Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.mft
File: rK67C7Ozijz0QMgf97PhaTMqpm0.mft (raw, json)
Hash identifier: fxxlmqgXCi/v8/UD0etoKFYYs5B3huHP51567E54JZU=
Subject key identifier: D1:0A:80:4A:F5:8B:B1:69:57:26:BE:E7:BA:14:06:E2:9D:9D:B8:9C
Authority key identifier: AC:AE:BB:0B:B3:B3:8A:3C:F4:40:C8:1F:F7:B3:E1:69:33:2A:A6:6D
Certificate issuer: /CN=acaebb0bb3b38a3cf440c81ff7b3e169332aa66d
Certificate serial: 01965537D488DFFFD35D38C26651B155DC9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rK67C7Ozijz0QMgf97PhaTMqpm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.mft
Manifest number: 1105
Signing time: Sun 20 Apr 2025 22:00:44 +0000
Manifest this update: Sun 20 Apr 2025 22:00:44 +0000
Manifest next update: Mon 21 Apr 2025 22:00:44 +0000
Files and hashes: 1: rK67C7Ozijz0QMgf97PhaTMqpm0.crl (hash: oLseihdKhqXct3tgZgZXyMKH/0lqLUP9tVitoP3TkXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rK67C7Ozijz0QMgf97PhaTMqpm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:d4:88:df:ff:d3:5d:38:c2:66:51:b1:55:dc:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acaebb0bb3b38a3cf440c81ff7b3e169332aa66d
Validity
Not Before: Apr 20 22:00:44 2025 GMT
Not After : Apr 21 22:00:44 2025 GMT
Subject: CN=d10a804af58bb1695726bee7ba1406e29d9db89c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:21:67:5a:81:f4:e5:5e:8e:0e:a2:f5:56:66:
af:7c:e8:67:3d:6d:e6:40:be:7f:1d:25:11:17:01:
71:5e:84:d3:a1:9a:8f:ee:29:7d:75:be:c5:b2:0f:
67:67:08:a9:3c:6d:fa:9a:68:60:b1:0e:b9:ba:da:
bf:cd:db:50:1e:a5:56:0a:e8:e5:d2:5a:91:d6:67:
41:22:2e:61:f2:0d:5d:4b:77:d3:8e:82:a0:c2:de:
94:f2:a5:5f:39:d0:a4:75:57:18:e8:97:fb:d8:2e:
24:0b:d4:85:da:1b:3c:3b:49:5f:33:d6:ce:4a:c2:
f8:67:3c:63:a1:f9:af:be:12:c8:0f:21:c4:d3:00:
63:76:46:41:e9:f4:ce:a3:18:4b:7d:ab:e4:b8:a2:
ef:6e:93:6f:ec:85:98:82:28:95:2b:cd:b4:8d:33:
5f:9f:68:d8:e8:29:d3:bb:c7:63:5f:8a:f9:0a:e6:
49:5f:5f:54:b3:d3:a8:2e:c8:56:57:29:81:12:6e:
4a:b8:87:91:f9:6c:9d:73:ba:3b:a7:ed:fa:82:1e:
d7:ea:72:ce:5c:3f:8c:de:d8:43:66:a2:32:ce:dc:
bc:8a:f0:ed:f3:7f:52:97:ba:76:2d:3a:de:ea:7c:
60:54:7a:ac:f6:b8:8c:ba:0d:6c:06:c0:4f:54:b4:
ce:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:0A:80:4A:F5:8B:B1:69:57:26:BE:E7:BA:14:06:E2:9D:9D:B8:9C
X509v3 Authority Key Identifier:
keyid:AC:AE:BB:0B:B3:B3:8A:3C:F4:40:C8:1F:F7:B3:E1:69:33:2A:A6:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rK67C7Ozijz0QMgf97PhaTMqpm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/807e35-88f7-435b-84a8-d14bd3d77822/1/rK67C7Ozijz0QMgf97PhaTMqpm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:b8:ad:85:e2:25:6d:46:b9:e0:b8:8f:a0:ed:19:ac:67:20:
