Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
File: xfFStqDQBGJ9KF2Hmqg-WEYast8.mft (raw, json)
Hash identifier: Qqll6ez9D+BhdXmM6rKrR+TuhsHXG2KghzGNUIYICCs=
Subject key identifier: D0:6B:1B:AA:92:A5:DB:83:AA:06:DB:64:BA:52:28:D1:E2:60:4B:C4
Authority key identifier: C5:F1:52:B6:A0:D0:04:62:7D:28:5D:87:9A:A8:3E:58:46:1A:B2:DF
Certificate issuer: /CN=c5f152b6a0d004627d285d879aa83e58461ab2df
Certificate serial: 01965EDF4F4FB1EE358CA910AD5AEB1941DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
Manifest number: 1123
Signing time: Tue 22 Apr 2025 19:00:15 +0000
Manifest this update: Tue 22 Apr 2025 19:00:15 +0000
Manifest next update: Wed 23 Apr 2025 19:00:15 +0000
Files and hashes: 1: xfFStqDQBGJ9KF2Hmqg-WEYast8.crl (hash: vpLr5ApJhI/w4/mZ0ixojxf9DEgWvpyfb6Ne3CL1cGs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:df:4f:4f:b1:ee:35:8c:a9:10:ad:5a:eb:19:41:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5f152b6a0d004627d285d879aa83e58461ab2df
Validity
Not Before: Apr 22 19:00:15 2025 GMT
Not After : Apr 23 19:00:15 2025 GMT
Subject: CN=d06b1baa92a5db83aa06db64ba5228d1e2604bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4c:2e:08:7f:ca:0c:c7:e2:44:de:c4:9f:b3:
9b:39:9d:b5:1b:9d:3a:ef:a5:b1:eb:6f:e3:4a:d1:
0f:6e:5c:6e:8e:3a:43:1b:29:8c:9a:90:0e:0a:17:
9f:46:f4:90:fb:82:66:2e:75:e3:71:cb:98:62:87:
c7:c5:f3:2a:aa:50:e8:ad:fc:45:97:01:2f:7b:f8:
34:b0:23:65:ef:09:a3:60:2e:ee:39:e6:70:55:be:
ff:d9:5f:6f:85:a8:68:4b:1b:27:f7:f5:d2:66:48:
4b:8e:90:09:25:37:6f:ac:17:ed:84:43:09:11:b7:
c3:3e:8b:18:2a:23:a2:b7:58:ee:ae:48:71:55:b3:
68:33:85:bd:95:cf:2e:1a:a2:86:11:62:71:dc:af:
c3:6f:21:bd:e5:f7:70:c8:c1:3e:73:7d:7c:80:ad:
f5:e6:98:2e:dd:1a:05:d6:04:82:8c:c3:48:e5:15:
c4:e8:a8:a2:d6:e1:72:12:8d:15:d9:c5:e5:d9:b1:
f3:55:d3:be:6c:d1:f0:84:71:43:eb:d8:26:34:d0:
2b:08:6b:52:78:a5:28:44:e2:f0:43:20:51:62:76:
c7:79:08:7c:12:ee:a6:32:7e:e6:44:68:fa:d8:48:
f2:6c:e4:fb:a7:48:f4:1b:b8:5a:0b:76:ec:0e:ea:
3a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:6B:1B:AA:92:A5:DB:83:AA:06:DB:64:BA:52:28:D1:E2:60:4B:C4
X509v3 Authority Key Identifier:
keyid:C5:F1:52:B6:A0:D0:04:62:7D:28:5D:87:9A:A8:3E:58:46:1A:B2:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:07:8a:65:46:81:03:3f:16:f2:d7:1e:5e:71:58:7b:8f:79:
d6:2e:e6:b8:56:e2:50:c0:4f:32:89:f3:51:9e:03:da:78:a8:
f6:2c:89:43:a7:cc:99:c0:39:07:50:70:47:9f:a1:22:30:13:
fa:df:42:d5:ee:9b:d0:eb:9e:56:3b:5b:39:80:52:6c:fc:20:
c8:e5:d9:34:b4:b3:cc:8b:0c:06:d3:22:c6:ee:9f:5d:35:68:
46:bc:97:cf:9a:20:51:23:33:c8:7c:3f:16:c2:5a:82:ca:bc:
07:ad:d0:db:ea:66:c5:2a:23:2b:c2:79:a0:71:29:e2:2c:f7:
b8:00:57:df:6b:3a:f3:8d:57:9a:12:a8:e0:1b:be:ca:7e:00:
2a:38:4d:03:33:22:5b:02:98:f0:53:f2:21:df:8d:8b:31:59:
28:11:e5:9f:6d:87:0e:47:22:59:cd:e8:7c:11:be:15:6c:e9:
83:ea:94:de:8f:ef:0d:3d:f7:ca:f6:a2:56:56:33:62:08:5e:
ef:5f:cb:1b:cc:2b:ca:9d:05:6c:03:cf:ee:c0:93:15:a9:5a:
c4:3a:d7:18:55:38:6f:5f:e6:99:a1:85:0c:f0:0a:dc:e8:51:
05:a4:6b:1d:25:0c:f0:af:6e:dd:ea:bc:b8:0f:b1:05:df:69:
fc:22:99:e3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZe309Pse41jKkQrVrrGUHaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1ZjE1MmI2YTBkMDA0NjI3ZDI4NWQ4NzlhYTgzZTU4NDYx
YWIyZGYwHhcNMjUwNDIyMTkwMDE1WhcNMjUwNDIzMTkwMDE1WjAzMTEwLwYDVQQD
EyhkMDZiMWJhYTkyYTVkYjgzYWEwNmRiNjRiYTUyMjhkMWUyNjA0YmM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnkwuCH/KDMfiRN7En7ObOZ21G506
76Wx62/jStEPblxujjpDGymMmpAOChefRvSQ+4JmLnXjccuYYofHxfMqqlDorfxF
lwEve/g0sCNl7wmjYC7uOeZwVb7/2V9vhahoSxsn9/XSZkhLjpAJJTdvrBfthEMJ
EbfDPosYKiOit1jurkhxVbNoM4W9lc8uGqKGEWJx3K/DbyG95fdwyME+c318gK31
5pgu3RoF1gSCjMNI5RXE6Kii1uFyEo0V2cXl2bHzVdO+bNHwhHFD69gmNNArCGtS
eKUoROLwQyBRYnbHeQh8Eu6mMn7mRGj62EjybOT7p0j0G7haC3bsDuo6DQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNBrG6qSpduDqgbbZLpSKNHiYEvEMB8GA1UdIwQY
MBaAFMXxUrag0ARifShdh5qoPlhGGrLfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGZGU3RxRFFCR0o5S0YySG1xZy1XRVlhc3Q4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi81M2FkNWEtMGEzNy00ZjY1LWE2YzYt
NzM3ZTc4Yzg3MDEyLzEveGZGU3RxRFFCR0o5S0YySG1xZy1XRVlhc3Q4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi81M2FkNWEtMGEzNy00ZjY1LWE2YzYtNzM3ZTc4Yzg3MDEy
LzEveGZGU3RxRFFCR0o5S0YySG1xZy1XRVlhc3Q4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbgeKZUaB
Az8W8tceXnFYe4951i7muFbiUMBPMonzUZ4D2nio9iyJQ6fMmcA5B1BwR5+hIjAT
+t9C1e6b0OueVjtbOYBSbPwgyOXZNLSzzIsMBtMixu6fXTVoRryXz5ogUSMzyHw/
FsJagsq8B63Q2+pmxSojK8J5oHEp4iz3uABX32s6841XmhKo4Bu+yn4AKjhNAzMi
WwKY8FPyId+NizFZKBHln22HDkciWc3ofBG+FWzpg+qU3o/vDT33yvaiVlYzYghe
71/LG8wryp0FbAPP7sCTFalaxDrXGFU4b1/mmaGFDPAK3OhRBaRrHSUM8K9u3eq8
uA+xBd9p/CKZ4w==
-----END CERTIFICATE-----
Generated at Tue Apr 22 23:28:54 2025 by rpki-client