Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/2e03af-83a4-4c9f-911a-d5844b3c5177/1/dC5XHQAG_n9mCwMIzMYaFpnjSRc.mft
File: dC5XHQAG_n9mCwMIzMYaFpnjSRc.mft (raw, json)
Hash identifier: 6Q9bR0oNv3hhDFvlw9f10R0VBzmEjeh1ZFjAxB0EyRM=
Subject key identifier: CB:A9:91:CF:80:9F:44:2C:FC:74:01:40:46:E6:76:FD:1D:15:B4:11
Authority key identifier: 74:2E:57:1D:00:06:FE:7F:66:0B:03:08:CC:C6:1A:16:99:E3:49:17
Certificate issuer: /CN=742e571d0006fe7f660b0308ccc61a1699e34917
Certificate serial: 019655378BCA093C08DD676E8392FFABFB28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dC5XHQAG_n9mCwMIzMYaFpnjSRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/2e03af-83a4-4c9f-911a-d5844b3c5177/1/dC5XHQAG_n9mCwMIzMYaFpnjSRc.mft
Manifest number: 14FB
Signing time: Sun 20 Apr 2025 22:00:25 +0000
Manifest this update: Sun 20 Apr 2025 22:00:25 +0000
Manifest next update: Mon 21 Apr 2025 22:00:25 +0000
Files and hashes: 1: dC5XHQAG_n9mCwMIzMYaFpnjSRc.crl (hash: uwHj6FUGeCZR2KukMR5mH73cnhPcC+AX4BuqzhBWkNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/2e03af-83a4-4c9f-911a-d5844b3c5177/1/dC5XHQAG_n9mCwMIzMYaFpnjSRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/2e03af-83a4-4c9f-911a-d5844b3c5177/1/dC5XHQAG_n9mCwMIzMYaFpnjSRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dC5XHQAG_n9mCwMIzMYaFpnjSRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:8b:ca:09:3c:08:dd:67:6e:83:92:ff:ab:fb:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=742e571d0006fe7f660b0308ccc61a1699e34917
Validity
Not Before: Apr 20 22:00:25 2025 GMT
Not After : Apr 21 22:00:25 2025 GMT
Subject: CN=cba991cf809f442cfc74014046e676fd1d15b411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:23:1b:48:f5:76:d1:bd:82:8a:78:af:d8:5f:
2b:99:e6:ad:67:02:87:ff:b9:4c:9f:f8:1c:d7:43:
96:89:f4:82:00:35:2f:19:a8:7e:49:5a:c7:34:94:
39:c6:a4:28:76:34:62:15:63:63:6e:c3:b6:3e:a7:
a0:6c:1a:64:9d:6a:c6:5a:8c:71:8d:87:8f:43:33:
28:c7:92:46:da:f9:7a:f5:a3:47:f7:ff:9b:d1:b9:
dc:47:ef:4b:61:32:44:00:e0:7e:98:13:fc:20:fc:
f6:bc:56:e7:d4:ef:68:18:82:b1:d8:03:1b:d3:b5:
90:e0:54:f6:f9:a8:40:ac:2c:9f:30:56:e1:f3:58:
08:c5:e1:6d:b3:45:19:0c:7f:43:f9:8b:06:32:3c:
b2:7f:f1:61:24:d6:8d:14:a3:22:67:3a:4e:22:49:
56:10:94:97:ee:e9:5d:8a:2c:5c:58:1a:5d:be:f3:
f0:4f:94:67:e2:11:f6:c6:2b:0f:1d:c9:64:5f:58:
ae:ca:2f:64:04:d3:91:2d:ee:6e:30:29:cf:95:66:
e8:7c:aa:68:1f:c6:0c:89:74:ee:55:4c:cd:31:ae:
70:50:d4:56:7f:3d:17:cb:f7:31:53:a7:5a:97:03:
1c:22:6f:fa:b9:7b:1a:b3:25:b5:01:f2:af:11:c8:
2f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:A9:91:CF:80:9F:44:2C:FC:74:01:40:46:E6:76:FD:1D:15:B4:11
X509v3 Authority Key Identifier:
