Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a7bc86-0955-468b-9eb5-e860be7e7c54/1/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.mft
File: xBPXo3Zf-aIrvCKZ4ElpHilAy4I.mft (raw, json)
Hash identifier: F40oQnb4dZhmXcEXxDrU2KIkC4a0etcBDfiSjJfN36o=
Subject key identifier: A3:97:CE:A5:A4:C8:8F:20:37:B0:26:DF:9F:30:94:6D:13:F4:17:5C
Authority key identifier: C4:13:D7:A3:76:5F:F9:A2:2B:BC:22:99:E0:49:69:1E:29:40:CB:82
Certificate issuer: /CN=c413d7a3765ff9a22bbc2299e049691e2940cb82
Certificate serial: 019655A62DCE0898DA0D1E336AC9EBBFF56F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a7bc86-0955-468b-9eb5-e860be7e7c54/1/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.mft
Manifest number: 126F
Signing time: Mon 21 Apr 2025 00:01:16 +0000
Manifest this update: Mon 21 Apr 2025 00:01:16 +0000
Manifest next update: Tue 22 Apr 2025 00:01:16 +0000
Files and hashes: 1: xBPXo3Zf-aIrvCKZ4ElpHilAy4I.crl (hash: zm2rLziKru1r5TmsFIOh2hD/TBWUMaXe6Mko/hlZJP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/a7bc86-0955-468b-9eb5-e860be7e7c54/1/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/a7bc86-0955-468b-9eb5-e860be7e7c54/1/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a6:2d:ce:08:98:da:0d:1e:33:6a:c9:eb:bf:f5:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c413d7a3765ff9a22bbc2299e049691e2940cb82
Validity
Not Before: Apr 21 00:01:16 2025 GMT
Not After : Apr 22 00:01:16 2025 GMT
Subject: CN=a397cea5a4c88f2037b026df9f30946d13f4175c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:b4:f9:f2:20:6c:30:35:e9:6b:5b:d0:23:21:
7f:3c:05:a4:ed:0b:ca:fe:df:53:59:f3:26:7d:fe:
eb:fe:8b:7f:11:a6:4c:05:f2:1c:d4:55:1c:0d:e0:
ce:ee:14:db:3f:6f:75:07:36:c0:b7:0a:ad:25:a5:
13:34:ca:ca:6a:c7:0b:63:cc:77:47:3d:a4:de:c0:
45:db:f9:2b:38:71:37:3c:f7:c6:7a:93:06:a7:af:
c8:84:e0:bb:ed:30:19:30:61:f4:18:a9:50:46:62:
b1:eb:dc:ff:5c:f1:3b:f8:6b:54:d5:95:a7:f6:a4:
97:14:c3:70:b4:71:d1:fe:86:63:8a:19:e0:3f:9c:
1c:25:8a:32:49:49:79:59:79:51:af:00:ae:fb:02:
86:4b:6c:7a:ef:5b:83:7a:fb:39:d5:ce:e5:a7:61:
0c:fd:82:2c:5e:84:ce:1a:f5:58:68:26:f2:05:a1:
b4:52:9e:03:d5:20:1a:98:f8:53:83:11:1a:96:54:
9b:ea:ea:c1:26:af:1d:ec:67:28:97:83:0d:27:f2:
05:25:84:f5:91:66:46:3c:c0:3b:4c:b8:0d:81:34:
aa:06:be:79:c1:34:8e:de:8b:ab:c7:02:d8:70:f8:
bd:5e:95:9a:47:d5:f5:7a:05:1b:b5:1e:9a:75:53:
cc:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:97:CE:A5:A4:C8:8F:20:37:B0:26:DF:9F:30:94:6D:13:F4:17:5C
X509v3 Authority Key Identifier:
keyid:C4:13:D7:A3:76:5F:F9:A2:2B:BC:22:99:E0:49:69:1E:29:40:CB:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a7bc86-0955-468b-9eb5-e860be7e7c54/1/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a7bc86-0955-468b-9eb5-e860be7e7c54/1/xBPXo3Zf-aIrvCKZ4ElpHilAy4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:1e:43:de:00:5d:55:25:c5:f5:8d:52:62:09:c3:12:02:21:
8d:8a:d5:37:78:55:32:99:1e:4f:99:4b:69:ef:11:57:ab:c3:
3d:1c:7a:7f:64:25:b4:0e:40:07:d1:0d:98:3a:51:e4:1c:8f:
8a:f2:95:3d:0f:3d:66:85:c2:04:fb:c2:a9:4b:fd:f5:1b:ba:
1a:37:eb:21:62:de:7c:40:25:9e:23:e0:65:46:05:40:fd:79:
6b:be:d6:e2:ac:77:41:aa:8f:2a:f8:cf:f7:03:91:51:69:b1:
60:5d:b0:bf:a3:b3:2c:f4:90:a0:82:95:7b:8d:39:6e:ab:5c:
72:b1:e6:8b:ce:4c:90:53:ad:24:2b:bf:f5:19:78:1a:6d:5f:
fc:7c:f8:0d:f8:9e:08:b2:1a:42:ac:06:22:ac:d0:8d:79:2e:
d1:63:51:ba:f0:df:f8:17:aa:2e:b0:36:f3:00:28:0d:43:03:
cc:a7:7d:7e:7c:67:78:4b:28:7f:6d:5b:6a:f6:2b:cd:4b:9e:
d2:f5:57:f8:70:de:45:23:e9:1a:66:4a:d6:39:71:fe:e9:44:
02:a0:48:aa:0d:c2:98:d6:e3:21:11:41:e3:66:91:02:c3:fb:
0d:58:5f:2f:85:86:86:81:bd:4f:30:b5:43:4b:9b:6a:55:40:
05:2a:72:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVpi3OCJjaDR4zasnrv/VvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0MTNkN2EzNzY1ZmY5YTIyYmJjMjI5OWUwNDk2OTFlMjk0
MGNiODIwHhcNMjUwNDIxMDAwMTE2WhcNMjUwNDIyMDAwMTE2WjAzMTEwLwYDVQQD
EyhhMzk3Y2VhNWE0Yzg4ZjIwMzdiMDI2ZGY5ZjMwOTQ2ZDEzZjQxNzVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7bT58iBsMDXpa1vQIyF/PAWk7QvK
/t9TWfMmff7r/ot/EaZMBfIc1FUcDeDO7hTbP291BzbAtwqtJaUTNMrKascLY8x3
Rz2k3sBF2/krOHE3PPfGepMGp6/IhOC77TAZMGH0GKlQRmKx69z/XPE7+GtU1ZWn
9qSXFMNwtHHR/oZjihngP5wcJYoySUl5WXlRrwCu+wKGS2x671uDevs51c7lp2EM
/YIsXoTOGvVYaCbyBaG0Up4D1SAamPhTgxEallSb6urBJq8d7Gcol4MNJ/IFJYT1
kWZGPMA7TLgNgTSqBr55wTSO3ourxwLYcPi9XpWaR9X1egUbtR6adVPM4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKOXzqWkyI8gN7Am358wlG0T9BdcMB8GA1UdIwQY
MBaAFMQT16N2X/miK7wimeBJaR4pQMuCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEJQWG8zWmYtYUlydkNLWjRFbHBIaWxBeTRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9hN2JjODYtMDk1NS00NjhiLTllYjUt
ZTg2MGJlN2U3YzU0LzEveEJQWG8zWmYtYUlydkNLWjRFbHBIaWxBeTRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9hN2JjODYtMDk1NS00NjhiLTllYjUtZTg2MGJlN2U3YzU0
LzEveEJQWG8zWmYtYUlydkNLWjRFbHBIaWxBeTRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcB5D3gBd
VSXF9Y1SYgnDEgIhjYrVN3hVMpkeT5lLae8RV6vDPRx6f2QltA5AB9ENmDpR5ByP
ivKVPQ89ZoXCBPvCqUv99Ru6GjfrIWLefEAlniPgZUYFQP15a77W4qx3QaqPKvjP
9wORUWmxYF2wv6OzLPSQoIKVe405bqtccrHmi85MkFOtJCu/9Rl4Gm1f/Hz4Dfie
CLIaQqwGIqzQjXku0WNRuvDf+BeqLrA28wAoDUMDzKd9fnxneEsof21bavYrzUue
0vVX+HDeRSPpGmZK1jlx/ulEAqBIqg3CmNbjIRFB42aRAsP7DVhfL4WGhoG9TzC1
Q0ubalVABSpyOw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 05:42:12 2025 by rpki-client