39:f0:ea:a5:29:f0:60:04:c4:54:
f0:a7:2d:d7:12:0f:e9:5f:e8:69:ea:7f:eb:af:66:b0:9e:4f:
34:71:40:82:83:15:fa:da:7b:63:32:bc:09:f1:e4:08:ca:2a:
e0:9a:43:58:ca:eb:c5:fa:7e:aa:01:67:08:8d:41:aa:7a:54:
e8:cc:3f:d5:cc:50:17:72:49:68:b8:fc:cd:c6:89:8b:fa:6a:
43:79:e9:5c:34:ec:8e:24:a0:52:e8:52:05:37:c6:35:39:93:
e1:ed:a9:40:d4:14:bb:40:68:27:77:1e:a1:54:12:20:b1:5e:
35:95:c9:b7:ab:c0:a8:42:65:6f:c8:48:ab:3d:cf:3d:a8:58:
a0:eb:62:6d:95:43:7a:5b:03:87:c6:87:95:a5:d8:f5:3e:e6:
b3:ce:4b:38:55:31:2e:e0:b5:18:b6:d6:fe:1a:12:c9:ea:27:
82:29:05:57:16:e7:4a:f6:49:59:74:f5:cc:7a:7d:6d:8e:e3:
51:a2:f4:d6:23:0f:a5:02:84:c8:ec:9a:9e:d6:14:2f:ce:b8:
3f:da:08:5d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZTtzpLwjCIGLL0wQ0Ul3ctMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5YWQ2ZjQ4NDUzMGU1N2NjNjBlM2E4NjVhNjk1OTQ4NDc2
YzQxM2YwHhcNMjUwNDIwMTUwMDM4WhcNMjUwNDIxMTUwMDM4WjAzMTEwLwYDVQQD
EygzZDlmM2M2NzZmYzliMWYyNTk0N2Y1ODg3YzQ2ZDg4NTBhZDMwZWQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwjQV66PgAcnisoN0dIsmkmEqDrRF
aaG+i4F+FNMEDwiRcy0HJDWVQR0QU+gnOxusuDUgjcquUZ41G0miz+rC70stXcSy
cRi/UTFNdRbXyVw+9DGbY27yg4BSiYN6nO6/RFY4JUgzpkB3jTfIKM+8PliOVzQY
M6EVYCYEy1Qg7szXdeUxSWVKGyuUDjobmaTtRFmf1ZrBrVzEJFvBiO9+3UxVvRYb
EtIk6f3isk+QmLp2zvs8kodgygMZCUyEQF3kSu90j2H3Gpptmwk4PjtWeQcL90E8
Dxuw1vwwOzTr3H9ylRKn7KXpieIhIjkanNb75S3UqjdYDbHkIunOqmFmCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD2fPGdvybHyWUf1iHxG2IUK0w7SMB8GA1UdIwQY
MBaAFNmtb0hFMOV8xg46hlppWUhHbEE/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmExdlNFVXc1WHpHRGpxR1dtbFpTRWRzUVQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9jNTE1YmItN2U1Mi00NDc1LWFlMjUt
ZDE4MWQxZjc2MTI4LzEvMmExdlNFVXc1WHpHRGpxR1dtbFpTRWRzUVQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC9jNTE1YmItN2U1Mi00NDc1LWFlMjUtZDE4MWQxZjc2MTI4
LzEvMmExdlNFVXc1WHpHRGpxR1dtbFpTRWRzUVQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXgU2pbcB
MlM0W+LvpsrYhzeU7NKuAo5BIsoxnVBVgy96llWSUfDQCBUkJU058OqlKfBgBMRU
8Kct1xIP6V/oaep/669msJ5PNHFAgoMV+tp7YzK8CfHkCMoq4JpDWMrrxfp+qgFn
CI1BqnpU6Mw/1cxQF3JJaLj8zcaJi/pqQ3npXDTsjiSgUuhSBTfGNTmT4e2pQNQU
u0BoJ3ceoVQSILFeNZXJt6vAqEJlb8hIqz3PPahYoOtibZVDelsDh8aHlaXY9T7m
s85LOFUxLuC1GLbW/hoSyeongikFVxbnSvZJWXT1zHp9bY7jUaL01iMPpQKEyOya
ntYUL864P9oIXQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 20:42:38 2025 by rpki-client