Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
File: 20bM9fil_kT0v9m6ZrpRJG2osYQ.mft (raw, json)
Hash identifier: yUZ3dJqrHxmqrCrSHjGQWSPxoY9L+8eo4KYIJErjA5Q=
Subject key identifier: 3E:C0:A2:18:9B:F9:B6:F0:CF:90:24:A4:72:A7:F0:57:D2:02:76:2F
Authority key identifier: DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
Certificate issuer: /CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Certificate serial: 019653EE35D61E8AD98EC1E6CC94856D3990
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
Manifest number: 12C2
Signing time: Sun 20 Apr 2025 16:00:42 +0000
Manifest this update: Sun 20 Apr 2025 16:00:42 +0000
Manifest next update: Mon 21 Apr 2025 16:00:42 +0000
Files and hashes: 1: 20bM9fil_kT0v9m6ZrpRJG2osYQ.crl (hash: aM7/daGQopK7Xnv3S0mIt2ohphwyKozHUptWsN2hkxs=)
2: tE13-Z8TEXFI2N_Q3eslEjXwYJ4.roa (hash: 7axnrMAdFOe7EcvPvTZA4mgDnvv0sfD7w1s1AvMo3bY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:ee:35:d6:1e:8a:d9:8e:c1:e6:cc:94:85:6d:39:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Validity
Not Before: Apr 20 16:00:42 2025 GMT
Not After : Apr 21 16:00:42 2025 GMT
Subject: CN=3ec0a2189bf9b6f0cf9024a472a7f057d202762f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ea:11:bc:e4:dc:e1:77:36:da:3c:49:ff:81:
d6:2d:b6:b2:3e:f1:a8:59:39:6f:3d:4c:88:ed:4f:
0c:c6:48:f7:d0:b9:fc:43:62:b9:f4:08:10:eb:d7:
99:4e:83:53:78:2c:5c:c6:7e:47:f4:6e:59:b5:05:
3d:0b:6c:36:41:75:50:e6:ce:9a:04:13:4b:0d:1b:
15:e2:b3:a0:14:c5:d6:58:13:12:c8:76:50:4c:70:
7d:dc:1f:88:cb:39:05:32:76:11:c5:2e:0d:d0:fa:
4f:a5:1b:a6:20:44:ae:cd:9a:23:a1:3a:55:dd:3e:
7f:b0:60:09:99:8f:2c:70:8a:9b:1a:53:b0:6b:12:
cb:6c:df:e2:bf:6a:cc:c8:22:19:df:d7:0d:ce:9e:
b7:28:e5:00:58:4f:fb:a3:eb:e4:19:f7:86:86:8e:
e2:04:a6:30:ac:c3:a8:84:51:3f:77:8d:4d:da:67:
f0:db:9f:72:64:d4:1b:1a:d0:2f:da:a3:60:2b:8a:
c6:2e:28:00:c0:fe:01:88:6b:05:05:ba:d4:19:a9:
ad:b7:02:8e:1e:b6:f1:44:9e:e9:f8:6e:70:95:df:
72:3e:85:5e:3f:cc:01:97:ad:42:e1:77:85:ec:7f:
c4:e9:c7:41:c0:07:10:38:b9:30:25:5b:71:b6:31:
98:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C0:A2:18:9B:F9:B6:F0:CF:90:24:A4:72:A7:F0:57:D2:02:76:2F
X509v3 Authority Key Identifier:
keyid:DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:0c:58:d3:c2:63:79:1a:73:0b:6d:21:a2:9a:32:b5:97:ab:
0f:95:3b:b8:d7:20:6c:4b:61:97:9c:8c:99:75:35:81:a2:92:
c8:c2:c5:19:e9:63:06:5c:6b:bb:c3:d9:06:e9:02:86:be:13:
1e:aa:35:ce:d6:2d:dc:2d:a1:e9:2b:ab:ee:e5:b2:d5:19:9f:
da:b3:91:85:4e:b8:f2:a7:ee:51:54:ab:46:1c:58:ae:37:8a:
f6:de:83:7f:ab:36:8c:ea:40:7b:82:01:64:cb:08:ee:78:26:
85:47:b0:c1:59:8e:78:2d:f7:26:09:34:f1:09:f4:8d:80:87:
62:43:09:b0:24:20:5c:8a:d7:52:46:b5:62:72:ec:36:0a:0e:
eb:a4:96:6a:2b:6e:a2:f7:ce:c7:73:5e:da:8b:16:50:5a:1e:
22:d3:2d:09:1f:b6:f2:bc:2f:4e:5a:ef:73:da:0a:f3:bf:20:
40:dc:bc:22:20:71:e7:65:1b:23:f9:a1:87:fc:f8:73:e7:86:
eb:f7:41:cc:61:a3:28:6a:81:3c:3e:6f:46:44:ef:c0:a9:0e:
06:17:e2:c1:c7:6a:a7:18:b7:c1:85:b8:6b:cc:21:0d:26:f6:
7d:39:43:53:82:65:99:82:2e:6c:e8:1c:4c:d9:23:c3:e1:ea:
74:8d:4f:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZT7jXWHorZjsHmzJSFbTmQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiNDZjY2Y1ZjhhNWZlNDRmNGJmZDliYTY2YmE1MTI0NmRh
OGIxODQwHhcNMjUwNDIwMTYwMDQyWhcNMjUwNDIxMTYwMDQyWjAzMTEwLwYDVQQD
EygzZWMwYTIxODliZjliNmYwY2Y5MDI0YTQ3MmE3ZjA1N2QyMDI3NjJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4eoRvOTc4Xc22jxJ/4HWLbayPvGo
WTlvPUyI7U8Mxkj30Ln8Q2K59AgQ69eZToNTeCxcxn5H9G5ZtQU9C2w2QXVQ5s6a
BBNLDRsV4rOgFMXWWBMSyHZQTHB93B+IyzkFMnYRxS4N0PpPpRumIESuzZojoTpV
3T5/sGAJmY8scIqbGlOwaxLLbN/iv2rMyCIZ39cNzp63KOUAWE/7o+vkGfeGho7i
BKYwrMOohFE/d41N2mfw259yZNQbGtAv2qNgK4rGLigAwP4BiGsFBbrUGamttwKO
HrbxRJ7p+G5wld9yPoVeP8wBl61C4XeF7H/E6cdBwAcQOLkwJVtxtjGYdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD7Aohib+bbwz5AkpHKn8FfSAnYvMB8GA1UdIwQY
MBaAFNtGzPX4pf5E9L/Zuma6USRtqLGEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjBiTTlmaWxfa1QwdjltNlpycFJKRzJvc1lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9mNzJhMWUtNmFkYi00MzAyLWEwZTgt
ZDQyYTgxYjgxZTIzLzEvMjBiTTlmaWxfa1QwdjltNlpycFJKRzJvc1lRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS9mNzJhMWUtNmFkYi00MzAyLWEwZTgtZDQyYTgxYjgxZTIz
LzEvMjBiTTlmaWxfa1QwdjltNlpycFJKRzJvc1lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATwxY08Jj
eRpzC20hopoytZerD5U7uNcgbEthl5yMmXU1gaKSyMLFGeljBlxru8PZBukChr4T
Hqo1ztYt3C2h6Sur7uWy1Rmf2rORhU648qfuUVSrRhxYrjeK9t6Df6s2jOpAe4IB
ZMsI7ngmhUewwVmOeC33Jgk08Qn0jYCHYkMJsCQgXIrXUka1YnLsNgoO66SWaitu
ovfOx3Ne2osWUFoeItMtCR+28rwvTlrvc9oK878gQNy8IiBx52UbI/mhh/z4c+eG
6/dBzGGjKGqBPD5vRkTvwKkOBhfiwcdqpxi3wYW4a8whDSb2fTlDU4JlmYIubOgc
TNkjw+HqdI1PYw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:21:31 2025 by rpki-client