Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
File: JchJyqV3LJi4E8E7TzD85PSNLa4.mft (raw, json)
Hash identifier: Bz9iDGT1P5eCQLUyB7qmgb/3DgURcx1zw0waM2/HouY=
Subject key identifier: 45:07:EF:2A:2C:B7:10:9E:F9:E2:FC:6E:14:17:F6:68:E1:6D:BA:5C
Authority key identifier: 25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE
Certificate issuer: /CN=25c849caa5772c98b813c13b4f30fce4f48d2dae
Certificate serial: 019659B9B1416562F1BA167A75484A05579A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
Manifest number: 08D5
Signing time: Mon 21 Apr 2025 19:01:03 +0000
Manifest this update: Mon 21 Apr 2025 19:01:03 +0000
Manifest next update: Tue 22 Apr 2025 19:01:03 +0000
Files and hashes: 1: JchJyqV3LJi4E8E7TzD85PSNLa4.crl (hash: 6xwdniaxHdsOlW4SrKjyONirqyJ1R19hIw1hUse65YY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:b9:b1:41:65:62:f1:ba:16:7a:75:48:4a:05:57:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c849caa5772c98b813c13b4f30fce4f48d2dae
Validity
Not Before: Apr 21 19:01:03 2025 GMT
Not After : Apr 22 19:01:03 2025 GMT
Subject: CN=4507ef2a2cb7109ef9e2fc6e1417f668e16dba5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:13:ea:86:b4:72:51:ab:5a:75:3e:29:38:e9:
a6:ff:ac:0c:e6:7e:26:75:39:ba:87:7b:97:59:9a:
43:fa:b3:72:e7:5e:44:a2:d0:2d:58:c0:30:74:1a:
e0:48:fd:76:4b:98:7b:f7:05:7e:b7:12:0d:d1:95:
b5:28:4f:e4:47:10:a6:07:8f:8b:a9:a3:fe:0c:1c:
d9:0b:63:76:46:bf:4f:60:76:46:85:a9:0b:62:3a:
df:a3:9e:d4:a6:49:6c:3c:d1:00:ce:3e:98:e9:d9:
e4:82:17:81:43:19:9e:36:41:e9:12:e8:31:c7:4a:
98:61:66:b1:01:41:7a:d3:96:7b:cc:43:c9:c3:8e:
df:d5:8b:52:5b:74:55:8e:f8:e8:52:3e:1e:d3:a2:
d8:d6:ae:54:9f:72:fe:41:08:9d:1e:90:09:1c:60:
a5:bb:ab:23:61:8c:62:cf:b7:ec:2c:6a:69:67:0f:
c4:2b:87:90:65:83:c1:be:ea:1e:0d:bd:19:1e:d4:
ec:9d:81:4d:31:be:d4:96:6a:4f:3f:5c:fa:a8:50:
d7:aa:b7:c5:ea:13:b3:3e:20:2e:c1:81:bd:64:f0:
29:49:41:16:55:32:7d:13:b1:e6:18:b5:15:55:64:
83:7a:75:23:6a:20:c6:48:52:e6:b2:6d:c1:24:f0:
df:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:07:EF:2A:2C:B7:10:9E:F9:E2:FC:6E:14:17:F6:68:E1:6D:BA:5C
X509v3 Authority Key Identifier:
keyid:25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:e7:40:44:00:55:f2:c9:e5:87:1b:e6:df:29:33:38:d1:b9:
c8:08:6f:fc:ad:b2:55:24:e2:9c:3b:f8:df:e7:31:35:d3:83:
7b:7c:a8:cd:42:f2:35:81:63:29:d4:9c:99:40:7e:59:27:3e:
cd:19:56:a9:28:61:8f:f1:43:c7:dc:0c:87:df:b0:f4:e2:64:
4a:75:0a:26:2e:24:d7:63:f5:eb:68:f0:7c:de:32:ff:e6:e8:
51:33:5b:80:1c:e9:88:9d:52:bd:dd:c0:9c:3e:a7:f1:75:72:
08:83:7a:e8:01:42:19:a0:a6:b4:bf:81:5f:f8:b2:c4:09:c5:
21:3a:cb:2e:30:82:fa:98:d0:0e:50:25:a0:24:9b:6d:74:b4:
47:7a:66:aa:fc:2b:68:bb:74:e2:4a:c1:73:1c:9a:e1:2c:a2:
76:bc:5c:37:a4:6f:36:af:96:a9:c1:a8:a7:6b:09:e1:5f:42:
f0:c3:79:b3:b6:67:24:af:56:78:3e:d4:a3:46:0b:e8:a1:f3:
ec:dd:ce:2b:30:e6:9f:be:54:e4:71:73:fe:b5:75:d4:d8:ce:
6d:52:90:c1:d2:7d:db:c8:23:f7:9e:3f:7f:ef:81:67:94:fa:
c2:ed:5d:29:a3:f2:af:f5:0d:cd:3c:39:3f:bb:7b:4c:e5:50:
53:00:3d:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZZubFBZWLxuhZ6dUhKBVeaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1Yzg0OWNhYTU3NzJjOThiODEzYzEzYjRmMzBmY2U0ZjQ4
ZDJkYWUwHhcNMjUwNDIxMTkwMTAzWhcNMjUwNDIyMTkwMTAzWjAzMTEwLwYDVQQD
Eyg0NTA3ZWYyYTJjYjcxMDllZjllMmZjNmUxNDE3ZjY2OGUxNmRiYTVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxBPqhrRyUatadT4pOOmm/6wM5n4m
dTm6h3uXWZpD+rNy515EotAtWMAwdBrgSP12S5h79wV+txIN0ZW1KE/kRxCmB4+L
qaP+DBzZC2N2Rr9PYHZGhakLYjrfo57UpklsPNEAzj6Y6dnkgheBQxmeNkHpEugx
x0qYYWaxAUF605Z7zEPJw47f1YtSW3RVjvjoUj4e06LY1q5Un3L+QQidHpAJHGCl
u6sjYYxiz7fsLGppZw/EK4eQZYPBvuoeDb0ZHtTsnYFNMb7UlmpPP1z6qFDXqrfF
6hOzPiAuwYG9ZPApSUEWVTJ9E7HmGLUVVWSDenUjaiDGSFLmsm3BJPDfdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEUH7yostxCe+eL8bhQX9mjhbbpcMB8GA1UdIwQY
MBaAFCXIScqldyyYuBPBO08w/OT0jS2uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmNoSnlxVjNMSmk0RThFN1R6RDg1UFNOTGE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS84NTQ0YTAtYWU0Ni00ZGEyLWFkMmQt
ZTg5M2IxM2IyYzlmLzEvSmNoSnlxVjNMSmk0RThFN1R6RDg1UFNOTGE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS84NTQ0YTAtYWU0Ni00ZGEyLWFkMmQtZTg5M2IxM2IyYzlm
LzEvSmNoSnlxVjNMSmk0RThFN1R6RDg1UFNOTGE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcOdARABV
8snlhxvm3ykzONG5yAhv/K2yVSTinDv43+cxNdODe3yozULyNYFjKdScmUB+WSc+
zRlWqShhj/FDx9wMh9+w9OJkSnUKJi4k12P162jwfN4y/+boUTNbgBzpiJ1Svd3A
nD6n8XVyCIN66AFCGaCmtL+BX/iyxAnFITrLLjCC+pjQDlAloCSbbXS0R3pmqvwr
aLt04krBcxya4SyidrxcN6RvNq+WqcGop2sJ4V9C8MN5s7ZnJK9WeD7Uo0YL6KHz
7N3OKzDmn75U5HFz/rV11NjObVKQwdJ928gj954/f++BZ5T6wu1dKaPyr/UNzTw5
P7t7TOVQUwA9AA==
-----END CERTIFICATE-----
Generated at Tue Apr 22 05:04:58 2025 by rpki-client