Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/91101c-3437-4f3c-b120-752c933639e5/1/ddUf2ReUrgygfzkwcw0Gmqwbku0.mft
File: ddUf2ReUrgygfzkwcw0Gmqwbku0.mft (raw, json)
Hash identifier: A4dTZkcQCchOP6TO046oIxs2la7i5/0nTf5nfrY31as=
Subject key identifier: A1:84:3A:76:8F:B1:67:F0:A0:0A:85:08:B8:D0:91:3A:F6:DB:FD:58
Authority key identifier: 75:D5:1F:D9:17:94:AE:0C:A0:7F:39:30:73:0D:06:9A:AC:1B:92:ED
Certificate issuer: /CN=75d51fd91794ae0ca07f3930730d069aac1b92ed
Certificate serial: 01965D5FA2B02F949A9EAAE605D53D2C6195
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddUf2ReUrgygfzkwcw0Gmqwbku0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/91101c-3437-4f3c-b120-752c933639e5/1/ddUf2ReUrgygfzkwcw0Gmqwbku0.mft
Manifest number: 3F
Signing time: Tue 22 Apr 2025 12:01:10 +0000
Manifest this update: Tue 22 Apr 2025 12:01:10 +0000
Manifest next update: Wed 23 Apr 2025 12:01:10 +0000
Files and hashes: 1: ddUf2ReUrgygfzkwcw0Gmqwbku0.crl (hash: c51Kyp5ZenDNfSSTih7LRGxUE8yTm+0pskUzLMsFBOM=)
2: ggnUuCiiw5KDxP7VC2MuE-m18jg.roa (hash: hCPwze5ka3HW9b6kkZEr86kyUHzmDg3+6W3Ek9YCVgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/91101c-3437-4f3c-b120-752c933639e5/1/ddUf2ReUrgygfzkwcw0Gmqwbku0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/91101c-3437-4f3c-b120-752c933639e5/1/ddUf2ReUrgygfzkwcw0Gmqwbku0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddUf2ReUrgygfzkwcw0Gmqwbku0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 12:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:5f:a2:b0:2f:94:9a:9e:aa:e6:05:d5:3d:2c:61:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75d51fd91794ae0ca07f3930730d069aac1b92ed
Validity
Not Before: Apr 22 12:01:10 2025 GMT
Not After : Apr 23 12:01:10 2025 GMT
Subject: CN=a1843a768fb167f0a00a8508b8d0913af6dbfd58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4f:97:1b:a8:1d:02:4e:9b:f8:85:77:b5:ce:
6f:3d:b2:73:7d:98:2d:8e:f6:79:b2:a1:e8:87:55:
d1:5c:63:f3:66:95:8a:c3:6f:de:08:4e:40:a8:f9:
c2:9f:66:cf:57:40:be:f8:fe:0c:80:56:44:91:6d:
f7:bd:c7:0f:47:99:af:f3:bd:5e:14:95:3f:09:f6:
93:ea:3e:17:5a:ed:ee:99:4d:b4:b6:e8:9b:6b:65:
9d:23:9c:9e:67:06:da:ea:ff:02:14:4b:19:25:fb:
c0:fd:55:ae:d7:ac:d4:0f:03:85:b4:67:e3:58:3c:
da:df:b3:83:17:23:ef:91:90:22:e2:aa:08:67:ad:
8f:fa:0a:c6:82:7b:22:6f:66:6d:e5:30:ac:57:c1:
58:48:d7:85:79:f2:36:4f:dd:5e:ad:da:13:a1:ca:
8f:71:8f:63:58:36:19:e9:10:e9:86:0b:01:d6:59:
cb:dc:ff:db:f0:6f:a5:02:ef:2d:68:70:bf:21:bc:
04:0b:e8:20:7d:09:5e:5b:45:62:5e:fe:c0:71:ab:
47:0d:8f:b6:11:32:dd:8c:18:0b:59:a8:54:2d:cc:
8f:66:17:9e:51:33:a6:89:70:9f:0c:59:01:f0:5d:
ea:22:24:ef:fe:38:f4:36:9b:0e:79:c9:69:0b:11:
7c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:84:3A:76:8F:B1:67:F0:A0:0A:85:08:B8:D0:91:3A:F6:DB:FD:58
X509v3 Authority Key Identifier:
