Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
File: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft (raw, json)
Hash identifier: FU36nQ+lEQMnlt2TMMUaNhAxbwMX41IOtjXJ+xVHUeU=
Subject key identifier: 9F:CD:DF:0A:29:3A:CC:CB:DC:A4:A9:A2:FF:A4:3A:6A:5B:40:9E:B8
Authority key identifier: FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
Certificate issuer: /CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Certificate serial: 019651C89E71A4B5EA9EEB8B612BB0597BFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
Manifest number: 0C6C
Signing time: Sun 20 Apr 2025 06:00:24 +0000
Manifest this update: Sun 20 Apr 2025 06:00:24 +0000
Manifest next update: Mon 21 Apr 2025 06:00:24 +0000
Files and hashes: 1: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl (hash: CHh2qm7HCQ7jpxoN/z2DkqDtJUbWTfduVxu982kcw4M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c8:9e:71:a4:b5:ea:9e:eb:8b:61:2b:b0:59:7b:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Validity
Not Before: Apr 20 06:00:24 2025 GMT
Not After : Apr 21 06:00:24 2025 GMT
Subject: CN=9fcddf0a293acccbdca4a9a2ffa43a6a5b409eb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6e:2f:ba:f9:82:5c:9d:2a:1f:e5:e3:6f:0c:
74:f9:08:f1:f1:21:c9:da:00:87:6d:4a:f2:5d:36:
ee:19:0a:a9:1c:78:45:3e:99:be:22:ee:37:17:22:
33:bc:12:cc:0c:05:a1:f9:3d:0b:ab:14:ed:a6:ff:
5f:17:47:69:4b:0f:61:b4:d3:8f:06:49:64:07:4f:
c9:fb:05:ab:cf:a9:0e:10:62:68:f3:06:41:f7:e6:
ae:ea:12:14:1b:f3:40:36:70:56:0f:3e:58:8e:1c:
5b:15:a8:e0:5c:72:d2:93:ef:70:56:ec:d5:5a:b2:
90:dc:28:5c:24:ca:58:e2:fa:3f:c2:52:11:71:95:
37:85:27:21:c5:7d:36:09:78:75:38:ed:5b:b9:09:
a7:89:06:9b:6a:50:eb:46:72:68:ff:a9:6b:56:da:
f8:45:0b:33:c6:71:e8:40:2f:a1:96:52:66:3c:da:
98:e6:42:58:ce:ea:ec:c3:1f:32:75:1e:1d:45:58:
cf:72:f2:d0:7e:ee:d2:46:79:3e:5b:20:78:ff:01:
56:4f:b0:ad:8a:76:d9:ae:4c:2d:1d:0a:26:15:dc:
70:65:86:77:7e:01:62:13:1b:f7:9c:8a:69:ae:7c:
fa:10:4f:dc:39:08:cf:eb:6f:a3:cb:20:8d:86:ca:
b0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:CD:DF:0A:29:3A:CC:CB:DC:A4:A9:A2:FF:A4:3A:6A:5B:40:9E:B8
X509v3 Authority Key Identifier:
keyid:FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:3b:a5:9d:a1:01:87:57:a7:8c:44:bb:c8:30:38:87:35:a6:
7d:6e:9e:c0:f3:a7:17:97:a4:06:32:1b:14:91:b8:10:25:55:
83:a0:de:a4:13:dc:86:78:65:20:92:dd:42:c9:0e:fc:9d:fd:
b5:c6:bb:4e:8c:8b:43:4c:57:05:a2:cf:cd:75:62:36:3e:4c:
78:db:ab:75:55:8b:28:2a:40:34:76:99:65:0b:88:b6:da:88:
86:66:64:c3:8c:f6:ac:ac:09:a0:4c:42:b5:04:36:df:d2:2f:
0b:ca:92:08:33:29:da:23:f4:aa:09:39:8c:58:45:58:ab:41:
39:ff:ed:3a:e7:a7:d6:6f:c9:6a:1d:9b:c2:66:a9:21:0b:f0:
b1:f0:70:7a:a9:e5:55:e1:76:49:e1:2c:09:08:e6:41:0f:b1:
52:db:4e:36:2c:56:a8:4b:1f:7e:f5:c0:7a:62:75:7f:e2:08:
49:03:29:c6:19:0f:8b:00:37:f6:07:6c:ae:3e:7e:1b:ef:7c:
cf:90:aa:f5:cf:d2:5b:aa:5b:6f:e4:ad:9d:b9:5a:77:1f:b4:
74:95:b4:f1:1d:39:a7:cb:22:6b:19:e4:2f:cf:18:cc:f7:db:
dd:33:6f:56:e0:b8:03:25:b4:3e:2d:fb:27:12:d3:1f:83:0e:
62:0e:40:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZRyJ5xpLXqnuuLYSuwWXv/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkMzg1YTYxNjM5OGU0MTZjNzBkY2IzMjI1NjZmOTNlM2Qy
ZmJmMTMwHhcNMjUwNDIwMDYwMDI0WhcNMjUwNDIxMDYwMDI0WjAzMTEwLwYDVQQD
Eyg5ZmNkZGYwYTI5M2FjY2NiZGNhNGE5YTJmZmE0M2E2YTViNDA5ZWI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx24vuvmCXJ0qH+Xjbwx0+Qjx8SHJ
2gCHbUryXTbuGQqpHHhFPpm+Iu43FyIzvBLMDAWh+T0LqxTtpv9fF0dpSw9htNOP
BklkB0/J+wWrz6kOEGJo8wZB9+au6hIUG/NANnBWDz5YjhxbFajgXHLSk+9wVuzV
WrKQ3ChcJMpY4vo/wlIRcZU3hSchxX02CXh1OO1buQmniQabalDrRnJo/6lrVtr4
RQszxnHoQC+hllJmPNqY5kJYzurswx8ydR4dRVjPcvLQfu7SRnk+WyB4/wFWT7Ct
inbZrkwtHQomFdxwZYZ3fgFiExv3nIpprnz6EE/cOQjP62+jyyCNhsqwQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ/N3wopOszL3KSpov+kOmpbQJ64MB8GA1UdIwQY
MBaAFP04WmFjmOQWxw3LMiVm+T49L78TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8yNTdmZDctYTlmNy00Mjg0LWFjZjMt
MzQzMDRmNWNkYTk4LzEvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8yNTdmZDctYTlmNy00Mjg0LWFjZjMtMzQzMDRmNWNkYTk4
LzEvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQjulnaEB
h1enjES7yDA4hzWmfW6ewPOnF5ekBjIbFJG4ECVVg6DepBPchnhlIJLdQskO/J39
tca7ToyLQ0xXBaLPzXViNj5MeNurdVWLKCpANHaZZQuIttqIhmZkw4z2rKwJoExC
tQQ239IvC8qSCDMp2iP0qgk5jFhFWKtBOf/tOuen1m/Jah2bwmapIQvwsfBweqnl
VeF2SeEsCQjmQQ+xUttONixWqEsffvXAemJ1f+IISQMpxhkPiwA39gdsrj5+G+98
z5Cq9c/SW6pbb+Stnbladx+0dJW08R05p8siaxnkL88YzPfb3TNvVuC4AyW0Pi37
JxLTH4MOYg5ABw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:17:17 2025 by rpki-client