d4:7a:45:b1:66:88:93:36:ff:d0:42:ed:65:6c:d4:01:8e:df:
71:00:c8:34:5b:67:eb:57:d3:dc:1c:a4:66:29:a6:d7:93:56:
b8:51:97:5f:4b:cd:95:da:55:21:70:f8:42:4a:9d:58:e8:56:
4b:1b:8f:ec:2a:03:43:4e:ef:21:0d:f6:a4:b5:58:a0:b0:90:
a0:06:97:3e:ee:26:87:5f:0d:47:3a:80:6e:2b:ee:ce:7b:bb:
68:8b:08:3a:34:f8:a7:6b:f4:1c:91:d0:49:3f:3a:36:80:7f:
3f:3e:fd:ed:76:7e:86:27:47:b1:b3:8b:ea:79:cf:6d:c8:1c:
8e:7a:53:44:52:d7:70:c4:60:76:45:e3:46:c8:f7:ea:1f:d8:
31:06:89:1c:87:6c:58:b4:80:6e:e7:d9:34:e3:53:cd:6e:b0:
2a:9f:d8:d5:bf:27:0a:4a:f7:aa:0f:d0:4b:f0:71:4c:7a:60:
07:7f:f2:c1:50:a5:ff:b8:a6:fa:4f:20:99:96:1f:e9:84:30:
c6:cb:0f:df:90:86:d0:ea:27:93:f0:ef:6d:ae:4c:9e:a9:e5:
46:06:1a:2d:4e:1c:16:22:f9:23:0b:cb:8a:b1:f5:7d:89:e1:
1e:9e:88:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVN9SI3//TXTjCZlGxVdyeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjYWViYjBiYjNiMzhhM2NmNDQwYzgxZmY3YjNlMTY5MzMy
YWE2NmQwHhcNMjUwNDIwMjIwMDQ0WhcNMjUwNDIxMjIwMDQ0WjAzMTEwLwYDVQQD
EyhkMTBhODA0YWY1OGJiMTY5NTcyNmJlZTdiYTE0MDZlMjlkOWRiODljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5yFnWoH05V6ODqL1VmavfOhnPW3m
QL5/HSURFwFxXoTToZqP7il9db7Fsg9nZwipPG36mmhgsQ65utq/zdtQHqVWCujl
0lqR1mdBIi5h8g1dS3fTjoKgwt6U8qVfOdCkdVcY6Jf72C4kC9SF2hs8O0lfM9bO
SsL4ZzxjofmvvhLIDyHE0wBjdkZB6fTOoxhLfavkuKLvbpNv7IWYgiiVK820jTNf
n2jY6CnTu8djX4r5CuZJX19Us9OoLshWVymBEm5KuIeR+Wydc7o7p+36gh7X6nLO
XD+M3thDZqIyzty8ivDt839Sl7p2LTre6nxgVHqs9riMug1sBsBPVLTOuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNEKgEr1i7FpVya+57oUBuKdnbicMB8GA1UdIwQY
MBaAFKyuuwuzs4o89EDIH/ez4WkzKqZtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcks2N0M3T3ppanowUU1nZjk3UGhhVE1xcG0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS84MDdlMzUtODhmNy00MzViLTg0YTgt
ZDE0YmQzZDc3ODIyLzEvcks2N0M3T3ppanowUU1nZjk3UGhhVE1xcG0wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS84MDdlMzUtODhmNy00MzViLTg0YTgtZDE0YmQzZDc3ODIy
LzEvcks2N0M3T3ppanowUU1nZjk3UGhhVE1xcG0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC7itheIl
bUa54LiPoO0ZrGcg1HpFsWaIkzb/0ELtZWzUAY7fcQDINFtn61fT3BykZimm15NW
uFGXX0vNldpVIXD4QkqdWOhWSxuP7CoDQ07vIQ32pLVYoLCQoAaXPu4mh18NRzqA
bivuznu7aIsIOjT4p2v0HJHQST86NoB/Pz797XZ+hidHsbOL6nnPbcgcjnpTRFLX
cMRgdkXjRsj36h/YMQaJHIdsWLSAbufZNONTzW6wKp/Y1b8nCkr3qg/QS/BxTHpg
B3/ywVCl/7im+k8gmZYf6YQwxssP35CG0Oonk/Dvba5MnqnlRgYaLU4cFiL5IwvL
irH1fYnhHp6I/A==
-----END CERTIFICATE-----
Generated at Mon Apr 21 03:54:53 2025 by rpki-client