Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
File: d11030Q8uAUXzkFQ3OImYpQPHXw.mft (raw, json)
Hash identifier: WNDe5xCMKVn6EukN4gszgVpGeBSV0Nqr+hGv4flsPtg=
Subject key identifier: 57:A8:70:13:6A:5F:C1:9C:86:43:95:29:9D:12:8E:BF:77:60:3A:5A
Authority key identifier: 77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C
Certificate issuer: /CN=775d74df443cb80517ce4150dce22662940f1d7c
Certificate serial: 01958CCE7A740B110262920777227556E993
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
Manifest number: 08D1
Signing time: Thu 13 Mar 2025 00:01:36 +0000
Manifest this update: Thu 13 Mar 2025 00:01:36 +0000
Manifest next update: Fri 14 Mar 2025 00:01:36 +0000
Files and hashes: 1: d11030Q8uAUXzkFQ3OImYpQPHXw.crl (hash: 0a3+FBxmHbFJTUpRV3F22EKDrffnqzVNy2B6BL7JmrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:ce:7a:74:0b:11:02:62:92:07:77:22:75:56:e9:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=775d74df443cb80517ce4150dce22662940f1d7c
Validity
Not Before: Mar 13 00:01:36 2025 GMT
Not After : Mar 14 00:01:36 2025 GMT
Subject: CN=57a870136a5fc19c864395299d128ebf77603a5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f2:91:bf:26:06:08:5f:e9:3d:07:db:87:4d:
dd:94:27:8e:c1:5c:9e:f7:fe:c2:c1:da:c1:d5:0e:
36:cc:3d:72:ca:b6:1b:26:77:af:96:0f:5f:c9:f5:
c6:24:f3:b1:bc:1d:ab:38:c1:ab:88:f8:3d:5a:0a:
50:6b:7d:c7:95:8f:6f:e3:7e:02:da:48:46:d8:1d:
26:c8:93:30:0f:4d:0b:f2:71:d2:f3:64:66:47:84:
e0:d2:1d:d7:5c:ee:68:ed:27:8a:aa:a2:c8:e8:73:
64:12:10:80:38:74:88:f7:00:46:35:8f:06:52:dc:
b8:5f:cb:a6:ed:32:c0:ea:f9:5f:55:11:c1:67:20:
c3:f0:05:66:62:ef:57:7a:da:a8:92:3f:da:d8:2b:
55:43:f0:fd:61:ff:7d:0c:cf:7e:07:6c:1a:d6:9b:
1d:a4:5b:53:aa:f2:8a:f4:9f:6a:23:ac:04:05:fc:
31:53:54:33:76:5a:bb:79:87:de:50:b4:f2:a2:51:
59:f9:23:31:3a:ef:3e:9d:92:be:89:68:67:16:4a:
18:d5:44:16:58:d9:43:f7:f4:aa:82:90:8d:9f:80:
5a:bd:69:cf:d6:1a:02:ea:94:78:46:b6:d0:28:43:
1e:98:da:c3:d3:20:5a:e2:02:a4:9b:4b:a6:cf:81:
02:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A8:70:13:6A:5F:C1:9C:86:43:95:29:9D:12:8E:BF:77:60:3A:5A
X509v3 Authority Key Identifier:
keyid:77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:03:96:0e:5e:66:e6:7e:a4:f2:a7:0a:70:b5:77:da:cc:72:
46:05:73:b5:67:33:55:52:c3:e3:b0:e1:43:9c:aa:78:1c:fe:
7f:82:8a:1a:bc:51:1c:2f:2a:62:35:64:2c:c1:60:ae:b4:43:
70:09:d1:01:03:97:d0:35:b4:b2:74:a9:eb:c1:2a:85:80:bc:
4c:6d:b2:8d:b4:36:8b:5f:e8:d0:81:a2:ed:41:6e:aa:17:e4:
3b:04:77:df:7a:8f:57:b3:b6:c1:3c:c7:3c:ff:10:98:0b:e1:
eb:1d:0e:51:5f:3b:cf:f5:0f:52:67:24:3c:0c:bd:c9:99:2e:
90:f8:d4:70:46:9f:f2:3a:94:7c:b4:05:4b:2f:0d:a2:53:3b:
7a:b3:5b:44:1c:ba:f2:2a:6e:7a:25:e1:b5:29:eb:ae:09:ba:
9f:a3:ef:4e:fe:b1:f8:fe:06:b2:03:dc:d6:d2:b8:90:2f:dc:
d3:9e:70:71:28:23:97:e7:e4:d2:d4:9e:89:d4:78:1e:e9:a2:
01:72:22:cf:2c:f7:32:cb:27:6b:2a:6e:3f:61:bd:45:91:ca:
8e:76:39:d2:bd:ce:9c:48:39:37:48:9a:b9:52:56:e8:53:40:
e4:1c:af:28:33:5c:9c:b6:e9:a4:b5:c7:bb:a3:f9:1e:93:7d:
20:30:34:6c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWMznp0CxECYpIHdyJ1VumTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3NWQ3NGRmNDQzY2I4MDUxN2NlNDE1MGRjZTIyNjYyOTQw
ZjFkN2MwHhcNMjUwMzEzMDAwMTM2WhcNMjUwMzE0MDAwMTM2WjAzMTEwLwYDVQQD
Eyg1N2E4NzAxMzZhNWZjMTljODY0Mzk1Mjk5ZDEyOGViZjc3NjAzYTVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvKRvyYGCF/pPQfbh03dlCeOwVye
9/7CwdrB1Q42zD1yyrYbJnevlg9fyfXGJPOxvB2rOMGriPg9WgpQa33HlY9v434C
2khG2B0myJMwD00L8nHS82RmR4Tg0h3XXO5o7SeKqqLI6HNkEhCAOHSI9wBGNY8G
Uty4X8um7TLA6vlfVRHBZyDD8AVmYu9Xetqokj/a2CtVQ/D9Yf99DM9+B2wa1psd
pFtTqvKK9J9qI6wEBfwxU1Qzdlq7eYfeULTyolFZ+SMxOu8+nZK+iWhnFkoY1UQW
WNlD9/SqgpCNn4BavWnP1hoC6pR4RrbQKEMemNrD0yBa4gKkm0umz4ECkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFeocBNqX8GchkOVKZ0Sjr93YDpaMB8GA1UdIwQY
MBaAFHdddN9EPLgFF85BUNziJmKUDx18MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDExMDMwUTh1QVVYemtGUTNPSW1ZcFFQSFh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC8xYzc3YjctYjgyYS00ZGZkLWI2YjUt
NmY3NTg2MTk4MzdmLzEvZDExMDMwUTh1QVVYemtGUTNPSW1ZcFFQSFh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC8xYzc3YjctYjgyYS00ZGZkLWI2YjUtNmY3NTg2MTk4Mzdm
LzEvZDExMDMwUTh1QVVYemtGUTNPSW1ZcFFQSFh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdwOWDl5m
5n6k8qcKcLV32sxyRgVztWczVVLD47DhQ5yqeBz+f4KKGrxRHC8qYjVkLMFgrrRD
cAnRAQOX0DW0snSp68EqhYC8TG2yjbQ2i1/o0IGi7UFuqhfkOwR333qPV7O2wTzH
PP8QmAvh6x0OUV87z/UPUmckPAy9yZkukPjUcEaf8jqUfLQFSy8NolM7erNbRBy6
8ipueiXhtSnrrgm6n6PvTv6x+P4GsgPc1tK4kC/c055wcSgjl+fk0tSeidR4Humi
AXIizyz3MssnaypuP2G9RZHKjnY50r3OnEg5N0iauVJW6FNA5ByvKDNcnLbppLXH
u6P5HpN9IDA0bA==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:44:41 2025 by rpki-client