Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
File: 70Ku0OkbI9DNy_skrIObDb5qoEs.mft (raw, json)
Hash identifier: swkUZ2mofmAyp+Jzi7mma84ZTPmCiNcih4mD9UiPLTM=
Subject key identifier: 91:72:CD:EF:5D:93:C3:C9:E4:C6:58:FF:53:1F:8E:58:62:09:91:5C
Authority key identifier: EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
Certificate issuer: /CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Certificate serial: 01958F9876134DC1A8A37430E9E55B0E65D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
Manifest number: 0A0D
Signing time: Thu 13 Mar 2025 13:01:28 +0000
Manifest this update: Thu 13 Mar 2025 13:01:28 +0000
Manifest next update: Fri 14 Mar 2025 13:01:28 +0000
Files and hashes: 1: 70Ku0OkbI9DNy_skrIObDb5qoEs.crl (hash: tq3U4B/nokNCZg6UcVg7YjLoRLOW0bLvHnw6/BLUIrA=)
2: FiLJrOB6VSbXcUW10ayq5u0-45c.roa (hash: SVzm6u7ARr2O1cZhcAUWJuayXj1RRfV/z3YIwyKiXZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:98:76:13:4d:c1:a8:a3:74:30:e9:e5:5b:0e:65:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Validity
Not Before: Mar 13 13:01:28 2025 GMT
Not After : Mar 14 13:01:28 2025 GMT
Subject: CN=9172cdef5d93c3c9e4c658ff531f8e586209915c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a5:54:38:6c:15:84:5c:ca:28:67:d8:16:2d:
3f:48:23:db:b2:c2:29:0e:51:44:46:8d:9f:c2:90:
fd:e8:1c:f5:a8:7d:10:77:89:a9:a8:fc:f2:45:ec:
69:d6:5a:ea:3d:99:02:67:75:3b:2a:87:ee:6d:ca:
66:30:08:10:a4:da:c8:08:8f:08:98:df:16:f7:14:
a5:29:7f:94:49:ac:22:50:12:f0:ac:a7:de:32:41:
9c:ff:0c:07:a3:d5:51:7f:8b:91:70:98:e7:81:db:
3e:88:30:fe:32:9f:a0:fd:8d:0d:69:12:8f:b4:e4:
19:e7:c9:51:48:58:06:f1:8a:58:db:2d:4e:f9:7f:
8a:75:69:e9:59:ef:83:00:00:75:81:13:d9:77:c3:
59:c5:83:a2:05:d3:31:81:62:73:ca:a3:72:5b:a5:
43:7f:36:37:2f:83:7f:99:36:12:1a:bb:69:49:99:
7e:99:fd:7f:d3:6e:76:b7:df:be:ec:93:93:2f:7b:
43:12:cd:c6:82:c9:70:a0:14:78:6b:f4:72:e6:95:
f3:fe:52:37:ca:c7:6d:d2:63:3f:6d:4b:3e:87:98:
6d:38:69:60:b8:d3:47:5c:43:08:87:05:a5:ff:3e:
87:65:d2:78:82:3f:17:46:b1:e0:04:23:6d:6f:ec:
16:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:72:CD:EF:5D:93:C3:C9:E4:C6:58:FF:53:1F:8E:58:62:09:91:5C
X509v3 Authority Key Identifier:
keyid:EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:fb:5c:fd:32:78:11:13:7a:8e:b7:49:14:82:53:c2:b0:b0:
3e:eb:af:47:ec:47:3d:c3:ed:66:f6:8e:5b:ed:03:4c:ec:77:
ae:75:da:d1:aa:c3:38:84:5a:74:3d:2d:15:76:45:c7:0d:a9:
4e:99:f9:30:cb:a1:0e:2a:43:48:e3:40:39:29:0a:0e:21:53:
97:b5:79:17:91:ba:0d:59:de:d7:92:39:de:ca:2a:7c:12:36:
11:e9:d3:a4:8f:08:99:fd:3e:d3:aa:59:5b:ab:6a:bb:b0:b3:
b4:05:f1:2d:34:23:d5:df:ec:47:78:59:4d:95:4c:e8:e8:1e:
b6:c0:94:4f:0e:87:f8:4c:7a:19:e6:21:90:6e:bb:5f:d0:2d:
e5:d5:47:f2:87:a3:a8:5f:13:dd:a4:ae:22:2a:f5:7c:71:45:
1d:5e:2b:de:cc:28:62:2f:e9:48:4a:f9:34:a8:f0:c6:b4:d3:
b8:7d:64:e6:47:42:8d:1a:10:3f:5c:8a:1b:c5:22:17:52:ad:
50:0c:9a:a9:f6:9a:f5:73:ac:05:77:08:31:f7:d0:92:0d:93:
04:71:1f:12:38:2e:a3:b5:9c:fb:fc:f6:f5:ce:42:88:0d:ba:
75:98:20:b1:79:88:1f:53:ae:4b:6e:62:67:7d:a5:1b:21:c4:
c1:d9:42:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWPmHYTTcGoo3Qw6eVbDmXWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmNDJhZWQwZTkxYjIzZDBjZGNiZmIyNGFjODM5YjBkYmU2
YWEwNGIwHhcNMjUwMzEzMTMwMTI4WhcNMjUwMzE0MTMwMTI4WjAzMTEwLwYDVQQD
Eyg5MTcyY2RlZjVkOTNjM2M5ZTRjNjU4ZmY1MzFmOGU1ODYyMDk5MTVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqVUOGwVhFzKKGfYFi0/SCPbssIp
DlFERo2fwpD96Bz1qH0Qd4mpqPzyRexp1lrqPZkCZ3U7KofubcpmMAgQpNrICI8I
mN8W9xSlKX+USawiUBLwrKfeMkGc/wwHo9VRf4uRcJjngds+iDD+Mp+g/Y0NaRKP
tOQZ58lRSFgG8YpY2y1O+X+KdWnpWe+DAAB1gRPZd8NZxYOiBdMxgWJzyqNyW6VD
fzY3L4N/mTYSGrtpSZl+mf1/0252t9++7JOTL3tDEs3GgslwoBR4a/Ry5pXz/lI3
ysdt0mM/bUs+h5htOGlguNNHXEMIhwWl/z6HZdJ4gj8XRrHgBCNtb+wWDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJFyze9dk8PJ5MZY/1MfjlhiCZFcMB8GA1UdIwQY
MBaAFO9CrtDpGyPQzcv7JKyDmw2+aqBLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzBLdTBPa2JJOUROeV9za3JJT2JEYjVxb0VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9iZDc1YTItZmM2ZS00YTg2LTllZGYt
NjY5OTA5ZTExY2UzLzEvNzBLdTBPa2JJOUROeV9za3JJT2JEYjVxb0VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9iZDc1YTItZmM2ZS00YTg2LTllZGYtNjY5OTA5ZTExY2Uz
LzEvNzBLdTBPa2JJOUROeV9za3JJT2JEYjVxb0VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqvtc/TJ4
ERN6jrdJFIJTwrCwPuuvR+xHPcPtZvaOW+0DTOx3rnXa0arDOIRadD0tFXZFxw2p
Tpn5MMuhDipDSONAOSkKDiFTl7V5F5G6DVne15I53soqfBI2EenTpI8Imf0+06pZ
W6tqu7CztAXxLTQj1d/sR3hZTZVM6OgetsCUTw6H+Ex6GeYhkG67X9At5dVH8oej
qF8T3aSuIir1fHFFHV4r3swoYi/pSEr5NKjwxrTTuH1k5kdCjRoQP1yKG8UiF1Kt
UAyaqfaa9XOsBXcIMffQkg2TBHEfEjguo7Wc+/z29c5CiA26dZggsXmIH1OuS25i
Z32lGyHEwdlCgA==
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:49:17 2025 by rpki-client