Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
File: mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft (raw, json)
Hash identifier: c2afsFJT6nw0+V6dI1urIX+835WCwSNGZUit6iyRWpc=
Subject key identifier: 63:A3:79:35:3D:FF:78:9C:96:95:63:77:12:41:A3:71:F5:B5:A1:DF
Authority key identifier: 99:B0:42:5B:71:C2:B5:1C:D7:EB:E4:7D:3E:FE:7C:B9:86:1B:4D:82
Certificate issuer: /CN=99b0425b71c2b51cd7ebe47d3efe7cb9861b4d82
Certificate serial: 01965500BCD7A32CA38BF8B43394BD712E8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
Manifest number: 0AD3
Signing time: Sun 20 Apr 2025 21:00:33 +0000
Manifest this update: Sun 20 Apr 2025 21:00:33 +0000
Manifest next update: Mon 21 Apr 2025 21:00:33 +0000
Files and hashes: 1: mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl (hash: SQHz7+jCG+gDZPQa/ygeLEdRNwASAx/0/jHi/GLNS1Y=)
2: nZK_WOZBkx5CjkyneO9yoAn9z7M.roa (hash: dpA6T/m8yk0xZEgRWH2rVz82pLkCcKV+oqNh5OTEUXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:bc:d7:a3:2c:a3:8b:f8:b4:33:94:bd:71:2e:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99b0425b71c2b51cd7ebe47d3efe7cb9861b4d82
Validity
Not Before: Apr 20 21:00:33 2025 GMT
Not After : Apr 21 21:00:33 2025 GMT
Subject: CN=63a379353dff789c969563771241a371f5b5a1df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e1:20:fb:3a:9c:7a:d1:4d:b1:49:30:af:29:
e9:4f:ae:66:27:64:05:3a:7d:85:22:41:18:c0:11:
9f:3d:a0:17:d3:f4:1c:32:24:00:83:3e:34:7b:01:
fc:4c:5e:dd:f8:a2:93:c1:fa:03:b8:f2:cb:68:6c:
a8:ea:a7:64:32:90:7b:09:46:b3:5a:c0:eb:c5:72:
d9:9d:47:d8:bc:d7:3f:16:5f:d2:f1:89:f2:9e:3c:
eb:75:02:03:8e:b9:0f:5b:a2:5d:43:47:9b:de:f1:
5a:2f:fc:22:30:12:30:dd:54:13:f0:1c:01:f6:61:
40:ea:14:f6:90:52:6a:16:57:3f:6b:f2:15:65:41:
94:2c:12:69:b2:ad:fd:df:e8:04:77:66:76:39:62:
3e:10:74:23:96:a6:c5:9c:d9:8f:96:dd:d8:46:46:
33:00:45:ad:b1:27:35:1a:26:f3:50:8b:c5:29:28:
a1:af:94:26:95:d4:21:53:44:4a:a5:32:04:b3:0c:
f9:41:c0:81:81:d5:ae:14:5a:46:7b:48:20:c0:05:
dd:8c:fe:df:49:00:3e:36:dc:15:3a:f1:d4:43:52:
e5:92:61:cc:01:89:f5:d4:6d:9b:13:20:b4:21:38:
74:5e:31:33:aa:d2:56:16:c5:94:d1:0d:76:32:6b:
cf:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:A3:79:35:3D:FF:78:9C:96:95:63:77:12:41:A3:71:F5:B5:A1:DF
X509v3 Authority Key Identifier:
keyid:99:B0:42:5B:71:C2:B5:1C:D7:EB:E4:7D:3E:FE:7C:B9:86:1B:4D:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:67:fc:77:33:27:9d:c6:84:2c:ed:b4:2e:f2:39:80:85:92:
b8:44:48:87:77:1e:f5:67:de:12:fd:a8:43:43:0a:87:b9:c7:
dc:62:9c:70:3b:ae:23:20:e5:1e:db:2c:b0:cf:c1:3e:d0:ff:
4d:bd:2d:b5:e1:51:0c:50:6b:c9:f7:c8:38:16:16:8e:8e:8f:
86:9c:5c:06:9c:c4:5f:59:79:ed:1c:ef:67:59:fd:5a:f8:13:
c2:a4:2a:db:ff:0e:e3:94:8a:66:c4:54:c2:08:f6:53:85:5e:
e6:10:f1:e9:c3:dd:15:50:bb:3d:3b:9e:12:c8:8f:97:dd:dc:
e7:f1:95:ad:9e:eb:0c:4c:5f:63:58:53:15:58:b6:42:b5:39:
9d:3f:21:20:90:4f:96:c6:f8:bf:64:1e:43:d0:a3:54:32:5e:
a0:1f:1f:6f:a8:43:b0:b5:b1:fc:63:5a:28:6a:4e:0a:89:b0:
77:f2:f0:ad:18:0f:e6:25:d8:76:04:05:a2:79:d2:e0:96:d6:
ab:90:de:8b:d0:a5:ce:6b:c9:4a:ad:0f:e8:ce:ec:cd:57:16:
42:21:f1:1f:8c:07:c1:cf:bf:ed:17:55:29:81:d7:d2:bb:b8:
7c:e5:13:1e:52:b9:1f:fb:3b:00:52:be:a7:2b:da:eb:01:1c:
5a:5d:af:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVALzXoyyji/i0M5S9cS6KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5YjA0MjViNzFjMmI1MWNkN2ViZTQ3ZDNlZmU3Y2I5ODYx
YjRkODIwHhcNMjUwNDIwMjEwMDMzWhcNMjUwNDIxMjEwMDMzWjAzMTEwLwYDVQQD
Eyg2M2EzNzkzNTNkZmY3ODljOTY5NTYzNzcxMjQxYTM3MWY1YjVhMWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApuEg+zqcetFNsUkwrynpT65mJ2QF
On2FIkEYwBGfPaAX0/QcMiQAgz40ewH8TF7d+KKTwfoDuPLLaGyo6qdkMpB7CUaz
WsDrxXLZnUfYvNc/Fl/S8YnynjzrdQIDjrkPW6JdQ0eb3vFaL/wiMBIw3VQT8BwB
9mFA6hT2kFJqFlc/a/IVZUGULBJpsq393+gEd2Z2OWI+EHQjlqbFnNmPlt3YRkYz
AEWtsSc1GibzUIvFKSihr5QmldQhU0RKpTIEswz5QcCBgdWuFFpGe0ggwAXdjP7f
SQA+NtwVOvHUQ1LlkmHMAYn11G2bEyC0ITh0XjEzqtJWFsWU0Q12MmvPOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGOjeTU9/3iclpVjdxJBo3H1taHfMB8GA1UdIwQY
MBaAFJmwQltxwrUc1+vkfT7+fLmGG02CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWJCQ1czSEN0UnpYNi1SOVB2NTh1WVliVFlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni85ZTk4MmQtYWQ1Yi00MTAwLThkOWQt
ZDFlZmNlZWMzNGMxLzEvbWJCQ1czSEN0UnpYNi1SOVB2NTh1WVliVFlJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni85ZTk4MmQtYWQ1Yi00MTAwLThkOWQtZDFlZmNlZWMzNGMx
LzEvbWJCQ1czSEN0UnpYNi1SOVB2NTh1WVliVFlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEmf8dzMn
ncaELO20LvI5gIWSuERIh3ce9WfeEv2oQ0MKh7nH3GKccDuuIyDlHtsssM/BPtD/
Tb0tteFRDFBryffIOBYWjo6PhpxcBpzEX1l57RzvZ1n9WvgTwqQq2/8O45SKZsRU
wgj2U4Ve5hDx6cPdFVC7PTueEsiPl93c5/GVrZ7rDExfY1hTFVi2QrU5nT8hIJBP
lsb4v2QeQ9CjVDJeoB8fb6hDsLWx/GNaKGpOComwd/LwrRgP5iXYdgQFonnS4JbW
q5Dei9ClzmvJSq0P6M7szVcWQiHxH4wHwc+/7RdVKYHX0ru4fOUTHlK5H/s7AFK+
pyva6wEcWl2vDg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:26:00 2025 by rpki-client