Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft
File: Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft (raw, json)
Hash identifier: t7W6EpEiTRPFkup4x/U5pMRh7Uu3hIYDKCcgGL3674g=
Subject key identifier: 45:43:C6:08:0B:DC:4C:94:1F:B6:70:C4:E9:E2:DE:8F:A1:B9:D8:03
Authority key identifier: 52:6F:9C:0D:97:D6:36:7E:0C:A7:2D:16:24:C5:85:0A:61:0D:65:AE
Certificate issuer: /CN=526f9c0d97d6367e0ca72d1624c5850a610d65ae
Certificate serial: 01965011ACBBFF9D4E5E33FCB7E3465AE3B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Um-cDZfWNn4Mpy0WJMWFCmENZa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft
Manifest number: 0EC6
Signing time: Sat 19 Apr 2025 22:00:57 +0000
Manifest this update: Sat 19 Apr 2025 22:00:57 +0000
Manifest next update: Sun 20 Apr 2025 22:00:57 +0000
Files and hashes: 1: Um-cDZfWNn4Mpy0WJMWFCmENZa4.crl (hash: iznqQ5KBGUGUgJSrmkNX3W4Bw0fu2nBWORKlqbsq6A4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Um-cDZfWNn4Mpy0WJMWFCmENZa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:11:ac:bb:ff:9d:4e:5e:33:fc:b7:e3:46:5a:e3:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=526f9c0d97d6367e0ca72d1624c5850a610d65ae
Validity
Not Before: Apr 19 22:00:57 2025 GMT
Not After : Apr 20 22:00:57 2025 GMT
Subject: CN=4543c6080bdc4c941fb670c4e9e2de8fa1b9d803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:6b:16:ec:52:30:de:b9:65:2c:a6:c8:11:16:
a9:65:1c:78:d2:b5:99:d0:e4:bf:56:04:36:1e:93:
68:b6:51:a0:53:0a:09:da:69:fa:8c:08:8c:9b:1f:
7c:ff:5a:42:f9:2a:4c:ab:4e:95:f3:9f:0b:ea:8a:
ff:9c:9e:77:58:f8:d6:4c:c4:b3:ca:9c:31:22:31:
65:b5:26:b9:17:e6:49:76:0b:bd:25:cd:0a:0f:e4:
79:fd:da:37:4f:ff:e5:54:b3:9c:4a:39:ad:bb:4e:
93:af:be:13:84:9d:b8:94:35:70:66:33:11:39:95:
4f:95:69:43:9e:0c:cf:37:76:c6:7f:eb:0e:4e:86:
9f:9e:4b:a0:cb:0f:82:6d:ae:8e:67:40:4f:f1:83:
24:e3:f4:7b:cd:4c:07:ab:de:ef:22:76:4a:b4:04:
fc:d1:78:43:3d:c9:45:ea:84:50:c3:ff:53:0f:ca:
a9:60:10:62:6c:ff:be:e7:25:85:7a:12:e1:94:df:
f6:97:d8:41:69:0c:cf:8e:47:ac:cd:8d:54:37:7a:
fb:e4:6c:e5:90:33:c9:18:7d:6d:e8:f1:02:d8:0e:
ee:2d:a2:52:b4:c5:f6:0a:6e:b4:68:12:dc:1a:03:
cb:8f:3a:7a:23:51:3c:ae:4f:e6:8b:bf:74:77:6c:
9a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:43:C6:08:0B:DC:4C:94:1F:B6:70:C4:E9:E2:DE:8F:A1:B9:D8:03
X509v3 Authority Key Identifier:
keyid:52:6F:9C:0D:97:D6:36:7E:0C:A7:2D:16:24:C5:85:0A:61:0D:65:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Um-cDZfWNn4Mpy0WJMWFCmENZa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:55:2e:b1:46:80:be:6c:17:9f:18:71:74:7a:03:51:93:44:
64:86:5c:ba:63:c5:dd:3a:4b:2b:af:a6:2e:9e:2e:5e:e4:ad:
e2:2c:e0:99:d5:aa:85:74:5a:0e:45:de:ee:df:7d:f6:cd:db:
49:57:f3:71:2b:5a:27:db:6e:6e:41:4a:ce:80:19:f9:7b:68:
15:67:60:7d:86:64:6d:81:0c:b9:e5:cc:79:50:71:8c:d2:70:
d2:1d:ca:6a:b9:d7:d6:9e:b8:c2:96:26:d7:9a:04:93:5e:f2:
12:f0:b7:7f:d7:99:8b:06:c7:dc:82:ed:a3:c6:6b:ba:ce:42:
2f:c7:c4:01:df:79:46:86:e2:c4:11:45:e4:7d:c6:c7:04:56:
8b:1e:ca:14:41:70:2f:d7:3b:1c:0d:78:bb:51:ea:e3:2b:0f:
df:51:73:8e:18:f7:e1:c8:0e:3f:f5:5a:88:cc:13:52:ee:56:
c9:ce:88:b6:a7:e8:a4:f2:75:14:68:6f:25:dc:2d:86:0b:3d:
44:63:79:92:19:bc:9a:31:0d:ba:52:e1:4e:51:b7:fb:d7:31:
6f:3b:f3:2e:6d:36:02:70:a4:79:41:9f:d2:98:9a:ec:dc:54:
b9:3a:47:0c:53:4e:b1:c9:90:40:27:3d:7b:16:4c:9f:7f:3c:
e0:7b:c2:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZQEay7/51OXjP8t+NGWuOyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNmY5YzBkOTdkNjM2N2UwY2E3MmQxNjI0YzU4NTBhNjEw
ZDY1YWUwHhcNMjUwNDE5MjIwMDU3WhcNMjUwNDIwMjIwMDU3WjAzMTEwLwYDVQQD
Eyg0NTQzYzYwODBiZGM0Yzk0MWZiNjcwYzRlOWUyZGU4ZmExYjlkODAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8GsW7FIw3rllLKbIERapZRx40rWZ
0OS/VgQ2HpNotlGgUwoJ2mn6jAiMmx98/1pC+SpMq06V858L6or/nJ53WPjWTMSz
ypwxIjFltSa5F+ZJdgu9Jc0KD+R5/do3T//lVLOcSjmtu06Tr74ThJ24lDVwZjMR
OZVPlWlDngzPN3bGf+sOToafnkugyw+Cba6OZ0BP8YMk4/R7zUwHq97vInZKtAT8
0XhDPclF6oRQw/9TD8qpYBBibP++5yWFehLhlN/2l9hBaQzPjkeszY1UN3r75Gzl
kDPJGH1t6PEC2A7uLaJStMX2Cm60aBLcGgPLjzp6I1E8rk/mi790d2yazwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEVDxggL3EyUH7ZwxOni3o+hudgDMB8GA1UdIwQY
MBaAFFJvnA2X1jZ+DKctFiTFhQphDWWuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW0tY0RaZldObjRNcHkwV0pNV0ZDbUVOWmE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS82NDhhMDgtMzUxMy00MjZlLThlZWUt
OThlZmM4MGExNTkzLzEvVW0tY0RaZldObjRNcHkwV0pNV0ZDbUVOWmE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS82NDhhMDgtMzUxMy00MjZlLThlZWUtOThlZmM4MGExNTkz
LzEvVW0tY0RaZldObjRNcHkwV0pNV0ZDbUVOWmE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVFUusUaA
vmwXnxhxdHoDUZNEZIZcumPF3TpLK6+mLp4uXuSt4izgmdWqhXRaDkXe7t999s3b
SVfzcStaJ9tubkFKzoAZ+XtoFWdgfYZkbYEMueXMeVBxjNJw0h3KarnX1p64wpYm
15oEk17yEvC3f9eZiwbH3ILto8Zrus5CL8fEAd95RobixBFF5H3GxwRWix7KFEFw
L9c7HA14u1Hq4ysP31Fzjhj34cgOP/VaiMwTUu5Wyc6ItqfopPJ1FGhvJdwthgs9
RGN5khm8mjENulLhTlG3+9cxbzvzLm02AnCkeUGf0pia7NxUuTpHDFNOscmQQCc9
exZMn3884HvCYA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:09:30 2025 by rpki-client