Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft
File: rHI58-_bN5H1vlVSmbXYFpfz0BI.mft (raw, json)
Hash identifier: 3EUs9hRMxVqvL+HJzvDMyTLXF9drt+7RBEtP1ojQ2kI=
Subject key identifier: 9A:B5:3E:65:0B:90:A5:18:4A:5D:D2:9C:7B:B5:C5:83:28:0A:04:FB
Authority key identifier: AC:72:39:F3:EF:DB:37:91:F5:BE:55:52:99:B5:D8:16:97:F3:D0:12
Certificate issuer: /CN=ac7239f3efdb3791f5be555299b5d81697f3d012
Certificate serial: 01964A0F34D5E4CEAAF827063706C8B2B661
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rHI58-_bN5H1vlVSmbXYFpfz0BI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft
Manifest number: 10B4
Signing time: Fri 18 Apr 2025 18:00:32 +0000
Manifest this update: Fri 18 Apr 2025 18:00:32 +0000
Manifest next update: Sat 19 Apr 2025 18:00:32 +0000
Files and hashes: 1: rHI58-_bN5H1vlVSmbXYFpfz0BI.crl (hash: tZ9LZXzZFgVvN5EPS+owZ6ruLFcIYrQPJGW++rECxQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rHI58-_bN5H1vlVSmbXYFpfz0BI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 18:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:0f:34:d5:e4:ce:aa:f8:27:06:37:06:c8:b2:b6:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac7239f3efdb3791f5be555299b5d81697f3d012
Validity
Not Before: Apr 18 18:00:32 2025 GMT
Not After : Apr 19 18:00:32 2025 GMT
Subject: CN=9ab53e650b90a5184a5dd29c7bb5c583280a04fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:76:cf:39:36:11:ec:ab:d7:b6:22:a7:3f:7d:
56:e5:60:ce:c7:b9:c3:8a:c4:35:20:da:13:ec:27:
7d:47:64:f7:f2:90:af:3f:45:61:66:f2:b5:82:28:
c2:d6:01:c4:6a:34:9a:1f:b1:cd:f6:fd:99:a1:ce:
e4:d6:8a:1f:e1:7b:fe:ad:fa:ae:cb:43:73:7f:ca:
43:a7:3b:78:94:85:2c:eb:98:9d:b4:ab:f2:ce:cc:
27:85:08:96:31:68:d2:94:c0:cd:e7:51:d3:01:58:
9a:25:2c:1b:5d:cb:e5:21:08:d9:b0:27:61:1b:35:
b0:02:aa:6c:6f:e3:d4:49:c4:60:e1:07:92:d4:c1:
c4:a6:4c:70:9f:d6:6a:b3:b5:64:28:97:f3:46:86:
0d:96:95:e4:ae:e8:28:0f:d9:e8:08:34:c5:e9:38:
da:35:b2:f7:54:9e:e2:c6:45:c1:df:a4:21:6c:e6:
4f:dd:03:1a:91:eb:44:23:97:b8:1b:d2:32:37:f2:
c3:96:da:c6:7f:e2:51:ac:b8:77:a3:53:95:3b:6e:
06:2b:8f:0f:fa:f4:7b:83:49:76:67:bf:7b:b3:5a:
a5:41:c6:c0:76:3b:09:31:0a:bf:50:12:8e:f2:18:
30:be:2f:c8:3a:30:0b:54:a5:35:df:73:bb:cb:4e:
b7:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B5:3E:65:0B:90:A5:18:4A:5D:D2:9C:7B:B5:C5:83:28:0A:04:FB
X509v3 Authority Key Identifier:
keyid:AC:72:39:F3:EF:DB:37:91:F5:BE:55:52:99:B5:D8:16:97:F3:D0:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rHI58-_bN5H1vlVSmbXYFpfz0BI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/c890fc-2cf8-4075-875d-ccfc7f07b9cb/1/rHI58-_bN5H1vlVSmbXYFpfz0BI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:bf:dc:bc:20:17:a6:c6:0f:9f:ba:e5:90:6d:7a:d1:19:3a:
50:64:b8:1c:4f:bd:2e:ae:58:0f:e2:8b:2e:3b:1f:e6:7c:68:
b3:4e:fe:0a:bc:a0:95:8f:6f:9c:25:83:db:b1:35:82:e3:ba:
a3:76:64:a8:7b:55:36:56:4c:d7:d7:1b:9a:69:e6:e8:76:1a:
9b:bb:fa:6f:d8:1b:fb:7c:51:c6:ba:d4:62:6d:c9:b8:0a:05:
3d:3f:f4:27:11:57:32:0e:92:e2:b3:0b:9a:8d:a8:e6:ca:c2:
aa:29:41:d3:69:d8:d8:b9:ab:25:71:34:24:3c:cb:5c:55:06:
4c:6f:eb:96:f9:2c:73:20:e2:bf:7c:a7:63:76:2c:6b:7a:02:
fb:15:4f:6e:dc:df:24:5e:88:a4:63:a0:26:ad:64:d8:51:17:
c2:92:bf:3e:36:c1:05:29:77:e1:75:60:64:c7:c4:01:90:12:
2e:5c:4d:73:b5:70:96:56:fe:f2:31:a4:dc:36:13:94:fc:b4:
90:77:e6:93:e3:26:fe:82:82:18:38:4b:c9:99:1c:3f:4a:24:
af:b2:34:aa:a8:57:20:24:65:59:4f:40:83:07:cb:f4:06:e1:
0f:7b:3e:78:da:c1:08:3f:8d:c3:38:34:47:ec:6a:39:3d:e2:
29:22:e9:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZKDzTV5M6q+CcGNwbIsrZhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjNzIzOWYzZWZkYjM3OTFmNWJlNTU1Mjk5YjVkODE2OTdm
M2QwMTIwHhcNMjUwNDE4MTgwMDMyWhcNMjUwNDE5MTgwMDMyWjAzMTEwLwYDVQQD
Eyg5YWI1M2U2NTBiOTBhNTE4NGE1ZGQyOWM3YmI1YzU4MzI4MGEwNGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAunbPOTYR7KvXtiKnP31W5WDOx7nD
isQ1INoT7Cd9R2T38pCvP0VhZvK1gijC1gHEajSaH7HN9v2Zoc7k1oof4Xv+rfqu
y0Nzf8pDpzt4lIUs65idtKvyzswnhQiWMWjSlMDN51HTAViaJSwbXcvlIQjZsCdh
GzWwAqpsb+PUScRg4QeS1MHEpkxwn9Zqs7VkKJfzRoYNlpXkrugoD9noCDTF6Tja
NbL3VJ7ixkXB36QhbOZP3QMaketEI5e4G9IyN/LDltrGf+JRrLh3o1OVO24GK48P
+vR7g0l2Z797s1qlQcbAdjsJMQq/UBKO8hgwvi/IOjALVKU133O7y063oQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJq1PmULkKUYSl3SnHu1xYMoCgT7MB8GA1UdIwQY
MBaAFKxyOfPv2zeR9b5VUpm12BaX89ASMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckhJNTgtX2JONUgxdmxWU21iWFlGcGZ6MEJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS9jODkwZmMtMmNmOC00MDc1LTg3NWQt
Y2NmYzdmMDdiOWNiLzEvckhJNTgtX2JONUgxdmxWU21iWFlGcGZ6MEJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS9jODkwZmMtMmNmOC00MDc1LTg3NWQtY2NmYzdmMDdiOWNi
LzEvckhJNTgtX2JONUgxdmxWU21iWFlGcGZ6MEJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmb/cvCAX
psYPn7rlkG160Rk6UGS4HE+9Lq5YD+KLLjsf5nxos07+CryglY9vnCWD27E1guO6
o3ZkqHtVNlZM19cbmmnm6HYam7v6b9gb+3xRxrrUYm3JuAoFPT/0JxFXMg6S4rML
mo2o5srCqilB02nY2LmrJXE0JDzLXFUGTG/rlvkscyDiv3ynY3Ysa3oC+xVPbtzf
JF6IpGOgJq1k2FEXwpK/PjbBBSl34XVgZMfEAZASLlxNc7Vwllb+8jGk3DYTlPy0
kHfmk+Mm/oKCGDhLyZkcP0okr7I0qqhXICRlWU9AgwfL9AbhD3s+eNrBCD+Nwzg0
R+xqOT3iKSLpoQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 03:29:57 2025 by rpki-client