Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
File: ChCKKMcHsOXCwubCE31Fh5EUu5I.mft (raw, json)
Hash identifier: Mb7mugXjAWlXyscNNFRdXRJz93xcAw7bFkU1mxQMwDU=
Subject key identifier: 3C:28:B5:7D:A7:57:8E:D5:EA:54:3A:AD:8E:90:F6:7B:90:54:0C:BC
Authority key identifier: 0A:10:8A:28:C7:07:B0:E5:C2:C2:E6:C2:13:7D:45:87:91:14:BB:92
Certificate issuer: /CN=0a108a28c707b0e5c2c2e6c2137d45879114bb92
Certificate serial: 0196545BE310C5A8F25405388A7AC42FB4E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
Manifest number: 06F7
Signing time: Sun 20 Apr 2025 18:00:30 +0000
Manifest this update: Sun 20 Apr 2025 18:00:30 +0000
Manifest next update: Mon 21 Apr 2025 18:00:30 +0000
Files and hashes: 1: ChCKKMcHsOXCwubCE31Fh5EUu5I.crl (hash: bcfYIaQpuHuEySinmK4br2Uq8Ybn7FwfC2PWHsrX4II=)
2: eO8gPZF0Xg3a6oErz3xsis78_yg.roa (hash: ARYdnlTRJg0XCA/7uUE4AwiYMl9F7vHnb8qFPrerwpk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 18:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5b:e3:10:c5:a8:f2:54:05:38:8a:7a:c4:2f:b4:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a108a28c707b0e5c2c2e6c2137d45879114bb92
Validity
Not Before: Apr 20 18:00:30 2025 GMT
Not After : Apr 21 18:00:30 2025 GMT
Subject: CN=3c28b57da7578ed5ea543aad8e90f67b90540cbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3b:74:de:b3:dc:ed:30:db:63:0e:d4:29:41:
c4:e8:8c:ef:6e:e7:f2:03:d0:3f:36:a0:22:28:e5:
b4:f8:33:8b:05:d4:90:f2:f9:64:79:7c:6b:60:42:
29:7b:f0:b1:08:9f:ac:c6:25:7a:8c:aa:b1:a6:e3:
53:15:78:fc:d5:c2:86:ec:6f:62:5e:72:50:97:94:
f8:02:aa:f2:bc:65:c1:0c:49:df:d3:3d:9a:d4:ec:
da:bd:60:90:55:47:de:1c:74:cd:b8:4e:d7:22:de:
e6:3e:11:4b:b8:7b:58:d1:e8:1d:46:11:23:48:62:
15:9f:ca:fe:c6:62:db:34:f5:90:9f:7f:e4:d5:65:
a0:e7:66:35:cd:c8:6f:90:50:0e:fe:24:b5:44:44:
0d:b2:ef:48:0b:6f:51:72:05:a2:08:9b:70:b8:15:
43:1d:7f:eb:76:ae:23:18:c7:19:7f:af:14:e5:d2:
c5:e8:bc:cb:3f:8b:f7:02:8b:1a:4c:af:57:e8:01:
cb:57:4a:84:84:23:63:e9:e7:2d:be:a4:ac:d3:2a:
15:93:77:9f:d5:26:ec:37:2f:71:84:d4:37:e1:9a:
67:b6:15:f6:e2:fe:9a:74:8c:b2:e2:ec:3b:3c:ff:
d6:1c:93:6a:33:b7:9f:6d:2e:7c:ec:84:4b:91:e9:
d6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:28:B5:7D:A7:57:8E:D5:EA:54:3A:AD:8E:90:F6:7B:90:54:0C:BC
X509v3 Authority Key Identifier:
keyid:0A:10:8A:28:C7:07:B0:E5:C2:C2:E6:C2:13:7D:45:87:91:14:BB:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ChCKKMcHsOXCwubCE31Fh5EUu5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/139d23-802d-4224-832e-1f8581421760/1/ChCKKMcHsOXCwubCE31Fh5EUu5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:86:a0:c0:30:5b:95:82:ae:0e:7d:46:db:0e:35:9d:aa:54:
