Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
File: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft (raw, json)
Hash identifier: 0AoRYXd9BMKQDrt1brGdVUeOE05u9oVg08Quaohrh+U=
Subject key identifier: E7:11:F0:5B:3E:87:15:06:FD:63:16:44:21:B5:C8:9F:A3:1C:16:05
Authority key identifier: B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
Certificate issuer: /CN=b56daa6f850414a13f650df094506628a46dc12f
Certificate serial: 01964CD9A43BBD6D00F1FA28B90F0A19267A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
Manifest number: 0FF5
Signing time: Sat 19 Apr 2025 07:00:53 +0000
Manifest this update: Sat 19 Apr 2025 07:00:53 +0000
Manifest next update: Sun 20 Apr 2025 07:00:53 +0000
Files and hashes: 1: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl (hash: fsopxCAo1axOIPHRBBkjatkwpKNJv0stB2cOsRqnKgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:d9:a4:3b:bd:6d:00:f1:fa:28:b9:0f:0a:19:26:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56daa6f850414a13f650df094506628a46dc12f
Validity
Not Before: Apr 19 07:00:53 2025 GMT
Not After : Apr 20 07:00:53 2025 GMT
Subject: CN=e711f05b3e871506fd63164421b5c89fa31c1605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cf:5d:dc:3c:ef:c9:ad:dc:39:d7:0c:e8:54:
4c:f4:ee:06:a1:e1:b6:dc:3c:f4:42:0f:95:5f:07:
2e:11:30:66:b5:b8:9d:81:aa:0e:18:e0:47:3e:bb:
c7:ae:1d:4c:e0:81:87:57:09:34:8f:2d:28:e8:66:
36:86:03:09:d2:3d:10:58:32:63:bb:24:9c:be:9d:
bf:a5:90:b6:5c:b4:15:2c:41:35:6e:e8:81:09:b5:
55:9c:3c:2e:9b:d5:fc:90:f7:c6:8c:37:fa:ff:e1:
a2:ae:99:5f:89:32:9f:1d:a5:d9:88:bd:b6:90:eb:
33:92:39:4b:52:55:15:81:be:b0:6c:fa:bc:a3:fd:
46:93:97:df:6e:7c:ce:6c:f1:70:9a:ba:7c:a3:79:
91:47:a8:1b:57:b1:cb:14:c2:ce:2f:ca:07:da:f3:
ab:85:0f:fd:69:2a:98:70:7e:67:ce:0b:76:4b:13:
3a:6f:62:a7:68:16:d4:9c:54:79:6d:07:2a:6e:62:
a9:aa:c9:49:c2:71:df:d4:20:35:24:74:d8:12:0e:
21:fe:b6:89:ae:4f:d1:0f:1e:4f:da:f8:5b:6f:29:
3c:fa:fb:09:d7:55:65:a5:1e:50:21:61:5c:d7:0a:
1f:90:2e:28:2f:1c:ca:2f:16:5a:7f:20:3e:2e:4c:
06:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:11:F0:5B:3E:87:15:06:FD:63:16:44:21:B5:C8:9F:A3:1C:16:05
X509v3 Authority Key Identifier:
keyid:B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:9a:4b:2b:b9:6e:ea:82:fe:e1:46:5b:2d:1d:f5:c0:c0:cf:
53:e4:58:15:da:34:29:1d:22:36:72:7d:0a:5f:17:2c:48:3e:
75:7d:e0:5c:fd:e4:3a:5f:dd:81:11:b8:40:51:02:55:69:71:
07:e3:df:ff:92:b7:04:66:fd:7e:4d:d1:2a:17:bd:4f:d2:58:
4e:49:1e:4c:1c:97:0d:a8:4f:97:a7:a6:f9:2b:09:e8:3d:08:
8e:7e:c9:0f:37:b8:24:d9:45:8a:13:b4:72:36:99:17:11:76:
e3:73:5f:db:02:8d:95:b7:bc:de:b5:c4:99:ff:0e:16:7d:28:
23:a3:5d:77:f2:0d:29:54:10:e8:15:ee:9f:cd:da:88:41:29:
95:ab:dd:44:91:3d:39:70:74:74:9e:ce:96:a5:93:55:f8:bf:
41:6f:de:78:73:be:21:e5:c1:3b:6b:d4:ec:72:db:7d:19:e5:
c6:b6:5f:d0:90:94:cb:61:32:76:d8:ce:08:08:5e:83:e4:88:
8e:93:87:1b:67:d0:7e:92:3e:ab:c3:64:ae:b1:80:39:3f:3a:
f3:4b:96:3a:54:a5:7f:6a:d1:95:52:6f:3e:fc:bd:6f:a4:d1:
74:0b:bc:db:4d:c2:24:9f:55:ca:20:30:60:29:f7:3d:a5:63:
56:6a:bc:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZM2aQ7vW0A8foouQ8KGSZ6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NmRhYTZmODUwNDE0YTEzZjY1MGRmMDk0NTA2NjI4YTQ2
ZGMxMmYwHhcNMjUwNDE5MDcwMDUzWhcNMjUwNDIwMDcwMDUzWjAzMTEwLwYDVQQD
EyhlNzExZjA1YjNlODcxNTA2ZmQ2MzE2NDQyMWI1Yzg5ZmEzMWMxNjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyc9d3Dzvya3cOdcM6FRM9O4GoeG2
3Dz0Qg+VXwcuETBmtbidgaoOGOBHPrvHrh1M4IGHVwk0jy0o6GY2hgMJ0j0QWDJj
uyScvp2/pZC2XLQVLEE1buiBCbVVnDwum9X8kPfGjDf6/+GirplfiTKfHaXZiL22
kOszkjlLUlUVgb6wbPq8o/1Gk5ffbnzObPFwmrp8o3mRR6gbV7HLFMLOL8oH2vOr
hQ/9aSqYcH5nzgt2SxM6b2KnaBbUnFR5bQcqbmKpqslJwnHf1CA1JHTYEg4h/raJ
rk/RDx5P2vhbbyk8+vsJ11VlpR5QIWFc1wofkC4oLxzKLxZafyA+LkwGGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOcR8Fs+hxUG/WMWRCG1yJ+jHBYFMB8GA1UdIwQY
MBaAFLVtqm+FBBShP2UN8JRQZiikbcEvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFcycWI0VUVGS0VfWlEzd2xGQm1LS1J0d1M4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8zYmVlMDEtMWZiOC00N2UyLWI3NjYt
ZmUwYTJhYzA4NjlmLzEvdFcycWI0VUVGS0VfWlEzd2xGQm1LS1J0d1M4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8zYmVlMDEtMWZiOC00N2UyLWI3NjYtZmUwYTJhYzA4Njlm
LzEvdFcycWI0VUVGS0VfWlEzd2xGQm1LS1J0d1M4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQJpLK7lu
6oL+4UZbLR31wMDPU+RYFdo0KR0iNnJ9Cl8XLEg+dX3gXP3kOl/dgRG4QFECVWlx
B+Pf/5K3BGb9fk3RKhe9T9JYTkkeTByXDahPl6em+SsJ6D0Ijn7JDze4JNlFihO0
cjaZFxF243Nf2wKNlbe83rXEmf8OFn0oI6Ndd/INKVQQ6BXun83aiEEplavdRJE9
OXB0dJ7OlqWTVfi/QW/eeHO+IeXBO2vU7HLbfRnlxrZf0JCUy2EydtjOCAheg+SI
jpOHG2fQfpI+q8NkrrGAOT8680uWOlSlf2rRlVJvPvy9b6TRdAu8203CJJ9VyiAw
YCn3PaVjVmq8vw==
-----END CERTIFICATE-----
Generated at Sat Apr 19 17:15:05 2025 by rpki-client