Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
File: 4KM3CoQbiT57aPhqOTNjWC4QVkg.mft (raw, json)
Hash identifier: GGTSrut+fnyc/EqwDBXJQR6M/5a8Fzxe1ofER7wBDjk=
Subject key identifier: AE:1B:DC:5B:AA:AA:7C:63:29:A7:98:BB:A1:12:CA:11:E7:2C:6F:35
Authority key identifier: E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
Certificate issuer: /CN=e0a3370a841b893e7b68f86a393363582e105648
Certificate serial: 0196A0F6467E0ED7A859614014DE8996AF3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
Manifest number: 09FF
Signing time: Mon 05 May 2025 15:00:16 +0000
Manifest this update: Mon 05 May 2025 15:00:16 +0000
Manifest next update: Tue 06 May 2025 15:00:16 +0000
Files and hashes: 1: 4KM3CoQbiT57aPhqOTNjWC4QVkg.crl (hash: 5QkETM2IUKdTdfEZFWvdZ1mn8qVfceGKuR2vViRjPfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 15:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:f6:46:7e:0e:d7:a8:59:61:40:14:de:89:96:af:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0a3370a841b893e7b68f86a393363582e105648
Validity
Not Before: May 5 15:00:16 2025 GMT
Not After : May 6 15:00:16 2025 GMT
Subject: CN=ae1bdc5baaaa7c6329a798bba112ca11e72c6f35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ce:b9:e3:ed:58:1f:4d:a9:64:a6:12:b3:92:
04:7e:c8:c7:ba:ea:3b:fc:91:44:a5:c4:fd:47:18:
42:04:9e:97:ae:50:06:66:d6:27:fb:14:32:31:cb:
23:23:de:6b:5e:7e:6f:f9:af:f9:c0:85:c9:81:ca:
b1:27:1b:0f:23:3d:7e:c1:af:ff:bd:17:5a:b5:d6:
be:59:59:95:89:98:c5:18:a6:25:c5:ab:b0:e9:6d:
52:35:6f:3a:e8:df:16:72:e9:f5:12:64:d9:f6:da:
df:2d:60:84:10:e3:c2:91:a0:9e:13:5e:d9:02:34:
e4:50:55:02:60:05:16:1f:06:32:67:41:af:46:f1:
01:5d:0f:f3:95:62:eb:16:3d:79:a4:01:15:d0:19:
88:18:93:47:6a:52:87:21:ce:a2:8a:1e:58:7c:f2:
2a:3c:3a:3f:9d:2d:7b:dd:15:45:b7:38:e3:17:cd:
f9:3b:fc:3a:dd:8b:45:09:ee:cb:29:65:1d:2d:9d:
eb:8c:aa:48:be:58:c6:af:90:16:13:70:5a:c4:cf:
58:19:5d:98:b9:8a:ab:7a:99:cd:ca:78:62:79:85:
3b:91:8e:e3:f7:0b:79:c5:f1:78:3a:77:98:85:12:
4d:c6:30:de:fc:c7:c1:c9:4f:f6:04:64:d8:7c:45:
73:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:1B:DC:5B:AA:AA:7C:63:29:A7:98:BB:A1:12:CA:11:E7:2C:6F:35
X509v3 Authority Key Identifier:
keyid:E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:93:60:30:0a:cd:60:9a:66:5e:2c:a9:86:ad:c3:ca:6b:c5:
48:ec:18:93:0c:58:ec:85:25:82:66:a5:9c:e5:15:a3:3e:be:
e1:e3:fb:66:76:77:87:00:0a:fb:b0:f3:29:2d:4c:69:8e:f2:
7f:31:ac:ee:f9:ef:05:36:9b:3c:19:71:a1:1b:f6:10:4d:ed:
ca:ed:6d:c5:e6:21:9c:bd:df:54:bb:1d:68:cf:a1:0b:3d:de:
63:55:ac:86:32:f4:2e:a4:40:3f:b3:60:96:a2:65:60:c3:c4:
25:e5:10:8e:70:6b:cb:10:e4:d3:da:f1:a2:23:dc:ce:5d:44:
f7:60:05:c9:f3:4c:84:15:96:a5:f6:15:ce:0f:62:f1:e6:d6:
22:c4:b9:42:21:61:58:d1:c2:87:be:4d:50:52:60:a7:81:83:
e2:7d:da:c2:96:3e:d8:14:2b:9f:e9:06:f6:5d:9f:59:48:77:
61:72:c6:e2:da:02:33:d6:a1:ce:05:29:3e:80:5f:d0:48:e7:
06:40:9e:ac:2a:31:2d:17:28:d6:13:3d:e7:a7:47:f5:c0:68:
4c:ce:2a:81:28:e2:50:e4:1b:b8:e8:fe:77:d3:7f:28:e1:95:
98:11:96:bc:4f:34:60:3a:f5:f9:86:0c:7c:8c:cb:ff:01:45:
62:3e:bc:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZag9kZ+DteoWWFAFN6Jlq87MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwYTMzNzBhODQxYjg5M2U3YjY4Zjg2YTM5MzM2MzU4MmUx
MDU2NDgwHhcNMjUwNTA1MTUwMDE2WhcNMjUwNTA2MTUwMDE2WjAzMTEwLwYDVQQD
EyhhZTFiZGM1YmFhYWE3YzYzMjlhNzk4YmJhMTEyY2ExMWU3MmM2ZjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8654+1YH02pZKYSs5IEfsjHuuo7
/JFEpcT9RxhCBJ6XrlAGZtYn+xQyMcsjI95rXn5v+a/5wIXJgcqxJxsPIz1+wa//
vRdatda+WVmViZjFGKYlxauw6W1SNW866N8Wcun1EmTZ9trfLWCEEOPCkaCeE17Z
AjTkUFUCYAUWHwYyZ0GvRvEBXQ/zlWLrFj15pAEV0BmIGJNHalKHIc6iih5YfPIq
PDo/nS173RVFtzjjF835O/w63YtFCe7LKWUdLZ3rjKpIvljGr5AWE3BaxM9YGV2Y
uYqrepnNynhieYU7kY7j9wt5xfF4OneYhRJNxjDe/MfByU/2BGTYfEVz0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK4b3FuqqnxjKaeYu6ESyhHnLG81MB8GA1UdIwQY
MBaAFOCjNwqEG4k+e2j4ajkzY1guEFZIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEtNM0NvUWJpVDU3YVBocU9UTmpXQzRRVmtnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC85NTc0NmUtYmU1Mi00MmVlLTljYzgt
YzNlZGI0ZDhmNzFlLzEvNEtNM0NvUWJpVDU3YVBocU9UTmpXQzRRVmtnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC85NTc0NmUtYmU1Mi00MmVlLTljYzgtYzNlZGI0ZDhmNzFl
LzEvNEtNM0NvUWJpVDU3YVBocU9UTmpXQzRRVmtnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOZNgMArN
YJpmXiyphq3DymvFSOwYkwxY7IUlgmalnOUVoz6+4eP7ZnZ3hwAK+7DzKS1MaY7y
fzGs7vnvBTabPBlxoRv2EE3tyu1txeYhnL3fVLsdaM+hCz3eY1WshjL0LqRAP7Ng
lqJlYMPEJeUQjnBryxDk09rxoiPczl1E92AFyfNMhBWWpfYVzg9i8ebWIsS5QiFh
WNHCh75NUFJgp4GD4n3awpY+2BQrn+kG9l2fWUh3YXLG4toCM9ahzgUpPoBf0Ejn
BkCerCoxLRco1hM956dH9cBoTM4qgSjiUOQbuOj+d9N/KOGVmBGWvE80YDr1+YYM
fIzL/wFFYj68yA==
-----END CERTIFICATE-----
Generated at Tue May 6 00:47:40 2025 by rpki-client