Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.mft
File: tDlkbascuAzWConx-qE0bzlSO_o.mft (raw, json)
Hash identifier: abRFy/PZW6CWeaDWYX7g5DTPuCW3XglCSq4URLVWdAg=
Subject key identifier: 43:42:39:DB:F1:55:E4:3E:E5:EA:A2:45:EB:4E:F1:BC:91:8E:AB:60
Authority key identifier: B4:39:64:6D:AB:1C:B8:0C:D6:0A:89:F1:FA:A1:34:6F:39:52:3B:FA
Certificate issuer: /CN=b439646dab1cb80cd60a89f1faa1346f39523bfa
Certificate serial: 01964F6C505591673CD3439D1FD3F2C6B195
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlkbascuAzWConx-qE0bzlSO_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.mft
Manifest number: 14F7
Signing time: Sat 19 Apr 2025 19:00:20 +0000
Manifest this update: Sat 19 Apr 2025 19:00:20 +0000
Manifest next update: Sun 20 Apr 2025 19:00:20 +0000
Files and hashes: 1: tDlkbascuAzWConx-qE0bzlSO_o.crl (hash: 7raPd0gXfmEZgqQD7hXNq/lNKxE6+Pu5E1qR0cEqLMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDlkbascuAzWConx-qE0bzlSO_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 19:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6c:50:55:91:67:3c:d3:43:9d:1f:d3:f2:c6:b1:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b439646dab1cb80cd60a89f1faa1346f39523bfa
Validity
Not Before: Apr 19 19:00:20 2025 GMT
Not After : Apr 20 19:00:20 2025 GMT
Subject: CN=434239dbf155e43ee5eaa245eb4ef1bc918eab60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:01:5c:7c:c8:dc:9f:30:b2:a3:70:00:88:4c:
30:91:5a:c4:e8:96:05:c6:28:48:81:0e:e4:8c:c7:
b0:8a:e7:a6:6a:4a:55:45:b5:93:bd:85:2f:7d:24:
27:0d:f3:de:a0:b2:65:a4:aa:b4:b7:aa:ab:b3:31:
94:6b:56:ad:43:87:07:b5:03:98:79:43:62:1c:06:
db:a6:8a:5b:8c:fc:f0:43:49:67:a8:2e:e2:2e:52:
b3:c0:1c:b8:e7:93:b0:33:4a:b9:14:4b:f3:4f:b3:
29:42:14:2d:50:6f:11:ee:3d:ab:fd:30:b4:f2:82:
65:3c:2c:98:7b:0a:55:96:71:26:f1:fa:70:dd:5d:
77:02:aa:ad:b9:7b:2a:8c:ae:f2:34:54:e4:4f:1f:
fe:7a:7a:5d:e9:49:23:97:5f:3a:69:97:54:2f:20:
51:0a:66:d2:83:b1:8d:ca:27:c1:40:81:4b:21:59:
f0:a9:71:77:c7:6d:48:80:56:1d:dd:d5:7a:2c:88:
e4:1d:52:f9:c1:73:55:87:64:6f:d6:c6:3f:88:0e:
95:f3:d9:ec:37:fd:c5:be:f2:bc:a2:53:c8:c0:5f:
53:71:a2:8b:ac:a3:69:5b:07:33:45:34:65:7a:66:
74:1f:41:ac:c3:73:90:bf:34:cb:1e:e4:30:b1:57:
d8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:42:39:DB:F1:55:E4:3E:E5:EA:A2:45:EB:4E:F1:BC:91:8E:AB:60
X509v3 Authority Key Identifier:
keyid:B4:39:64:6D:AB:1C:B8:0C:D6:0A:89:F1:FA:A1:34:6F:39:52:3B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlkbascuAzWConx-qE0bzlSO_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/cd4f4d-aa58-4a2f-a3c5-7e8c545a97ae/1/tDlkbascuAzWConx-qE0bzlSO_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:6c:63:f1:6a:51:69:47:9c:1f:36:01:4c:34:56:a9:a7:29:
