Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/68c008-69d3-436f-ad33-2dbe785422f8/1/dpoO0TWR1LhMp5qOtXciYHZlGhQ.mft
File: dpoO0TWR1LhMp5qOtXciYHZlGhQ.mft (raw, json)
Hash identifier: qoiY4d7GojE0Xr6UGvBM/jjgtVdoRxYel20r8ewofbQ=
Subject key identifier: 24:16:13:A6:39:4D:AE:EF:68:01:A9:E6:B3:5B:90:31:C9:B1:F4:2C
Authority key identifier: 76:9A:0E:D1:35:91:D4:B8:4C:A7:9A:8E:B5:77:22:60:76:65:1A:14
Certificate issuer: /CN=769a0ed13591d4b84ca79a8eb577226076651a14
Certificate serial: 019645C5A759E09BC42408401B693FFFBF26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpoO0TWR1LhMp5qOtXciYHZlGhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/68c008-69d3-436f-ad33-2dbe785422f8/1/dpoO0TWR1LhMp5qOtXciYHZlGhQ.mft
Manifest number: 0904
Signing time: Thu 17 Apr 2025 22:01:43 +0000
Manifest this update: Thu 17 Apr 2025 22:01:43 +0000
Manifest next update: Fri 18 Apr 2025 22:01:43 +0000
Files and hashes: 1: dpoO0TWR1LhMp5qOtXciYHZlGhQ.crl (hash: PuCWOOHgqlB2+6D6CMjQpr8TXUlp+4tAf7ra4Utdn1c=)
2: r2xenfWR41SW-pcJkK2n6k9oW9c.roa (hash: 9h5yss6Wot3H0ZXysamwxUCIRFlANswYmfwPee5G6HI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/68c008-69d3-436f-ad33-2dbe785422f8/1/dpoO0TWR1LhMp5qOtXciYHZlGhQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/68c008-69d3-436f-ad33-2dbe785422f8/1/dpoO0TWR1LhMp5qOtXciYHZlGhQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/dpoO0TWR1LhMp5qOtXciYHZlGhQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:c5:a7:59:e0:9b:c4:24:08:40:1b:69:3f:ff:bf:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=769a0ed13591d4b84ca79a8eb577226076651a14
Validity
Not Before: Apr 17 22:01:43 2025 GMT
Not After : Apr 18 22:01:43 2025 GMT
Subject: CN=241613a6394daeef6801a9e6b35b9031c9b1f42c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ee:48:d4:25:82:db:6e:b7:3c:0a:99:f9:b2:
dc:eb:35:6c:f2:7b:3a:21:16:90:ee:21:36:27:ec:
7a:d3:67:fb:6a:33:ef:b2:4d:39:56:24:68:03:87:
1f:dd:93:53:f3:f9:16:06:45:cc:dc:c4:eb:bd:e3:
c5:fa:14:20:9b:47:61:0d:1c:b4:c1:81:33:03:35:
2d:7b:31:b7:33:a1:cc:20:38:07:95:b1:bb:ff:32:
4c:65:ea:a0:fa:3d:16:f2:f6:6c:0a:08:1f:25:b6:
77:15:d5:0f:e2:59:26:96:ab:08:70:ba:56:52:cb:
cd:97:3d:b4:a0:d2:90:e3:bc:70:79:46:7e:63:5e:
67:a3:c2:80:a7:c6:66:f6:08:7e:a7:fd:15:1e:b6:
7a:8d:6a:6a:73:84:c7:4b:8a:4b:72:9c:5e:17:3f:
ac:ce:4e:1f:87:41:92:19:94:b2:45:b0:40:5e:fb:
f6:62:b4:d7:da:2e:dc:3d:ae:a0:ff:cc:f0:49:28:
83:89:90:3d:0d:7d:84:06:cf:57:b9:da:49:4a:fb:
66:e7:3d:21:84:50:b6:a9:1e:b1:1b:67:41:7c:98:
2e:48:e8:4c:c0:5d:b2:c4:8f:9c:27:39:f6:af:6b:
1a:06:42:74:96:30:59:5f:fb:22:ad:cb:89:f6:0d:
d5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:16:13:A6:39:4D:AE:EF:68:01:A9:E6:B3:5B:90:31:C9:B1:F4:2C
X509v3 Authority Key Identifier:
keyid:76:9A:0E:D1:35:91:D4:B8:4C:A7:9A:8E:B5:77:22:60:76:65:1A:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpoO0TWR1LhMp5qOtXciYHZlGhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/68c008-69d3-436f-ad33-2dbe785422f8/1/dpoO0TWR1LhMp5qOtXciYHZlGhQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/68c008-69d3-436f-ad33-2dbe785422f8/1/dpoO0TWR1LhMp5qOtXciYHZlGhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:ca:4b:a3:a6:7e:e7:b5:20:3f:bb:80:24:fe:dd:5f:00:a5:
1e:be:28:af:52:04:9b:f2:33:1d:72:1e:b8:e6:4f:a2:dd:20:
36:d8:43:41:14:a4:95:6d:54:1a:3f:ba:43:c2:0a:eb:93:d5:
6d:94:c1:e6:13:c0:1c:38:29:e6:15:ba:4b:97:11:50:29:87:
78:15:c1:07:f2:9c:e8:ac:f9:70:12:fb:18:d4:b6:91:21:09:
c6:a8:9e:c1:e1:58:11:b7:d9:f8:7c:1b:ef:e4:ae:f9:73:28:
93:70:a7:36:a3:8e:c0:4b:35:55:82:fb:23:b0:b6:9e:6d:ce:
33:e1:7b:25:c8:45:15:f9:aa:e2:50:c1:de:a4:46:62:2a:3a:
15:8e:b0:b9:0d:bc:f7:7c:44:ed:c7:78:0f:42:23:b9:d2:68:
c8:89:09:03:09:1b:fb:26:a3:0d:4b:37:57:61:bc:5a:d7:25:
af:fa:6e:5b:4a:9e:6d:ef:b7:df:54:17:a2:69:28:cc:b9:e8:
83:05:b2:2a:5b:f6:54:5d:49:c7:a9:89:22:75:73:e8:3e:f2:
1a:45:ab:c2:0d:42:29:57:1f:53:37:01:7a:5d:a9:52:04:8a:
91:5b:28:0e:5c:ac:b8:39:2c:33:08:55:97:59:05:46:be:d9:
96:c1:cb:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZFxadZ4JvEJAhAG2k//78mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2OWEwZWQxMzU5MWQ0Yjg0Y2E3OWE4ZWI1NzcyMjYwNzY2
NTFhMTQwHhcNMjUwNDE3MjIwMTQzWhcNMjUwNDE4MjIwMTQzWjAzMTEwLwYDVQQD
EygyNDE2MTNhNjM5NGRhZWVmNjgwMWE5ZTZiMzViOTAzMWM5YjFmNDJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtO5I1CWC2263PAqZ+bLc6zVs8ns6
IRaQ7iE2J+x602f7ajPvsk05ViRoA4cf3ZNT8/kWBkXM3MTrvePF+hQgm0dhDRy0
wYEzAzUtezG3M6HMIDgHlbG7/zJMZeqg+j0W8vZsCggfJbZ3FdUP4lkmlqsIcLpW
UsvNlz20oNKQ47xweUZ+Y15no8KAp8Zm9gh+p/0VHrZ6jWpqc4THS4pLcpxeFz+s
zk4fh0GSGZSyRbBAXvv2YrTX2i7cPa6g/8zwSSiDiZA9DX2EBs9XudpJSvtm5z0h
hFC2qR6xG2dBfJguSOhMwF2yxI+cJzn2r2saBkJ0ljBZX/sircuJ9g3VgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCQWE6Y5Ta7vaAGp5rNbkDHJsfQsMB8GA1UdIwQY
MBaAFHaaDtE1kdS4TKeajrV3ImB2ZRoUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHBvTzBUV1IxTGhNcDVxT3RYY2lZSFpsR2hRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni82OGMwMDgtNjlkMy00MzZmLWFkMzMt
MmRiZTc4NTQyMmY4LzEvZHBvTzBUV1IxTGhNcDVxT3RYY2lZSFpsR2hRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni82OGMwMDgtNjlkMy00MzZmLWFkMzMtMmRiZTc4NTQyMmY4
LzEvZHBvTzBUV1IxTGhNcDVxT3RYY2lZSFpsR2hRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAscpLo6Z+
57UgP7uAJP7dXwClHr4or1IEm/IzHXIeuOZPot0gNthDQRSklW1UGj+6Q8IK65PV
bZTB5hPAHDgp5hW6S5cRUCmHeBXBB/Kc6Kz5cBL7GNS2kSEJxqieweFYEbfZ+Hwb
7+Su+XMok3CnNqOOwEs1VYL7I7C2nm3OM+F7JchFFfmq4lDB3qRGYio6FY6wuQ28
93xE7cd4D0IjudJoyIkJAwkb+yajDUs3V2G8Wtclr/puW0qebe+331QXomkozLno
gwWyKlv2VF1Jx6mJInVz6D7yGkWrwg1CKVcfUzcBel2pUgSKkVsoDlysuDksMwhV
l1kFRr7ZlsHLuw==
-----END CERTIFICATE-----
Generated at Fri Apr 18 02:54:50 2025 by rpki-client