Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json)
Hash identifier: k6ywMHV8BsMasUsHQBTn46sLmTb4spAv5uMeZFMjgbY=
Subject key identifier: F4:26:38:72:82:14:AD:14:81:5F:D6:F6:DA:71:23:EE:86:A7:0B:E8
Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Certificate serial: 01964D7F1206E393A1B702E9612FC1A63311
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
Manifest number: 049E
Signing time: Sat 19 Apr 2025 10:01:35 +0000
Manifest this update: Sat 19 Apr 2025 10:01:35 +0000
Manifest next update: Sun 20 Apr 2025 10:01:35 +0000
Files and hashes: 1: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: eBlILBCVNhKlj/wd1DpJvCgNTBzCI8aDYG9QDYaEFbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7f:12:06:e3:93:a1:b7:02:e9:61:2f:c1:a6:33:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Validity
Not Before: Apr 19 10:01:35 2025 GMT
Not After : Apr 20 10:01:35 2025 GMT
Subject: CN=f42638728214ad14815fd6f6da7123ee86a70be8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6b:41:12:83:50:1d:e6:cc:6e:9a:83:c5:74:
09:3d:0c:75:84:f4:02:30:65:5f:95:bb:98:29:e5:
6e:de:2b:b2:23:06:c9:80:9b:bb:a1:91:34:a5:64:
8f:15:e5:90:99:b2:4a:49:5f:63:c2:01:e9:20:23:
4a:47:23:c4:8e:20:3b:34:fe:07:b3:aa:84:44:00:
b3:ee:78:94:91:d4:8b:56:ad:56:ae:92:dd:8a:bb:
67:79:0d:06:b7:27:a0:9f:9f:7e:bb:f4:5a:25:ad:
d1:a1:fb:1b:a3:27:dc:f5:87:20:e2:6c:8d:25:c1:
2d:43:ea:e0:d5:36:5c:ba:64:43:83:ac:3d:4f:7d:
23:eb:e4:36:d0:21:1b:b3:61:12:40:bc:2a:7c:5b:
04:5f:96:a3:bc:59:05:e3:96:03:f8:27:66:0c:6e:
23:fd:3c:21:42:e7:70:a9:81:39:27:46:c4:a9:17:
ee:ab:cd:ae:6f:21:3e:b0:56:47:30:d2:ce:ce:94:
63:f1:a0:ec:a6:d4:23:dd:6c:17:06:1f:27:58:ae:
22:41:ed:e6:8f:f5:68:49:0c:53:87:2f:72:26:4c:
18:be:56:06:ea:cc:cb:6b:fa:38:fd:1b:6a:ee:ec:
f7:f5:69:8d:b7:cf:6b:ef:a3:9c:d2:77:c0:7a:22:
bc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:26:38:72:82:14:AD:14:81:5F:D6:F6:DA:71:23:EE:86:A7:0B:E8
X509v3 Authority Key Identifier:
keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:83:db:1b:f0:83:f2:5f:bf:c9:fd:cd:c2:96:4b:6e:71:ef:
83:c6:51:e4:a0:b8:2d:a4:43:01:b7:11:a0:83:7f:03:ef:cc:
d4:3d:9c:5a:7e:32:e8:6f:97:40:ab:34:c2:27:11:9d:98:4f:
19:fe:d9:27:a3:a9:2a:14:d0:cc:00:4e:d7:56:5c:fd:0c:1a:
c2:90:9a:7e:d8:36:c3:b0:b0:d3:94:6c:9d:db:a0:1d:82:2f:
94:e8:74:b7:cf:87:62:4c:d5:62:d7:a3:0d:6a:43:17:83:62:
92:d2:1d:19:27:2c:bf:9c:68:9d:61:b5:11:a1:38:32:16:1d:
f3:51:ff:e1:a3:a4:4a:23:27:8a:a1:75:9d:5b:9c:22:87:48:
1c:47:f8:83:f8:58:3e:6b:aa:f0:c7:51:f5:68:5a:08:c0:c4:
b9:24:63:ef:4e:fc:f3:ad:f4:22:8d:65:37:24:9e:f2:28:d9:
06:75:c2:fa:ba:57:46:46:6e:7e:4b:de:82:e2:8c:b2:05:c8:
3f:b3:f7:e0:fa:7c:eb:39:1a:b9:90:a3:49:2a:cf:c5:2a:43:
c6:03:53:62:73:0c:61:db:36:ab:f7:ad:dd:b6:22:9c:85:3a:
15:87:95:9c:39:65:e6:b4:c0:e2:5f:ff:7c:c4:b9:50:20:03:
08:b9:80:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNfxIG45OhtwLpYS/BpjMRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjYTU5ODMyMmE2OTkwNWE1YzZlMDI5NWEwY2ExZmI1NTY2
NmMxNGIwHhcNMjUwNDE5MTAwMTM1WhcNMjUwNDIwMTAwMTM1WjAzMTEwLwYDVQQD
EyhmNDI2Mzg3MjgyMTRhZDE0ODE1ZmQ2ZjZkYTcxMjNlZTg2YTcwYmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA02tBEoNQHebMbpqDxXQJPQx1hPQC
MGVflbuYKeVu3iuyIwbJgJu7oZE0pWSPFeWQmbJKSV9jwgHpICNKRyPEjiA7NP4H
s6qERACz7niUkdSLVq1WrpLdirtneQ0Gtyegn59+u/RaJa3Rofsboyfc9Ycg4myN
JcEtQ+rg1TZcumRDg6w9T30j6+Q20CEbs2ESQLwqfFsEX5ajvFkF45YD+CdmDG4j
/TwhQudwqYE5J0bEqRfuq82ubyE+sFZHMNLOzpRj8aDsptQj3WwXBh8nWK4iQe3m
j/VoSQxThy9yJkwYvlYG6szLa/o4/Rtq7uz39WmNt89r76Oc0nfAeiK8AQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPQmOHKCFK0UgV/W9tpxI+6GpwvoMB8GA1UdIwQY
MBaAFHylmDIqaZBaXG4ClaDKH7VWZsFLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUt
NTgwZDg3Njg4NWExLzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUtNTgwZDg3Njg4NWEx
LzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdoPbG/CD
8l+/yf3NwpZLbnHvg8ZR5KC4LaRDAbcRoIN/A+/M1D2cWn4y6G+XQKs0wicRnZhP
Gf7ZJ6OpKhTQzABO11Zc/QwawpCaftg2w7Cw05RsndugHYIvlOh0t8+HYkzVYtej
DWpDF4NiktIdGScsv5xonWG1EaE4MhYd81H/4aOkSiMniqF1nVucIodIHEf4g/hY
Pmuq8MdR9WhaCMDEuSRj70788630Io1lNySe8ijZBnXC+rpXRkZufkveguKMsgXI
P7P34Pp86zkauZCjSSrPxSpDxgNTYnMMYds2q/et3bYinIU6FYeVnDll5rTA4l//
fMS5UCADCLmA9A==
-----END CERTIFICATE-----
Generated at Sat Apr 19 14:35:40 2025 by rpki-client