43:bb:16:0c:06:25:44:79:1e:94:18:fe:e5:44:13:e1:77:eb:
31:9c:f2:02:e9:8f:3a:89:ca:f2:e4:8f:a8:6f:01:7c:92:91:
f3:40:03:f1:9e:fa:64:a6:1d:d8:e9:34:9f:fc:53:8d:90:55:
97:66:8a:c8:17:0c:8f:71:bc:c2:86:46:ce:c8:5c:f4:93:00:
13:d2:4d:07:66:d0:aa:0d:da:8e:8c:2d:a8:db:84:14:06:b8:
8a:f9:94:c8:01:15:b3:6d:65:85:9b:cb:64:61:58:66:9d:24:
ce:4c:08:a4:cf:27:aa:c0:2c:75:51:7d:d8:2d:df:66:24:53:
cc:66:e9:07:d2:9b:0f:9c:91:39:17:e4:4b:c6:9b:2c:67:b2:
34:78:70:88:9a:b0:9b:28:20:2e:ef:10:18:ce:16:c8:cd:17:
a2:55:f5:06:a3:f9:ce:42:c1:ec:2f:d9:d5:ae:19:da:31:08:
62:e2:64:de:19:08:25:ab:bc:c4:8d:7b:ae:05:91:10:a0:f0:
5d:a3:d0:f7:f7:5b:99:72:ab:49:79:6e:9a:3d:78:fd:13:83:
2e:d4:18:eb:09:22:8c:b8:16:30:a9:11:fa:68:0a:5e:29:27:
f0:86:9a:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZPbFBVkWc800OdH9PyxrGVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Mzk2NDZkYWIxY2I4MGNkNjBhODlmMWZhYTEzNDZmMzk1
MjNiZmEwHhcNMjUwNDE5MTkwMDIwWhcNMjUwNDIwMTkwMDIwWjAzMTEwLwYDVQQD
Eyg0MzQyMzlkYmYxNTVlNDNlZTVlYWEyNDVlYjRlZjFiYzkxOGVhYjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3wFcfMjcnzCyo3AAiEwwkVrE6JYF
xihIgQ7kjMewiuemakpVRbWTvYUvfSQnDfPeoLJlpKq0t6qrszGUa1atQ4cHtQOY
eUNiHAbbpopbjPzwQ0lnqC7iLlKzwBy455OwM0q5FEvzT7MpQhQtUG8R7j2r/TC0
8oJlPCyYewpVlnEm8fpw3V13AqqtuXsqjK7yNFTkTx/+enpd6Ukjl186aZdULyBR
CmbSg7GNyifBQIFLIVnwqXF3x21IgFYd3dV6LIjkHVL5wXNVh2Rv1sY/iA6V89ns
N/3FvvK8olPIwF9TcaKLrKNpWwczRTRlemZ0H0Gsw3OQvzTLHuQwsVfYGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFENCOdvxVeQ+5eqiRetO8byRjqtgMB8GA1UdIwQY
MBaAFLQ5ZG2rHLgM1gqJ8fqhNG85Ujv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERsa2Jhc2N1QXpXQ29ueC1xRTBiemxTT19vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9jZDRmNGQtYWE1OC00YTJmLWEzYzUt
N2U4YzU0NWE5N2FlLzEvdERsa2Jhc2N1QXpXQ29ueC1xRTBiemxTT19vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy9jZDRmNGQtYWE1OC00YTJmLWEzYzUtN2U4YzU0NWE5N2Fl
LzEvdERsa2Jhc2N1QXpXQ29ueC1xRTBiemxTT19vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP2xj8WpR
aUecHzYBTDRWqacpQ7sWDAYlRHkelBj+5UQT4XfrMZzyAumPOonK8uSPqG8BfJKR
80AD8Z76ZKYd2Ok0n/xTjZBVl2aKyBcMj3G8woZGzshc9JMAE9JNB2bQqg3ajowt
qNuEFAa4ivmUyAEVs21lhZvLZGFYZp0kzkwIpM8nqsAsdVF92C3fZiRTzGbpB9Kb
D5yRORfkS8abLGeyNHhwiJqwmyggLu8QGM4WyM0XolX1BqP5zkLB7C/Z1a4Z2jEI
YuJk3hkIJau8xI17rgWREKDwXaPQ9/dbmXKrSXlumj14/RODLtQY6wkijLgWMKkR
+mgKXikn8Iaahg==
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:16:34 2025 by rpki-client