Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
File: 2xqlqI_mUM51-73mL66AzGIz3Ms.mft (raw, json)
Hash identifier: f24EPBFhIwLSuFy/4oQ30TA3Vx8OwKgrUmKRzdr4dWU=
Subject key identifier: 58:33:59:E6:75:D1:6D:EF:D4:10:73:3C:53:AC:69:EB:B5:60:B7:51
Authority key identifier: DB:1A:A5:A8:8F:E6:50:CE:75:FB:BD:E6:2F:AE:80:CC:62:33:DC:CB
Certificate issuer: /CN=db1aa5a88fe650ce75fbbde62fae80cc6233dccb
Certificate serial: 01963E0C1D75F1C38BA4AF9F152F7E68132F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xqlqI_mUM51-73mL66AzGIz3Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
Manifest number: 0DF7
Signing time: Wed 16 Apr 2025 10:01:43 +0000
Manifest this update: Wed 16 Apr 2025 10:01:43 +0000
Manifest next update: Thu 17 Apr 2025 10:01:43 +0000
Files and hashes: 1: 2xqlqI_mUM51-73mL66AzGIz3Ms.crl (hash: Lw6z8ypofdZYC3sdz5P9Ukpkb7BF2B6MuWPXnOsC6Ec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xqlqI_mUM51-73mL66AzGIz3Ms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 10:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:0c:1d:75:f1:c3:8b:a4:af:9f:15:2f:7e:68:13:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db1aa5a88fe650ce75fbbde62fae80cc6233dccb
Validity
Not Before: Apr 16 10:01:43 2025 GMT
Not After : Apr 17 10:01:43 2025 GMT
Subject: CN=583359e675d16defd410733c53ac69ebb560b751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:48:7e:a0:9b:13:94:4e:46:56:0e:47:02:ec:
2c:d1:c5:36:5d:a4:23:cf:84:23:de:85:05:bc:f6:
e6:c1:f0:76:87:75:ff:f6:cf:7f:13:04:16:df:53:
26:f6:9f:86:08:d9:dc:a1:84:e6:9c:e0:2c:c2:62:
3e:e1:a1:15:0b:53:a0:2c:20:2b:10:de:e7:08:11:
f7:e2:bc:3d:d4:26:3e:5a:d8:5e:7d:0a:f2:f2:12:
bb:ad:0d:88:46:ca:9f:f4:12:18:e5:0f:e1:aa:ef:
72:d7:46:5d:29:24:6c:b3:c8:93:81:92:0c:2f:6c:
bf:6c:98:4b:9d:6b:0d:c8:d5:c4:f3:f9:cb:fc:89:
6f:2a:c8:d4:c1:e5:36:a8:84:ff:07:cf:10:ac:e0:
92:fa:07:98:b9:96:03:9e:92:96:0b:cb:a6:8f:c7:
55:fd:c4:ae:bb:61:f3:5d:70:ca:92:e5:ce:ff:4c:
b2:11:98:e8:23:12:ee:ba:89:60:d3:85:b5:84:ac:
01:d5:70:08:ab:86:08:75:7d:cd:50:62:05:09:47:
13:1f:79:f9:07:97:ad:5a:fd:7a:39:a8:73:1e:fc:
91:b4:9a:93:1c:98:ee:f6:cd:8c:03:69:ab:c4:80:
47:f5:d9:09:f8:b2:ab:d6:b9:10:30:0b:ee:e3:87:
3d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:33:59:E6:75:D1:6D:EF:D4:10:73:3C:53:AC:69:EB:B5:60:B7:51
X509v3 Authority Key Identifier:
keyid:DB:1A:A5:A8:8F:E6:50:CE:75:FB:BD:E6:2F:AE:80:CC:62:33:DC:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xqlqI_mUM51-73mL66AzGIz3Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:c3:15:b3:46:49:68:df:aa:7e:19:51:68:0b:63:3b:08:9e:
4f:26:37:bd:65:d2:a0:45:31:3e:c4:b8:34:00:f4:1e:01:ca:
5d:f4:f9:74:b0:aa:09:54:be:c1:a8:d1:c6:14:62:c1:3a:72:
49:78:db:89:df:b0:22:44:b4:c1:aa:2b:d3:60:18:c1:7f:e2:
03:84:a8:e2:77:42:49:ab:c5:e1:28:ec:8b:2c:49:1b:76:df:
1f:68:0c:35:25:4d:4a:cf:bc:8e:9b:73:46:bc:9e:d1:40:c5:
f4:38:e0:f0:a9:c1:82:ec:ae:39:99:1a:b8:60:59:9e:54:aa:
91:a3:83:98:9f:85:76:85:e2:fb:f9:db:13:ef:59:5e:72:34:
75:ae:2a:fe:58:7f:e5:c5:d5:9e:c0:25:71:9b:2f:63:1d:e9:
5c:e9:5c:c5:60:f9:5f:db:91:21:1f:40:f3:2e:0f:ca:58:2e:
9f:f9:51:06:44:3a:9e:a3:3a:36:63:d3:13:c9:62:da:6a:e4:
24:8e:13:98:ed:29:52:e4:01:d4:8c:42:53:b4:56:cb:94:7e:
69:e8:60:26:66:a0:79:35:69:df:08:82:2b:54:62:25:ed:77:
6b:22:93:cd:17:be:05:9e:6e:1a:92:ee:09:be:31:ed:38:4f:
92:68:ee:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY+DB118cOLpK+fFS9+aBMvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMWFhNWE4OGZlNjUwY2U3NWZiYmRlNjJmYWU4MGNjNjIz
M2RjY2IwHhcNMjUwNDE2MTAwMTQzWhcNMjUwNDE3MTAwMTQzWjAzMTEwLwYDVQQD
Eyg1ODMzNTllNjc1ZDE2ZGVmZDQxMDczM2M1M2FjNjllYmI1NjBiNzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Eh+oJsTlE5GVg5HAuws0cU2XaQj
z4Qj3oUFvPbmwfB2h3X/9s9/EwQW31Mm9p+GCNncoYTmnOAswmI+4aEVC1OgLCAr
EN7nCBH34rw91CY+WthefQry8hK7rQ2IRsqf9BIY5Q/hqu9y10ZdKSRss8iTgZIM
L2y/bJhLnWsNyNXE8/nL/IlvKsjUweU2qIT/B88QrOCS+geYuZYDnpKWC8umj8dV
/cSuu2HzXXDKkuXO/0yyEZjoIxLuuolg04W1hKwB1XAIq4YIdX3NUGIFCUcTH3n5
B5etWv16OahzHvyRtJqTHJju9s2MA2mrxIBH9dkJ+LKr1rkQMAvu44c9XQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFgzWeZ10W3v1BBzPFOsaeu1YLdRMB8GA1UdIwQY
MBaAFNsapaiP5lDOdfu95i+ugMxiM9zLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnhxbHFJX21VTTUxLTczbUw2NkF6R0l6M01zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83ZGIzYjgtOTg2My00OWJiLTkwZjAt
ZDViZGNiNjMwMTc3LzEvMnhxbHFJX21VTTUxLTczbUw2NkF6R0l6M01zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy83ZGIzYjgtOTg2My00OWJiLTkwZjAtZDViZGNiNjMwMTc3
LzEvMnhxbHFJX21VTTUxLTczbUw2NkF6R0l6M01zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAcMVs0ZJ
aN+qfhlRaAtjOwieTyY3vWXSoEUxPsS4NAD0HgHKXfT5dLCqCVS+wajRxhRiwTpy
SXjbid+wIkS0waor02AYwX/iA4So4ndCSavF4SjsiyxJG3bfH2gMNSVNSs+8jptz
Rrye0UDF9Djg8KnBguyuOZkauGBZnlSqkaODmJ+FdoXi+/nbE+9ZXnI0da4q/lh/
5cXVnsAlcZsvYx3pXOlcxWD5X9uRIR9A8y4Pylgun/lRBkQ6nqM6NmPTE8li2mrk
JI4TmO0pUuQB1IxCU7RWy5R+aehgJmageTVp3wiCK1RiJe13ayKTzRe+BZ5uGpLu
Cb4x7ThPkmjuyQ==
-----END CERTIFICATE-----
Generated at Wed Apr 16 14:13:57 2025 by rpki-client