Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.mft
File: PKap1LWSRrTjNhThpLWRthGOihU.mft (raw, json)
Hash identifier: 1HSMiVhP9lj1KkxDIsIvamMV3DxcGn0eye24muNpZsY=
Subject key identifier: 5D:20:4D:D8:00:56:12:61:03:3F:2A:ED:D1:DD:32:5D:CC:D1:53:D0
Authority key identifier: 3C:A6:A9:D4:B5:92:46:B4:E3:36:14:E1:A4:B5:91:B6:11:8E:8A:15
Certificate issuer: /CN=3ca6a9d4b59246b4e33614e1a4b591b6118e8a15
Certificate serial: 01964F6CCE64329E482F91B275D503B4530E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKap1LWSRrTjNhThpLWRthGOihU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.mft
Manifest number: 109E
Signing time: Sat 19 Apr 2025 19:00:52 +0000
Manifest this update: Sat 19 Apr 2025 19:00:52 +0000
Manifest next update: Sun 20 Apr 2025 19:00:52 +0000
Files and hashes: 1: PKap1LWSRrTjNhThpLWRthGOihU.crl (hash: ytzvByFOqLqsvoFxzlMdjqIRm5xHW57ob7etEY5yaRE=)
2: Szhjvm0y4QI0uwIjWJbCdPZPvps.roa (hash: Y0iaHG2LAJbIgjzTxyOFn6Uuz+FyO1yYuNhr0qnz3To=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKap1LWSRrTjNhThpLWRthGOihU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 19:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6c:ce:64:32:9e:48:2f:91:b2:75:d5:03:b4:53:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca6a9d4b59246b4e33614e1a4b591b6118e8a15
Validity
Not Before: Apr 19 19:00:52 2025 GMT
Not After : Apr 20 19:00:52 2025 GMT
Subject: CN=5d204dd800561261033f2aedd1dd325dccd153d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ba:64:20:b7:da:af:7a:59:75:eb:a9:5d:e1:
14:20:42:1a:5c:b2:0f:e3:64:49:d7:47:ab:12:1c:
32:59:ea:a2:10:b2:eb:c1:76:2a:1b:59:36:9e:3a:
77:4f:a2:16:83:a5:0f:d3:a1:fb:12:46:9b:bf:71:
a3:f9:1b:32:d9:6f:cc:c5:5f:53:20:5e:f4:1d:cb:
98:56:fa:56:81:3a:3d:49:6a:a6:76:f7:95:a1:75:
70:e9:9c:27:86:18:7b:37:0d:f1:8f:70:b7:9d:8c:
a2:0c:8d:9c:12:81:1f:b1:d5:c3:66:3b:8d:59:80:
3c:71:06:25:7e:1b:03:a3:22:42:87:31:b6:fc:84:
23:89:5c:c7:ca:13:11:a7:65:b6:58:0a:18:c6:ef:
37:55:7c:9c:dd:97:f4:50:95:25:e4:c4:f9:54:59:
f8:aa:f4:28:7a:71:11:f5:0e:a9:e2:0b:e3:16:72:
6c:64:1a:12:4d:c3:60:2d:6e:53:54:f1:42:6e:f6:
01:7e:49:bb:e4:b4:55:20:6f:d9:9d:a3:05:35:ce:
43:eb:fc:bc:9b:fe:09:d0:73:41:26:c6:2a:a6:cb:
a9:0b:5f:be:cb:b7:df:66:37:ea:a0:ef:8b:6c:30:
c2:ad:c0:77:cc:99:84:63:36:74:bb:f5:70:06:21:
4f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:20:4D:D8:00:56:12:61:03:3F:2A:ED:D1:DD:32:5D:CC:D1:53:D0
X509v3 Authority Key Identifier:
keyid:3C:A6:A9:D4:B5:92:46:B4:E3:36:14:E1:A4:B5:91:B6:11:8E:8A:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKap1LWSRrTjNhThpLWRthGOihU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/dd6518-bf35-4c58-b81b-94b1493df1f2/1/PKap1LWSRrTjNhThpLWRthGOihU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:31:ae:81:62:36:bf:21:32:16:80:59:8d:de:24:73:1d:0c:
3f:55:99:fc:5a:fb:01:41:6c:b4:0b:45:37:d3:f8:f1:2a:4c:
89:1f:d6:97:78:88:8e:38:00:07:bc:08:47:44:9b:32:2a:73:
83:00:d6:54:d4:84:57:69:04:af:c9:86:6f:41:c7:c8:42:ab:
72:b8:7e:67:b3:35:de:26:40:5d:89:77:ab:49:e8:c0:b3:66:
d4:5d:e9:0f:0b:e4:00:21:62:77:b4:b8:99:17:35:c8:aa:10:
aa:cc:30:93:da:0c:68:71:c5:89:73:3d:eb:ca:f9:fb:65:be:
3f:89:ad:7b:25:3d:05:c0:78:5d:a5:88:99:5f:44:30:0a:f8:
24:a1:e1:fb:8c:aa:b2:21:49:57:f1:a2:ab:df:3f:79:3f:60:
aa:76:cf:04:8a:0e:4c:67:61:cd:d8:88:1f:d0:5c:b3:b2:d8:
71:ae:f1:b2:03:d0:cc:fd:db:1d:c7:8b:d5:bf:82:50:2c:78:
4d:2b:1f:a6:5e:1f:ff:a0:36:79:af:60:7e:8f:16:17:eb:c4:
e1:db:12:9e:26:fd:42:18:bc:94:f6:66:90:e1:29:e6:1d:5c:
ba:7f:fe:bc:3f:0c:06:af:d7:6c:39:9d:69:4e:08:c1:53:71:
1e:84:49:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZPbM5kMp5IL5GyddUDtFMOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjYTZhOWQ0YjU5MjQ2YjRlMzM2MTRlMWE0YjU5MWI2MTE4
ZThhMTUwHhcNMjUwNDE5MTkwMDUyWhcNMjUwNDIwMTkwMDUyWjAzMTEwLwYDVQQD
Eyg1ZDIwNGRkODAwNTYxMjYxMDMzZjJhZWRkMWRkMzI1ZGNjZDE1M2QwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprpkILfar3pZdeupXeEUIEIaXLIP
42RJ10erEhwyWeqiELLrwXYqG1k2njp3T6IWg6UP06H7Ekabv3Gj+Rsy2W/MxV9T
IF70HcuYVvpWgTo9SWqmdveVoXVw6Zwnhhh7Nw3xj3C3nYyiDI2cEoEfsdXDZjuN
WYA8cQYlfhsDoyJChzG2/IQjiVzHyhMRp2W2WAoYxu83VXyc3Zf0UJUl5MT5VFn4
qvQoenER9Q6p4gvjFnJsZBoSTcNgLW5TVPFCbvYBfkm75LRVIG/ZnaMFNc5D6/y8
m/4J0HNBJsYqpsupC1++y7ffZjfqoO+LbDDCrcB3zJmEYzZ0u/VwBiFPuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF0gTdgAVhJhAz8q7dHdMl3M0VPQMB8GA1UdIwQY
MBaAFDymqdS1kka04zYU4aS1kbYRjooVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUEthcDFMV1NSclRqTmhUaHBMV1J0aEdPaWhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9kZDY1MTgtYmYzNS00YzU4LWI4MWIt
OTRiMTQ5M2RmMWYyLzEvUEthcDFMV1NSclRqTmhUaHBMV1J0aEdPaWhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9kZDY1MTgtYmYzNS00YzU4LWI4MWItOTRiMTQ5M2RmMWYy
LzEvUEthcDFMV1NSclRqTmhUaHBMV1J0aEdPaWhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJzGugWI2
vyEyFoBZjd4kcx0MP1WZ/Fr7AUFstAtFN9P48SpMiR/Wl3iIjjgAB7wIR0SbMipz
gwDWVNSEV2kEr8mGb0HHyEKrcrh+Z7M13iZAXYl3q0nowLNm1F3pDwvkACFid7S4
mRc1yKoQqswwk9oMaHHFiXM968r5+2W+P4mteyU9BcB4XaWImV9EMAr4JKHh+4yq
siFJV/Giq98/eT9gqnbPBIoOTGdhzdiIH9Bcs7LYca7xsgPQzP3bHceL1b+CUCx4
TSsfpl4f/6A2ea9gfo8WF+vE4dsSnib9Qhi8lPZmkOEp5h1cun/+vD8MBq/XbDmd
aU4IwVNxHoRJ8w==
-----END CERTIFICATE-----
Generated at Sun Apr 20 05:02:55 2025 by rpki-client