Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft
File: Th1cISsoF0fIw-xuhm4Vs5TFu98.mft (raw, json)
Hash identifier: bMIiqSjfD8Pz/6tbuMRxft5xjxmR/FnuclXXYIKyEbM=
Subject key identifier: 27:46:47:24:3A:28:A5:E4:DB:71:EA:85:53:01:7B:03:07:AC:2E:9F
Authority key identifier: 4E:1D:5C:21:2B:28:17:47:C8:C3:EC:6E:86:6E:15:B3:94:C5:BB:DF
Certificate issuer: /CN=4e1d5c212b281747c8c3ec6e866e15b394c5bbdf
Certificate serial: 01964E22CE6D7AA0DB32ED443679957C44ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Th1cISsoF0fIw-xuhm4Vs5TFu98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft
Manifest number: 0C32
Signing time: Sat 19 Apr 2025 13:00:25 +0000
Manifest this update: Sat 19 Apr 2025 13:00:25 +0000
Manifest next update: Sun 20 Apr 2025 13:00:25 +0000
Files and hashes: 1: Th1cISsoF0fIw-xuhm4Vs5TFu98.crl (hash: nh/kWsfAyoD8pe5Rom4jOPvuzlLdEhsoQEO0BEG+P1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft
rsync://rpki.ripe.net/repository/DEFAULT/Th1cISsoF0fIw-xuhm4Vs5TFu98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:22:ce:6d:7a:a0:db:32:ed:44:36:79:95:7c:44:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e1d5c212b281747c8c3ec6e866e15b394c5bbdf
Validity
Not Before: Apr 19 13:00:25 2025 GMT
Not After : Apr 20 13:00:25 2025 GMT
Subject: CN=274647243a28a5e4db71ea8553017b0307ac2e9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e8:d9:86:bb:00:57:f1:e6:5e:d6:15:f8:1a:
b1:8f:68:77:11:0d:14:d5:90:73:50:57:a7:7c:6d:
0e:08:c5:ad:bb:74:87:55:4e:c1:da:0a:43:34:5e:
fc:de:9f:3b:bd:27:c8:3c:22:8d:ef:bd:c1:a1:55:
59:78:c1:da:2c:b2:79:29:c4:fa:46:da:6a:53:c4:
f8:30:da:6c:be:49:86:3e:bb:ed:86:81:c3:76:bb:
49:9c:96:f7:ad:a0:c8:e2:12:35:1d:97:9d:cf:62:
fe:22:18:55:61:78:bf:06:f5:bd:90:aa:a5:43:99:
4c:1a:cb:39:73:21:ea:27:5a:16:13:3e:c0:5a:17:
2c:6f:3b:7c:be:bc:56:39:8e:87:f3:3e:5f:e7:d3:
83:0e:dc:3a:fa:4f:26:58:10:94:27:e6:78:59:96:
20:d2:0d:40:53:70:41:0f:b8:ff:52:5c:06:ab:10:
7f:93:bf:65:85:02:91:c9:7d:5c:75:3d:36:98:10:
82:73:e4:10:5a:1c:30:80:60:c1:d6:a7:ff:49:50:
1c:ea:5e:3c:2e:59:4b:56:a4:df:4b:9b:e0:5f:ba:
0d:f6:f2:65:76:4e:cc:b2:8f:8a:e8:c9:4e:c9:4a:
d8:f1:11:d4:5a:c1:15:9c:1f:78:35:36:d4:61:f8:
fc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:46:47:24:3A:28:A5:E4:DB:71:EA:85:53:01:7B:03:07:AC:2E:9F
X509v3 Authority Key Identifier:
keyid:4E:1D:5C:21:2B:28:17:47:C8:C3:EC:6E:86:6E:15:B3:94:C5:BB:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Th1cISsoF0fIw-xuhm4Vs5TFu98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:75:17:0b:ca:6d:e0:cf:ec:62:7c:8f:d2:be:ea:3a:84:3b:
35:76:96:1e:27:53:de:42:a5:4b:49:a6:46:32:fb:fb:26:30:
db:de:db:fb:b5:49:72:22:07:2a:82:11:92:da:c2:69:3b:c4:
98:d6:7b:42:90:e6:d4:43:9e:96:86:c0:ec:c4:b7:d2:e9:80:
c2:c9:be:12:be:00:02:74:3e:e0:1c:35:4c:be:a8:ff:04:0b:
c1:a0:de:7f:82:de:be:ba:a1:fe:2f:5e:30:fe:a3:36:1b:7f:
99:91:3f:66:f6:c8:49:fc:24:f9:1b:bd:de:3b:24:1a:a1:d3:
ad:f7:2e:ae:7c:0c:f2:2b:15:a1:b3:39:49:79:02:d5:49:d7:
3f:cf:6d:a3:c9:67:a7:8c:6f:32:dd:a8:e1:2e:d6:fb:d6:f8:
57:2f:52:22:e2:ee:d1:ba:70:d5:4e:9b:40:04:aa:a3:ad:0f:
91:d2:f1:e6:2d:13:20:8a:be:90:c4:ae:4c:d7:12:00:4f:48:
43:bd:1c:2e:dd:c6:44:06:2f:59:1e:06:d7:0b:33:14:a5:6d:
8e:73:36:d2:dd:14:a6:12:09:61:5d:74:a6:0d:5b:16:58:6b:
f9:8c:73:d5:cf:fa:b6:5c:e6:fd:49:d2:30:62:15:31:aa:cf:
bf:ba:49:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZOIs5teqDbMu1ENnmVfETtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlMWQ1YzIxMmIyODE3NDdjOGMzZWM2ZTg2NmUxNWIzOTRj
NWJiZGYwHhcNMjUwNDE5MTMwMDI1WhcNMjUwNDIwMTMwMDI1WjAzMTEwLwYDVQQD
EygyNzQ2NDcyNDNhMjhhNWU0ZGI3MWVhODU1MzAxN2IwMzA3YWMyZTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ejZhrsAV/HmXtYV+Bqxj2h3EQ0U
1ZBzUFenfG0OCMWtu3SHVU7B2gpDNF783p87vSfIPCKN773BoVVZeMHaLLJ5KcT6
RtpqU8T4MNpsvkmGPrvthoHDdrtJnJb3raDI4hI1HZedz2L+IhhVYXi/BvW9kKql
Q5lMGss5cyHqJ1oWEz7AWhcsbzt8vrxWOY6H8z5f59ODDtw6+k8mWBCUJ+Z4WZYg
0g1AU3BBD7j/UlwGqxB/k79lhQKRyX1cdT02mBCCc+QQWhwwgGDB1qf/SVAc6l48
LllLVqTfS5vgX7oN9vJldk7Mso+K6MlOyUrY8RHUWsEVnB94NTbUYfj8OwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCdGRyQ6KKXk23HqhVMBewMHrC6fMB8GA1UdIwQY
MBaAFE4dXCErKBdHyMPsboZuFbOUxbvfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGgxY0lTc29GMGZJdy14dWhtNFZzNVRGdTk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8yNzc1MDMtODJlMy00YzE3LTk2OTkt
NzEyZTI3NjFkYWY1LzEvVGgxY0lTc29GMGZJdy14dWhtNFZzNVRGdTk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi8yNzc1MDMtODJlMy00YzE3LTk2OTktNzEyZTI3NjFkYWY1
LzEvVGgxY0lTc29GMGZJdy14dWhtNFZzNVRGdTk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh3UXC8pt
4M/sYnyP0r7qOoQ7NXaWHidT3kKlS0mmRjL7+yYw297b+7VJciIHKoIRktrCaTvE
mNZ7QpDm1EOelobA7MS30umAwsm+Er4AAnQ+4Bw1TL6o/wQLwaDef4Levrqh/i9e
MP6jNht/mZE/ZvbISfwk+Ru93jskGqHTrfcurnwM8isVobM5SXkC1UnXP89to8ln
p4xvMt2o4S7W+9b4Vy9SIuLu0bpw1U6bQASqo60PkdLx5i0TIIq+kMSuTNcSAE9I
Q70cLt3GRAYvWR4G1wszFKVtjnM20t0UphIJYV10pg1bFlhr+Yxz1c/6tlzm/UnS
MGIVMarPv7pJZQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 17:51:33 2025 by rpki-client