Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
File: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft (raw, json)
Hash identifier: mpD8O2nY7fQkbbeB7/pxuD+gznYACd1o3Llq0nR6E9s=
Subject key identifier: 56:47:A6:C3:DA:83:1E:97:E7:6F:28:FB:D2:D1:8C:21:C3:F7:96:20
Authority key identifier: D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
Certificate issuer: /CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Certificate serial: 01964FDA8B9E4180C40978126A864D36C5C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
Manifest number: 0213
Signing time: Sat 19 Apr 2025 21:00:44 +0000
Manifest this update: Sat 19 Apr 2025 21:00:44 +0000
Manifest next update: Sun 20 Apr 2025 21:00:44 +0000
Files and hashes: 1: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl (hash: avV/G7fMkbdyftiqbmSKLLokyeVBhWLnMrSC3JpaX8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:8b:9e:41:80:c4:09:78:12:6a:86:4d:36:c5:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Validity
Not Before: Apr 19 21:00:44 2025 GMT
Not After : Apr 20 21:00:44 2025 GMT
Subject: CN=5647a6c3da831e97e76f28fbd2d18c21c3f79620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:73:cc:43:a1:78:99:8e:03:5b:7e:d5:78:dc:
6e:5e:2d:e9:ff:45:2a:ed:4e:2e:25:35:5f:47:64:
70:35:41:54:f6:4c:a0:3b:eb:0d:ab:7c:7e:dc:e1:
a2:93:68:c4:1d:7d:e9:b9:7e:eb:2e:a4:3c:23:4f:
32:e5:87:cb:98:8f:8e:fb:7d:68:82:ef:9c:9e:4b:
bb:19:63:05:8f:32:8e:fb:e3:77:16:9b:c4:e9:99:
50:fa:7b:dd:03:d6:9d:2e:cf:0b:bf:e7:f3:77:d8:
de:45:0f:ee:8f:28:75:d9:5c:98:8c:2b:48:3c:db:
4f:5b:bb:1b:dd:d8:c6:51:2f:e3:3e:73:64:d5:32:
8f:d2:b6:3f:4d:62:b5:87:aa:f2:12:e4:db:5e:c9:
19:f2:7e:2d:20:ad:0d:09:01:44:c2:eb:9b:85:38:
91:61:64:b2:e3:45:bb:03:be:2e:0a:f4:b4:d8:bb:
63:f1:d0:8c:71:15:af:5c:0d:57:a5:3e:12:38:4a:
24:d8:2a:3e:04:f5:15:a3:66:1b:c1:70:a9:6e:4d:
5f:69:2f:f1:d7:d6:0d:6c:96:18:2a:5e:f2:67:e6:
92:a1:12:59:d5:ec:d0:02:b8:59:9f:91:e0:99:56:
50:09:87:f3:44:d7:b9:97:10:fa:4d:9d:b4:05:73:
83:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:47:A6:C3:DA:83:1E:97:E7:6F:28:FB:D2:D1:8C:21:C3:F7:96:20
X509v3 Authority Key Identifier:
keyid:D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:af:9e:4e:f5:20:1e:9e:e1:54:22:ec:2f:e8:ba:b3:7a:67:
d8:c4:1c:90:7f:ac:73:94:e0:20:8f:8d:99:33:a8:9e:37:ba:
61:5a:b6:f6:bb:b0:48:88:74:f5:ec:b6:bf:fa:bf:80:ba:92:
94:3c:44:98:8f:2f:55:8e:5c:58:70:b8:30:11:f9:05:47:34:
ec:13:b3:41:ac:e9:f8:e3:5a:eb:bb:08:f1:f9:c7:a4:18:39:
79:2d:32:3d:d9:40:9d:4e:dd:28:f6:ae:fc:93:64:e8:ed:d6:
c2:11:51:30:76:6f:ac:b3:c7:4b:3b:6a:22:2a:e7:03:74:e4:
c5:a7:0b:b5:09:f9:98:98:ae:4c:85:2d:f0:d3:a3:3b:41:d1:
3e:f9:70:1b:24:c2:57:b7:55:1f:2a:5e:8a:24:68:28:dd:35:
92:66:81:79:ea:a3:8b:fd:cf:6b:d1:8c:0e:95:04:6e:00:ca:
11:d1:ee:4e:3a:4c:b7:0f:93:00:13:4a:7a:68:34:c9:2e:6a:
3f:ad:72:a4:2a:78:ed:f1:39:41:39:45:7e:5f:38:86:e5:bf:
d4:31:4e:51:47:cf:ac:0b:81:82:e6:d9:5a:b2:06:9f:81:62:
ce:4d:0e:de:f3:13:4b:c1:8a:34:d8:8e:f8:59:e6:8f:44:ef:
7b:cf:ef:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZP2oueQYDECXgSaoZNNsXCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0MmNjNDAyNjdlMzU5MmUxYjUyZjBmMDA5NmNiMWYyZjBh
ZjE2N2QwHhcNMjUwNDE5MjEwMDQ0WhcNMjUwNDIwMjEwMDQ0WjAzMTEwLwYDVQQD
Eyg1NjQ3YTZjM2RhODMxZTk3ZTc2ZjI4ZmJkMmQxOGMyMWMzZjc5NjIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXPMQ6F4mY4DW37VeNxuXi3p/0Uq
7U4uJTVfR2RwNUFU9kygO+sNq3x+3OGik2jEHX3puX7rLqQ8I08y5YfLmI+O+31o
gu+cnku7GWMFjzKO++N3FpvE6ZlQ+nvdA9adLs8Lv+fzd9jeRQ/ujyh12VyYjCtI
PNtPW7sb3djGUS/jPnNk1TKP0rY/TWK1h6ryEuTbXskZ8n4tIK0NCQFEwuubhTiR
YWSy40W7A74uCvS02Ltj8dCMcRWvXA1XpT4SOEok2Co+BPUVo2YbwXCpbk1faS/x
19YNbJYYKl7yZ+aSoRJZ1ezQArhZn5HgmVZQCYfzRNe5lxD6TZ20BXOD1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFZHpsPagx6X528o+9LRjCHD95YgMB8GA1UdIwQY
MBaAFNQsxAJn41kuG1Lw8AlssfLwrxZ9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUN6RUFtZmpXUzRiVXZEd0NXeXg4dkN2Rm4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83MTM0NWQtMmYyZC00YjU5LTllNjct
MTZlMTMwODczN2IwLzEvMUN6RUFtZmpXUzRiVXZEd0NXeXg4dkN2Rm4wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My83MTM0NWQtMmYyZC00YjU5LTllNjctMTZlMTMwODczN2Iw
LzEvMUN6RUFtZmpXUzRiVXZEd0NXeXg4dkN2Rm4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnK+eTvUg
Hp7hVCLsL+i6s3pn2MQckH+sc5TgII+NmTOonje6YVq29ruwSIh09ey2v/q/gLqS
lDxEmI8vVY5cWHC4MBH5BUc07BOzQazp+ONa67sI8fnHpBg5eS0yPdlAnU7dKPau
/JNk6O3WwhFRMHZvrLPHSztqIirnA3TkxacLtQn5mJiuTIUt8NOjO0HRPvlwGyTC
V7dVHypeiiRoKN01kmaBeeqji/3Pa9GMDpUEbgDKEdHuTjpMtw+TABNKemg0yS5q
P61ypCp47fE5QTlFfl84huW/1DFOUUfPrAuBgubZWrIGn4Fizk0O3vMTS8GKNNiO
+Fnmj0Tve8/vtA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 03:03:16 2025 by rpki-client