5b:f7:64:1e:7f:c1:ca:e5:72:c5:08:90:ca:c4:85:06:c7:37:
bb:c4:ed:d1:06:73:a0:ea:5c:80:0d:70:d7:5d:5f:65:8e:1f:
99:d5:93:36:8e:d6:ac:04:26:2b:d7:e8:fb:7a:35:29:b6:da:
cb:18:da:55:14:c1:c4:be:aa:e9:75:70:01:07:31:87:cf:61:
1c:bf:19:df:f9:7f:32:85:f9:ea:eb:82:d6:46:20:4c:d7:80:
c3:a9:09:a3:19:92:8e:17:d2:ed:5e:1c:69:1f:f5:dd:d7:d1:
20:05:c3:69:1c:0c:89:b8:26:b2:18:70:05:41:60:e1:ab:d0:
89:e4:a0:01:ba:f2:01:7a:55:98:6f:b8:a8:e7:70:2e:3b:0b:
e5:84:82:cf:94:71:62:10:11:53:7a:88:8f:f3:df:27:c8:0d:
94:b5:4f:ea:be:be:a6:85:88:8d:77:07:70:47:32:c9:5c:3a:
97:a6:48:01:9a:8e:14:1b:a1:f9:d4:41:51:07:73:14:09:97:
7e:6b:09:45:59:a6:2a:77:37:9c:51:e9:83:dc:13:b1:04:62:
ce:bf:a9:5b:42:2f:2c:40:ee:80:1f:3b:41:0a:33:a9:36:0d:
e0:8c:21:e3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZUW+MQxajyVAU4inrEL7TmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhMTA4YTI4YzcwN2IwZTVjMmMyZTZjMjEzN2Q0NTg3OTEx
NGJiOTIwHhcNMjUwNDIwMTgwMDMwWhcNMjUwNDIxMTgwMDMwWjAzMTEwLwYDVQQD
EygzYzI4YjU3ZGE3NTc4ZWQ1ZWE1NDNhYWQ4ZTkwZjY3YjkwNTQwY2JjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyjt03rPc7TDbYw7UKUHE6Izvbufy
A9A/NqAiKOW0+DOLBdSQ8vlkeXxrYEIpe/CxCJ+sxiV6jKqxpuNTFXj81cKG7G9i
XnJQl5T4AqryvGXBDEnf0z2a1OzavWCQVUfeHHTNuE7XIt7mPhFLuHtY0egdRhEj
SGIVn8r+xmLbNPWQn3/k1WWg52Y1zchvkFAO/iS1REQNsu9IC29RcgWiCJtwuBVD
HX/rdq4jGMcZf68U5dLF6LzLP4v3AosaTK9X6AHLV0qEhCNj6ectvqSs0yoVk3ef
1SbsNy9xhNQ34ZpnthX24v6adIyy4uw7PP/WHJNqM7efbS587IRLkenWsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDwotX2nV47V6lQ6rY6Q9nuQVAy8MB8GA1UdIwQY
MBaAFAoQiijHB7DlwsLmwhN9RYeRFLuSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2hDS0tNY0hzT1hDd3ViQ0UzMUZoNUVVdTVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8xMzlkMjMtODAyZC00MjI0LTgzMmUt
MWY4NTgxNDIxNzYwLzEvQ2hDS0tNY0hzT1hDd3ViQ0UzMUZoNUVVdTVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS8xMzlkMjMtODAyZC00MjI0LTgzMmUtMWY4NTgxNDIxNzYw
LzEvQ2hDS0tNY0hzT1hDd3ViQ0UzMUZoNUVVdTVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVIagwDBb
lYKuDn1G2w41napUW/dkHn/ByuVyxQiQysSFBsc3u8Tt0QZzoOpcgA1w111fZY4f
mdWTNo7WrAQmK9fo+3o1KbbayxjaVRTBxL6q6XVwAQcxh89hHL8Z3/l/MoX56uuC
1kYgTNeAw6kJoxmSjhfS7V4caR/13dfRIAXDaRwMibgmshhwBUFg4avQieSgAbry
AXpVmG+4qOdwLjsL5YSCz5RxYhARU3qIj/PfJ8gNlLVP6r6+poWIjXcHcEcyyVw6
l6ZIAZqOFBuh+dRBUQdzFAmXfmsJRVmmKnc3nFHpg9wTsQRizr+pW0IvLEDugB87
QQozqTYN4Iwh4w==
-----END CERTIFICATE-----
Generated at Mon Apr 21 04:03:30 2025 by rpki-client