Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.mft
File: apc35u85FOD8zAaQI76XGYuRN5E.mft (raw, json)
Hash identifier: 0b8q8nfbPH+FBhbVMpfdK6Uqb04LjYFSr8Mps7+UGlI=
Subject key identifier: AD:BE:E5:0C:23:06:3E:B1:00:C6:EB:A5:0C:09:33:62:CB:1F:CC:85
Authority key identifier: 6A:97:37:E6:EF:39:14:E0:FC:CC:06:90:23:BE:97:19:8B:91:37:91
Certificate issuer: /CN=6a9737e6ef3914e0fccc069023be97198b913791
Certificate serial: 01964D7E0E0C530FA0CC40051BBC80932486
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/apc35u85FOD8zAaQI76XGYuRN5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.mft
Manifest number: 14F6
Signing time: Sat 19 Apr 2025 10:00:28 +0000
Manifest this update: Sat 19 Apr 2025 10:00:28 +0000
Manifest next update: Sun 20 Apr 2025 10:00:28 +0000
Files and hashes: 1: apc35u85FOD8zAaQI76XGYuRN5E.crl (hash: 3oqNWQm2CleePm0dGzXBzsOJbXhfMWVza6urJDOR9y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/apc35u85FOD8zAaQI76XGYuRN5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 10:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:0e:0c:53:0f:a0:cc:40:05:1b:bc:80:93:24:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a9737e6ef3914e0fccc069023be97198b913791
Validity
Not Before: Apr 19 10:00:28 2025 GMT
Not After : Apr 20 10:00:28 2025 GMT
Subject: CN=adbee50c23063eb100c6eba50c093362cb1fcc85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a2:8a:95:c3:65:cf:ae:4f:6e:42:56:0f:ad:
61:cc:9f:1f:a3:8f:cc:af:31:03:77:a5:67:f5:0b:
de:d1:71:5e:2f:9b:ab:a5:04:1d:3b:c7:e0:ef:fe:
2e:50:96:45:e6:8e:a8:c7:75:78:81:55:f0:6b:5e:
ad:46:1b:20:e2:42:7f:c0:4f:ab:5a:bb:1d:23:08:
33:b0:77:57:89:6a:62:72:38:94:26:f9:80:02:79:
c6:d7:46:66:ad:ba:81:6b:48:01:3f:09:4c:37:e0:
d2:d6:a6:01:90:73:d3:d4:9a:7a:be:22:42:30:0f:
9a:82:55:ca:fe:ea:5a:75:59:52:24:e2:80:4a:b7:
ce:05:34:f8:51:c1:49:1d:8c:44:52:80:4e:cb:00:
dc:6b:2b:dc:be:07:15:3c:83:12:2f:44:bb:e6:13:
f4:e8:6c:c8:8d:bd:66:51:91:21:e9:ea:76:df:23:
e0:f6:be:7f:4b:5d:8c:e2:e4:1a:90:10:a0:a9:ad:
d4:92:10:51:31:b2:21:6c:01:5b:ac:92:05:d2:58:
89:d9:17:f5:c2:4d:fb:29:ed:7a:6a:49:e3:5b:ea:
fc:20:8d:2b:ba:c8:b7:f0:36:92:75:ea:d9:7e:0d:
f9:a9:a8:fe:4c:44:47:ca:5c:f4:cf:12:35:0d:f8:
2c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:BE:E5:0C:23:06:3E:B1:00:C6:EB:A5:0C:09:33:62:CB:1F:CC:85
X509v3 Authority Key Identifier:
keyid:6A:97:37:E6:EF:39:14:E0:FC:CC:06:90:23:BE:97:19:8B:91:37:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/apc35u85FOD8zAaQI76XGYuRN5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:49:61:62:88:62:1b:42:47:09:d3:4d:78:a4:1b:57:d4:c8:
55:78:d1:01:19:9f:61:bf:3d:9d:66:bf:f2:2c:0a:a9:ff:f6:
6c:3c:23:0f:58:c4:bb:ca:f2:fc:47:94:30:08:89:4a:b4:bd:
8f:22:43:11:e9:79:79:53:03:64:44:99:ce:26:79:37:67:fd:
8f:20:3c:aa:e2:5b:a8:8b:ce:6d:62:f7:e8:93:12:10:ba:27:
a0:5e:cf:3f:a1:4c:b8:7f:45:19:9c:f8:ba:70:55:4a:ed:3f:
09:67:03:6d:d6:1b:12:a0:05:88:79:ef:4e:33:43:21:6c:a9:
d8:45:9c:eb:0d:0b:34:23:bd:0f:11:1f:48:12:94:0d:07:ea:
4f:f2:24:3f:b0:06:b1:a9:65:d9:5d:a5:1f:4d:c0:2b:48:93:
20:0b:b5:cd:08:61:0a:b4:d7:1c:2a:bd:d5:57:e0:e0:c4:04:
7f:11:65:de:7d:e1:f0:83:5c:10:cd:75:c6:dc:32:20:ae:e0:
13:1f:7c:d2:7a:1e:13:ba:0d:7d:e4:aa:fa:3d:db:fa:ed:4e:
10:83:86:c9:ca:7a:01:52:0b:1b:b0:71:f6:9f:4e:0c:07:24:
ee:13:b6:f7:ed:f3:43:45:ca:20:64:ec:3f:38:7b:e9:a2:da:
ef:7b:e7:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNfg4MUw+gzEAFG7yAkySGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhOTczN2U2ZWYzOTE0ZTBmY2NjMDY5MDIzYmU5NzE5OGI5
MTM3OTEwHhcNMjUwNDE5MTAwMDI4WhcNMjUwNDIwMTAwMDI4WjAzMTEwLwYDVQQD
EyhhZGJlZTUwYzIzMDYzZWIxMDBjNmViYTUwYzA5MzM2MmNiMWZjYzg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKKKlcNlz65PbkJWD61hzJ8fo4/M
rzEDd6Vn9Qve0XFeL5urpQQdO8fg7/4uUJZF5o6ox3V4gVXwa16tRhsg4kJ/wE+r
WrsdIwgzsHdXiWpicjiUJvmAAnnG10ZmrbqBa0gBPwlMN+DS1qYBkHPT1Jp6viJC
MA+aglXK/upadVlSJOKASrfOBTT4UcFJHYxEUoBOywDcayvcvgcVPIMSL0S75hP0
6GzIjb1mUZEh6ep23yPg9r5/S12M4uQakBCgqa3UkhBRMbIhbAFbrJIF0liJ2Rf1
wk37Ke16aknjW+r8II0rusi38DaSderZfg35qaj+TERHylz0zxI1DfgsHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK2+5QwjBj6xAMbrpQwJM2LLH8yFMB8GA1UdIwQY
MBaAFGqXN+bvORTg/MwGkCO+lxmLkTeRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXBjMzV1ODVGT0Q4ekFhUUk3NlhHWXVSTjVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84NDM4ZjUtNmM5Yy00NzAzLTlmZTIt
MDE1ZmRlNDVkMGVhLzEvYXBjMzV1ODVGT0Q4ekFhUUk3NlhHWXVSTjVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC84NDM4ZjUtNmM5Yy00NzAzLTlmZTItMDE1ZmRlNDVkMGVh
LzEvYXBjMzV1ODVGT0Q4ekFhUUk3NlhHWXVSTjVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXUlhYohi
G0JHCdNNeKQbV9TIVXjRARmfYb89nWa/8iwKqf/2bDwjD1jEu8ry/EeUMAiJSrS9
jyJDEel5eVMDZESZziZ5N2f9jyA8quJbqIvObWL36JMSELonoF7PP6FMuH9FGZz4
unBVSu0/CWcDbdYbEqAFiHnvTjNDIWyp2EWc6w0LNCO9DxEfSBKUDQfqT/IkP7AG
sall2V2lH03AK0iTIAu1zQhhCrTXHCq91Vfg4MQEfxFl3n3h8INcEM11xtwyIK7g
Ex980noeE7oNfeSq+j3b+u1OEIOGycp6AVILG7Bx9p9ODAck7hO29+3zQ0XKIGTs
Pzh76aLa73vnwQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 18:03:57 2025 by rpki-client