keyid:75:D5:1F:D9:17:94:AE:0C:A0:7F:39:30:73:0D:06:9A:AC:1B:92:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddUf2ReUrgygfzkwcw0Gmqwbku0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/91101c-3437-4f3c-b120-752c933639e5/1/ddUf2ReUrgygfzkwcw0Gmqwbku0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/91101c-3437-4f3c-b120-752c933639e5/1/ddUf2ReUrgygfzkwcw0Gmqwbku0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:03:2f:d8:43:16:55:b1:1d:10:38:71:ac:24:09:c7:df:2e:
b5:94:7f:cd:a6:5f:a9:5a:4e:8d:2b:4a:fa:6a:3c:19:d9:1a:
3b:99:38:5a:15:91:77:3a:55:e5:37:e8:f2:4e:0e:37:31:41:
56:d5:e4:32:c7:7c:25:06:68:bd:0c:1d:98:c6:3d:e2:23:e4:
e5:5a:61:bc:8f:68:6a:83:f0:f9:31:1e:db:18:25:8d:96:0c:
a4:df:dd:2d:b3:22:f0:17:18:cb:7b:ed:68:97:95:0f:c3:ee:
82:f1:a9:a5:41:57:ea:8b:86:81:90:fa:07:cc:51:d2:63:84:
72:47:3a:05:e6:89:80:e2:6e:c6:e5:04:da:3a:0c:88:17:64:
b1:05:bc:a5:b4:c2:fb:02:63:54:d2:03:86:f9:cc:2e:36:90:
16:49:91:0c:a3:08:fe:25:9f:50:1f:84:90:e6:15:56:ce:87:
ae:d9:ed:2c:bd:54:0d:f0:06:b0:3a:62:d4:b3:92:3b:b0:72:
94:b5:d7:e6:f5:dd:69:36:01:99:69:62:38:4a:01:f5:72:9e:
66:27:04:ad:11:26:67:1e:b7:07:a8:ee:e0:ba:a0:27:e3:c4:
d3:e9:6c:c0:f0:ae:4a:a9:79:4c:80:49:69:ac:48:a9:e4:60:
cb:d3:a8:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZdX6KwL5SanqrmBdU9LGGVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1ZDUxZmQ5MTc5NGFlMGNhMDdmMzkzMDczMGQwNjlhYWMx
YjkyZWQwHhcNMjUwNDIyMTIwMTEwWhcNMjUwNDIzMTIwMTEwWjAzMTEwLwYDVQQD
EyhhMTg0M2E3NjhmYjE2N2YwYTAwYTg1MDhiOGQwOTEzYWY2ZGJmZDU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvU+XG6gdAk6b+IV3tc5vPbJzfZgt
jvZ5sqHoh1XRXGPzZpWKw2/eCE5AqPnCn2bPV0C++P4MgFZEkW33vccPR5mv871e
FJU/CfaT6j4XWu3umU20tuiba2WdI5yeZwba6v8CFEsZJfvA/VWu16zUDwOFtGfj
WDza37ODFyPvkZAi4qoIZ62P+grGgnsib2Zt5TCsV8FYSNeFefI2T91erdoTocqP
cY9jWDYZ6RDphgsB1lnL3P/b8G+lAu8taHC/IbwEC+ggfQleW0ViXv7AcatHDY+2
ETLdjBgLWahULcyPZheeUTOmiXCfDFkB8F3qIiTv/jj0NpsOeclpCxF8gwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKGEOnaPsWfwoAqFCLjQkTr22/1YMB8GA1UdIwQY
MBaAFHXVH9kXlK4MoH85MHMNBpqsG5LtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGRVZjJSZVVyZ3lnZnprd2N3MEdtcXdia3UwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85MTEwMWMtMzQzNy00ZjNjLWIxMjAt
NzUyYzkzMzYzOWU1LzEvZGRVZjJSZVVyZ3lnZnprd2N3MEdtcXdia3UwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85MTEwMWMtMzQzNy00ZjNjLWIxMjAtNzUyYzkzMzYzOWU1
LzEvZGRVZjJSZVVyZ3lnZnprd2N3MEdtcXdia3UwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALAMv2EMW
VbEdEDhxrCQJx98utZR/zaZfqVpOjStK+mo8GdkaO5k4WhWRdzpV5Tfo8k4ONzFB
VtXkMsd8JQZovQwdmMY94iPk5VphvI9oaoPw+TEe2xgljZYMpN/dLbMi8BcYy3vt
aJeVD8PugvGppUFX6ouGgZD6B8xR0mOEckc6BeaJgOJuxuUE2joMiBdksQW8pbTC
+wJjVNIDhvnMLjaQFkmRDKMI/iWfUB+EkOYVVs6HrtntLL1UDfAGsDpi1LOSO7By
lLXX5vXdaTYBmWliOEoB9XKeZicErREmZx63B6ju4LqgJ+PE0+lswPCuSql5TIBJ
aaxIqeRgy9OogA==
-----END CERTIFICATE-----
Generated at Tue Apr 22 20:47:09 2025 by rpki-client