Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
File: xDzur3eV-33zSLBLIn5QpJoaG3w.mft (raw, json)
Hash identifier: xBFza60SY5B8wnMpXy2tdnBatrom9RNOyEFYSSL1JEM=
Subject key identifier: AF:76:72:B2:32:29:3C:B8:A7:E6:0B:67:17:14:40:B1:D0:D5:33:41
Authority key identifier: C4:3C:EE:AF:77:95:FB:7D:F3:48:B0:4B:22:7E:50:A4:9A:1A:1B:7C
Certificate issuer: /CN=c43ceeaf7795fb7df348b04b227e50a49a1a1b7c
Certificate serial: 019644B19E79791DC45C970D71F39D71826A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDzur3eV-33zSLBLIn5QpJoaG3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
Manifest number: 122F
Signing time: Thu 17 Apr 2025 17:00:13 +0000
Manifest this update: Thu 17 Apr 2025 17:00:13 +0000
Manifest next update: Fri 18 Apr 2025 17:00:13 +0000
Files and hashes: 1: xDzur3eV-33zSLBLIn5QpJoaG3w.crl (hash: kRNj9U6m3dKzWKxqCOf/Ie+7gt4HZr8d4mPQ+d6c7i0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDzur3eV-33zSLBLIn5QpJoaG3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:b1:9e:79:79:1d:c4:5c:97:0d:71:f3:9d:71:82:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43ceeaf7795fb7df348b04b227e50a49a1a1b7c
Validity
Not Before: Apr 17 17:00:13 2025 GMT
Not After : Apr 18 17:00:13 2025 GMT
Subject: CN=af7672b232293cb8a7e60b67171440b1d0d53341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d1:50:57:58:a2:f0:d1:dc:25:67:90:5e:dd:
08:e0:08:a6:c0:79:12:2b:6b:39:f1:88:3e:4e:a6:
2a:04:f3:16:b2:2c:31:e4:e7:e7:6c:1d:96:26:47:
d9:d1:1c:34:cf:df:05:2b:4c:f2:ed:43:f3:8d:61:
89:19:14:b9:ac:e5:e1:87:f9:e5:71:d3:8c:3f:b9:
ff:2a:c1:79:d9:48:7b:b0:07:5c:35:2e:23:4d:cb:
9e:6a:ab:40:e1:28:b2:50:68:58:f4:d1:4a:c1:0a:
21:51:ef:a4:a2:26:ab:61:ea:90:0f:36:56:8d:ab:
92:e7:79:ed:1f:5e:3e:a6:2c:fd:47:c4:f6:09:4c:
6e:e0:35:30:d5:5e:4e:3e:b1:78:93:ba:59:76:49:
d5:36:47:b7:de:c0:56:02:b8:45:58:67:3d:12:56:
47:88:8e:a0:7b:2b:a1:ce:20:6d:5a:44:69:3c:29:
66:2c:cb:5c:93:60:cd:23:a0:a5:ca:b7:21:1d:ae:
75:48:38:21:24:82:1b:e3:99:76:39:0b:31:27:fe:
b4:40:b6:3e:8d:77:e5:a1:17:d1:0c:10:98:e3:5d:
53:b1:f6:89:d4:41:2f:6b:a4:55:39:79:0a:0a:7d:
d0:d4:43:81:57:3b:58:7b:19:68:76:73:61:f4:f8:
e2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:76:72:B2:32:29:3C:B8:A7:E6:0B:67:17:14:40:B1:D0:D5:33:41
X509v3 Authority Key Identifier:
keyid:C4:3C:EE:AF:77:95:FB:7D:F3:48:B0:4B:22:7E:50:A4:9A:1A:1B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDzur3eV-33zSLBLIn5QpJoaG3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:a9:c1:e7:0c:c5:5a:d0:da:80:89:44:49:82:a0:37:af:10:
0f:2c:28:42:ec:09:7f:8b:ee:82:0a:fe:6a:5d:97:1c:2b:3b:
b8:c8:52:f7:96:48:5f:7a:f1:e6:9d:46:f5:f8:f2:3d:76:3e:
54:28:9d:7a:eb:06:be:a4:6a:9b:a9:e9:df:18:09:de:96:ca:
70:01:df:4d:c4:4e:36:f5:9d:5b:20:17:ad:70:9b:0d:e4:66:
43:0c:58:7f:91:06:2e:f2:ef:ba:c1:09:07:c8:b1:fa:3a:f7:
55:2d:7d:57:c2:95:f0:d8:26:ce:d5:f4:c3:ba:0d:4c:68:5a:
d4:4c:93:02:b4:0b:aa:5f:93:4b:ce:4a:2a:5a:b7:21:ac:91:
4a:e9:32:b8:92:b8:2c:80:d0:93:61:2d:d4:91:f5:31:22:10:
d4:14:c7:6a:57:75:7f:b9:d9:cd:7e:b2:37:5a:2a:b8:5d:22:
77:2a:a5:15:9c:8d:47:8f:17:61:54:89:ed:da:9c:58:79:b1:
0b:1b:44:88:49:89:c7:e4:b6:2e:6d:b9:1e:3b:c6:49:81:31:
6c:15:96:91:2b:da:c2:be:66:8b:9c:fd:1a:d8:93:5b:92:d5:
d3:34:b2:00:16:95:eb:67:c0:8e:8f:ac:e1:b4:25:db:27:8f:
70:f2:31:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZEsZ55eR3EXJcNcfOdcYJqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0M2NlZWFmNzc5NWZiN2RmMzQ4YjA0YjIyN2U1MGE0OWEx
YTFiN2MwHhcNMjUwNDE3MTcwMDEzWhcNMjUwNDE4MTcwMDEzWjAzMTEwLwYDVQQD
EyhhZjc2NzJiMjMyMjkzY2I4YTdlNjBiNjcxNzE0NDBiMWQwZDUzMzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdFQV1ii8NHcJWeQXt0I4AimwHkS
K2s58Yg+TqYqBPMWsiwx5OfnbB2WJkfZ0Rw0z98FK0zy7UPzjWGJGRS5rOXhh/nl
cdOMP7n/KsF52Uh7sAdcNS4jTcueaqtA4SiyUGhY9NFKwQohUe+koiarYeqQDzZW
jauS53ntH14+piz9R8T2CUxu4DUw1V5OPrF4k7pZdknVNke33sBWArhFWGc9ElZH
iI6geyuhziBtWkRpPClmLMtck2DNI6ClyrchHa51SDghJIIb45l2OQsxJ/60QLY+
jXfloRfRDBCY411TsfaJ1EEva6RVOXkKCn3Q1EOBVztYexlodnNh9PjiEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK92crIyKTy4p+YLZxcUQLHQ1TNBMB8GA1UdIwQY
MBaAFMQ87q93lft980iwSyJ+UKSaGht8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveER6dXIzZVYtMzN6U0xCTEluNVFwSm9hRzN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS84YThkM2EtMDgwNC00NGQ3LTg2NTUt
MDhiYWUzYTU0ZmY2LzEveER6dXIzZVYtMzN6U0xCTEluNVFwSm9hRzN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS84YThkM2EtMDgwNC00NGQ3LTg2NTUtMDhiYWUzYTU0ZmY2
LzEveER6dXIzZVYtMzN6U0xCTEluNVFwSm9hRzN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASanB5wzF
WtDagIlESYKgN68QDywoQuwJf4vuggr+al2XHCs7uMhS95ZIX3rx5p1G9fjyPXY+
VCideusGvqRqm6np3xgJ3pbKcAHfTcRONvWdWyAXrXCbDeRmQwxYf5EGLvLvusEJ
B8ix+jr3VS19V8KV8NgmztX0w7oNTGha1EyTArQLql+TS85KKlq3IayRSukyuJK4
LIDQk2Et1JH1MSIQ1BTHald1f7nZzX6yN1oquF0idyqlFZyNR48XYVSJ7dqcWHmx
CxtEiEmJx+S2Lm25HjvGSYExbBWWkSvawr5mi5z9GtiTW5LV0zSyABaV62fAjo+s
4bQl2yePcPIx6w==
-----END CERTIFICATE-----
Generated at Thu Apr 17 23:19:22 2025 by rpki-client