Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.mft
File: 97KiPZsF9XV53i8CRJtmYD4-Vzo.mft (raw, json)
Hash identifier: JSkpaTRmqaHqNysgm2UB/dcKQ5AkVIx/sMjWGUT+1Jk=
Subject key identifier: 6E:45:4C:ED:98:5F:5A:E4:4E:F2:3B:5B:62:D4:B6:1E:BD:0C:D6:13
Authority key identifier: F7:B2:A2:3D:9B:05:F5:75:79:DE:2F:02:44:9B:66:60:3E:3E:57:3A
Certificate issuer: /CN=f7b2a23d9b05f57579de2f02449b66603e3e573a
Certificate serial: 019652A4CDBD9EB903FFA56A82D3C52B7297
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97KiPZsF9XV53i8CRJtmYD4-Vzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.mft
Manifest number: 10B0
Signing time: Sun 20 Apr 2025 10:00:54 +0000
Manifest this update: Sun 20 Apr 2025 10:00:54 +0000
Manifest next update: Mon 21 Apr 2025 10:00:54 +0000
Files and hashes: 1: 97KiPZsF9XV53i8CRJtmYD4-Vzo.crl (hash: YwEziZm078rWMX515xShzYMmUg6Hk8s5IYjYtuS1B60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/97KiPZsF9XV53i8CRJtmYD4-Vzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 10:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:a4:cd:bd:9e:b9:03:ff:a5:6a:82:d3:c5:2b:72:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b2a23d9b05f57579de2f02449b66603e3e573a
Validity
Not Before: Apr 20 10:00:54 2025 GMT
Not After : Apr 21 10:00:54 2025 GMT
Subject: CN=6e454ced985f5ae44ef23b5b62d4b61ebd0cd613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:52:7e:28:db:a5:66:c8:31:40:79:34:0f:4c:
ea:9f:1f:d9:6e:6a:29:58:02:8d:33:70:02:ff:21:
5e:cb:05:f9:a3:87:44:af:12:ad:26:a7:d4:73:fc:
ab:14:ab:bf:da:63:34:46:66:c9:f7:5f:23:80:b8:
7c:02:33:d2:85:52:06:0b:91:9b:91:42:f5:d0:26:
0e:bb:95:44:df:1c:a5:a4:6e:26:a5:90:4e:f5:6e:
23:5a:fe:f1:a0:df:72:47:6a:37:96:47:3d:e6:9c:
44:0d:e9:8e:8a:4f:29:81:f8:3c:2c:5f:50:76:99:
60:0c:61:d8:41:af:ff:24:87:20:5e:67:f4:a1:07:
01:c5:65:93:63:8a:84:a0:a9:0f:43:84:dd:29:20:
86:15:cb:58:e3:67:ef:dd:b4:14:d3:35:5c:c3:c5:
50:72:b0:c4:a1:d2:06:2c:0a:15:b2:12:cb:b5:b4:
26:5a:a2:f4:d8:35:79:e6:63:92:68:ae:09:0f:67:
9e:9b:fc:94:aa:97:3d:14:5d:bf:cf:36:06:3b:aa:
a6:22:d8:6e:e3:e8:0d:5f:18:5b:5e:84:cd:68:23:
ab:fb:37:f6:d5:86:92:fc:25:71:bd:41:9f:db:28:
8a:96:a4:78:43:ac:1d:d2:1b:39:ae:ed:26:1d:e2:
92:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:45:4C:ED:98:5F:5A:E4:4E:F2:3B:5B:62:D4:B6:1E:BD:0C:D6:13
X509v3 Authority Key Identifier:
keyid:F7:B2:A2:3D:9B:05:F5:75:79:DE:2F:02:44:9B:66:60:3E:3E:57:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97KiPZsF9XV53i8CRJtmYD4-Vzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:a1:7a:49:f5:ee:3d:f5:7e:39:4f:83:7c:ac:4b:72:91:cc:
3d:ff:27:76:e8:cc:2e:d7:fd:a9:c1:95:b4:e9:07:8e:0c:fc:
1f:02:0e:c2:45:6e:8f:4c:b4:38:ee:e8:fd:8d:3c:9b:00:2e:
9e:7d:b1:02:a4:9b:00:52:23:b9:4c:f9:41:69:dd:69:68:ed:
87:12:3c:7b:72:ba:a0:8d:3d:ed:6d:57:6d:dd:77:87:8f:fe:
4b:20:58:01:40:ad:7c:2d:42:03:42:b9:70:ff:8c:0b:22:ac:
40:fb:7d:35:2e:64:fc:b8:ab:bd:b3:33:c3:89:18:50:91:6f:
c5:1a:35:c5:a5:a3:96:70:0f:f0:41:36:59:0e:51:0f:05:11:
24:25:40:b6:7e:2a:04:41:be:06:e7:01:0e:65:76:0c:e4:f8:
35:3f:f0:06:56:56:48:79:a5:f8:cd:dc:f8:aa:10:ff:59:03:
85:30:0e:f5:dc:b2:b3:14:1b:fb:74:96:dd:a4:47:11:e5:68:
2a:b6:38:ce:a1:dd:a1:25:01:cf:18:7b:a9:52:c3:55:62:b3:
69:9d:4c:90:74:e6:69:b5:5a:3b:78:af:2e:16:41:9b:cc:8d:
ee:a5:42:5f:b4:0d:33:3a:90:cc:1b:ab:7b:d1:ef:b3:77:f7:
96:f6:c1:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZSpM29nrkD/6VqgtPFK3KXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3YjJhMjNkOWIwNWY1NzU3OWRlMmYwMjQ0OWI2NjYwM2Uz
ZTU3M2EwHhcNMjUwNDIwMTAwMDU0WhcNMjUwNDIxMTAwMDU0WjAzMTEwLwYDVQQD
Eyg2ZTQ1NGNlZDk4NWY1YWU0NGVmMjNiNWI2MmQ0YjYxZWJkMGNkNjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1J+KNulZsgxQHk0D0zqnx/Zbmop
WAKNM3AC/yFeywX5o4dErxKtJqfUc/yrFKu/2mM0RmbJ918jgLh8AjPShVIGC5Gb
kUL10CYOu5VE3xylpG4mpZBO9W4jWv7xoN9yR2o3lkc95pxEDemOik8pgfg8LF9Q
dplgDGHYQa//JIcgXmf0oQcBxWWTY4qEoKkPQ4TdKSCGFctY42fv3bQU0zVcw8VQ
crDEodIGLAoVshLLtbQmWqL02DV55mOSaK4JD2eem/yUqpc9FF2/zzYGO6qmIthu
4+gNXxhbXoTNaCOr+zf21YaS/CVxvUGf2yiKlqR4Q6wd0hs5ru0mHeKSAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG5FTO2YX1rkTvI7W2LUth69DNYTMB8GA1UdIwQY
MBaAFPeyoj2bBfV1ed4vAkSbZmA+Plc6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTdLaVBac0Y5WFY1M2k4Q1JKdG1ZRDQtVnpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8wYTFiN2YtZGZkMi00NmY5LTgzMTMt
NWJlNmE3NTlmMzE4LzEvOTdLaVBac0Y5WFY1M2k4Q1JKdG1ZRDQtVnpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8wYTFiN2YtZGZkMi00NmY5LTgzMTMtNWJlNmE3NTlmMzE4
LzEvOTdLaVBac0Y5WFY1M2k4Q1JKdG1ZRDQtVnpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ6F6SfXu
PfV+OU+DfKxLcpHMPf8ndujMLtf9qcGVtOkHjgz8HwIOwkVuj0y0OO7o/Y08mwAu
nn2xAqSbAFIjuUz5QWndaWjthxI8e3K6oI097W1Xbd13h4/+SyBYAUCtfC1CA0K5
cP+MCyKsQPt9NS5k/LirvbMzw4kYUJFvxRo1xaWjlnAP8EE2WQ5RDwURJCVAtn4q
BEG+BucBDmV2DOT4NT/wBlZWSHml+M3c+KoQ/1kDhTAO9dyysxQb+3SW3aRHEeVo
KrY4zqHdoSUBzxh7qVLDVWKzaZ1MkHTmabVaO3ivLhZBm8yN7qVCX7QNMzqQzBur
e9Hvs3f3lvbB9Q==
-----END CERTIFICATE-----
Generated at Sun Apr 20 19:50:55 2025 by rpki-client