keyid:74:2E:57:1D:00:06:FE:7F:66:0B:03:08:CC:C6:1A:16:99:E3:49:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dC5XHQAG_n9mCwMIzMYaFpnjSRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/2e03af-83a4-4c9f-911a-d5844b3c5177/1/dC5XHQAG_n9mCwMIzMYaFpnjSRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/2e03af-83a4-4c9f-911a-d5844b3c5177/1/dC5XHQAG_n9mCwMIzMYaFpnjSRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:29:f1:23:f5:9b:86:81:6d:ed:56:8f:1a:65:5d:3d:85:10:
2d:01:6e:1b:10:a3:c3:34:65:b7:c1:c4:b2:6d:28:99:e1:12:
76:dc:64:07:8f:83:76:6a:46:87:94:44:90:c3:50:38:8d:7b:
e0:63:7a:34:b4:fc:27:64:4b:56:69:82:e9:96:9c:b6:ce:c4:
5f:66:04:c1:a7:2e:75:d7:30:f2:43:a9:53:c7:5d:d7:b9:97:
2d:c3:a4:63:a0:94:0c:30:4c:28:ed:fc:ad:f3:50:4f:1e:28:
28:b2:74:62:13:7d:8e:f2:b2:a5:fd:46:6a:e9:ae:fa:c1:84:
68:db:b4:a5:fe:da:73:c2:55:2e:60:a6:3e:90:17:8b:33:b1:
c2:87:53:9b:30:8a:6f:12:37:92:db:0a:e5:2c:7f:18:c9:88:
31:e1:48:d2:7b:45:21:34:b7:4a:07:d1:b3:3e:70:4b:cb:df:
21:1b:06:80:54:0b:75:8a:23:47:2b:2d:b0:0e:f8:2c:d5:29:
01:8e:8f:3e:fc:04:9d:d5:b2:61:f3:d4:7c:82:93:7a:24:2c:
23:74:91:fb:05:3f:95:87:c4:95:3d:28:d0:6a:f5:b5:25:20:
07:24:91:83:76:d6:8c:69:70:c1:62:ef:a3:c7:fc:37:5d:2b:
e2:38:20:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVN4vKCTwI3Wdug5L/q/soMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0MmU1NzFkMDAwNmZlN2Y2NjBiMDMwOGNjYzYxYTE2OTll
MzQ5MTcwHhcNMjUwNDIwMjIwMDI1WhcNMjUwNDIxMjIwMDI1WjAzMTEwLwYDVQQD
EyhjYmE5OTFjZjgwOWY0NDJjZmM3NDAxNDA0NmU2NzZmZDFkMTViNDExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+SMbSPV20b2Ciniv2F8rmeatZwKH
/7lMn/gc10OWifSCADUvGah+SVrHNJQ5xqQodjRiFWNjbsO2PqegbBpknWrGWoxx
jYePQzMox5JG2vl69aNH9/+b0bncR+9LYTJEAOB+mBP8IPz2vFbn1O9oGIKx2AMb
07WQ4FT2+ahArCyfMFbh81gIxeFts0UZDH9D+YsGMjyyf/FhJNaNFKMiZzpOIklW
EJSX7uldiixcWBpdvvPwT5Rn4hH2xisPHclkX1iuyi9kBNORLe5uMCnPlWbofKpo
H8YMiXTuVUzNMa5wUNRWfz0Xy/cxU6dalwMcIm/6uXsasyW1AfKvEcgvTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMupkc+An0Qs/HQBQEbmdv0dFbQRMB8GA1UdIwQY
MBaAFHQuVx0ABv5/ZgsDCMzGGhaZ40kXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEM1WEhRQUdfbjltQ3dNSXpNWWFGcG5qU1JjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC8yZTAzYWYtODNhNC00YzlmLTkxMWEt
ZDU4NDRiM2M1MTc3LzEvZEM1WEhRQUdfbjltQ3dNSXpNWWFGcG5qU1JjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC8yZTAzYWYtODNhNC00YzlmLTkxMWEtZDU4NDRiM2M1MTc3
LzEvZEM1WEhRQUdfbjltQ3dNSXpNWWFGcG5qU1JjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkynxI/Wb
hoFt7VaPGmVdPYUQLQFuGxCjwzRlt8HEsm0omeESdtxkB4+DdmpGh5REkMNQOI17
4GN6NLT8J2RLVmmC6Zacts7EX2YEwacuddcw8kOpU8dd17mXLcOkY6CUDDBMKO38
rfNQTx4oKLJ0YhN9jvKypf1Gaumu+sGEaNu0pf7ac8JVLmCmPpAXizOxwodTmzCK
bxI3ktsK5Sx/GMmIMeFI0ntFITS3SgfRsz5wS8vfIRsGgFQLdYojRystsA74LNUp
AY6PPvwEndWyYfPUfIKTeiQsI3SR+wU/lYfElT0o0Gr1tSUgBySRg3bWjGlwwWLv
o8f8N10r4jggSQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:25:33 2025 by rpki-client